OpenEdge Development:<br />Basic Database Tools Edit Audit Permissions

Until a user has been granted the Audit Administrator permission with grant rights, only the DBA may grant audit-related permissions. Once an Audit Administrator is established, he grants specific rights to other users and determines whether to give these users grant rights. The DBA maintains the right to revoke and/or delete the Audit Administrator’s permissions until the Audit Administrator has granted Audit Administrator permissions to at least one other user.

To edit audit permissions for a user, from the Edit Audit Permissions dialog box select a user from the browser and edit the fields described below:

UserId — The ID of the user to whom you grant permissions.

Permission — Description of the permission being granted. This menu is populated with the permissions you are permitted to set. If you are an Audit Administrator with grant rights for Audit Administrator, all available audit-related permissions appear in this drop-down menu. There are four possible audit security permissions:

Audit Administrator — An authenticated user who has privileges to create, update, and delete audit policies and manage audit data.

Application Audit Event Inserter — An authenticated user who has privileges to generate application audit events.

Audit Data Archiver — An authenticated user who has privileges to maintain (truncate, dump, or load) audit data.

Audit Data Reporter — An authenticated user who has privileges to read audit data.

Grantor — The current user’s userid. The Data Dictionary automatically populates this field.

Comments — Additional information about the user or granted permission.

Can Grant Permissions for — If selected, indicates that the user can grant permissions to other users for the specified permission.

The following control options appear on the Edit Audit Permissions dialog box:

Done — Closes the dialog box. This option is disabled until you select Save or Cancel.

Grant — Grants the permission displaying the Permission field to the selected userid.

Save — Saves changes to the current record and resets the fields for input.

Cancel — Cancels current changes to the record. Note that this option is disabled until you edit one of the fields for an existing record. If you click Cancel while creating a new record, the Data Dictionary displays the previously selected record.

Revoke — Revokes the permission displayed in the Permissions field from the selected userid, after prompting for verification. If you revoke a permission from a userid, the next userid in the browser appears. If you revoke all permissions from all existing userids, the Data Dictionary clears the Edit Audit Permission dialog box’s fields.