Permissions for Viewing Logs with Users or Groups other than Super Administrators


  • Question
    When I create an administrators group in addition to the Super Administrators Group, what are the requirements in order to view all the logs?

  • Answer
    The minimum permissions in order to view the logs for all users are as follows:
    1. Create the new relevant administrator:



      Please note that user transactions can be viewd only by the memers of the administrator group which created the users in the first place. For example: Log transactions made by users that were imported from LDAP by 'admin' which belongs to the 'Super Administrators' group can only be viewd by members of the 'Super Administrators' group. 

    2. Give the new administrator Write Permissions to all Users or Groups which are meant to be viewed by the new Administrator:


    3. Modify the Logs Permissions for the Administrator (View-Only permissions needed):



    4. Modify the Reports Permissions as well for viewing. (View-Only permissions needed) |* Users who will be creating custom reports will need Write Permissions:

    After applying the permissions discussed above, the new administrator should be able to log in and view logs and reports.

    Please note that any log entries made prior to the change above will remain with the same permissions they were inserted to the logs. The change of permissions applies to new log entries only.

    Software Version
    8.3.x
    8.4.x


  • This article applies to:
    NG 1000
    NG 5000
    NG 8000
    This article was previously published as:
    Finjan KB 1300

    Last Modified 3/23/2009.
    https://support.trustwave.com/kb/KnowledgebaseArticle13214.aspx