hello - We have a 2012 mode single domain with 50 Domain Controllers
In 1 of those sites that has a single domain controller the local IT person would like "view" access only to the domain controllers security log from the event viewer.
I am ok with that but no other domain controller.
I see that the "Manage Auditing and security log" is managed at a higher level than I wish to delegate and if I do it locally it is greyed out.
Could I somehow created a custom log from the security log and give him rights to that?
Thoughts? Ideas? Thanks!