Privileges Required to use Audit Rules

To use audit rules, you need one of the following:

• scheduler-administrator or redwood-administrator role.
• system or partition-level permissions.
• object-specific privileges

note

A built-in audit rule will record all changes made to audit rules.

Using Audit Rules

The following privilege ranks are available on Audit Rules:

• Create - allows you to create an Audit Rule on the level the privilege was granted (system, partition), you have no further privileges through this rank, you automatically get All privilege rank on audit rules you create.
• View - allows you to view an Audit Rule on the level the privilege was granted (system, partition), you have no further privileges through this rank.
• Edit - allows you to create, view, and edit an Audit Rule on the level the privilege was granted (system, partition).
• Delete - allows you to create, view, and delete an Audit Rule on the level the privilege was granted (system, partition).
• All - full control over an Audit Rule on the level the privilege was granted (system, partition).

You always need View privileges on the partition of the Audit Rule.

Audit Rules can reference the following object, you need at least View privileges on this object as well as its partition when you want to create/edit/delete an Audit Rule that references it:

• Application.

Built-in Roles

• The scheduler-administrator or redwood-administrator built-in role provides full control over Audit Rules.
• The scheduler-viewer built-in role provides read-only access to Audit Rules.

Creating Audit Rules

You need the following privilege ranks to be able to create audit rules:

• Create - allows you to create audit rules on the level the privilege was granted (system, partition), you have no further privileges through this rank, you automatically get All privilege rank on audit rules you create.
• View - allows you to view an audit rule on the level the privilege was granted (system, partition), you have no further privileges through this rank.
• Edit - allows you to create, view and edit all audit rules on the level the privilege was granted (system, partition, object).
• Delete - allows you to create, view, and delete all audit rules on the level the privilege was granted (system, partition, object).
• All - full control over all audit rules on the level the privilege was granted (system, partition, object).

Editing Audit Rules

• Edit - privilege rank on the audit rule, or on Audit Rule on the level the privilege was granted (system, partition, object).
• All - privilege rank on the audit rule, or on Audit Rule on the level the privilege was granted (system, partition, object).

Deleting Audit Rules

• Delete - allows you to create, view, and delete an Audit Rule on the level the privilege was granted (system, partition, object).
• All - full control over an Audit Rule on the level the privilege was granted (system, partition).

See Also

Privileges Required to use Objects