Share via


Add a certification authority auditor

Applies To: Windows Server 2003, Windows Server 2003 R2, Windows Server 2003 with SP1, Windows Server 2003 with SP2

To add a certification authority auditor

  1. Open Local Security Settings.

  2. In the console tree, click User Rights Assignment.

    Where?

    • Security Settings/Local Policies/User Rights Assignments
  3. In the details pane, double-click Manage auditing and security log.

  4. Click Add User or Group.

  5. In Enter the object names to select (examples), type the name of the user or group you want to make an auditor, then click OK.

Notes

  • To perform this procedure, you must be a member of the Administrators group on the local computer, or you must have been delegated the appropriate authority. If the computer is joined to a domain, members of the Domain Admins group might be able to perform this procedure. As a security best practice, consider using Run as to perform this procedure.

  • To open Local Security Policy, click Start, point to Settings, click Control Panel, double-click Administrative Tools, and then double-click Local Security Policy.

Information about functional differences

  • Your server might function differently based on the version and edition of the operating system that is installed, your account permissions, and your menu settings. For more information, see Viewing Help on the Web.

See Also

Concepts

Enable role separation
Disable role separation
Add a certification authority administrator
Add a certificate manager
Role-based administration
Add a certification authority backup operator