24-09-2009, 05:27 PM (This post was last modified: 23-02-2010, 11:12 AM by TCH.)
Hi,
I am new to your product and this forum. We are currently testing it if it fits our needs. One thing we really like is the logging option for each server, and the fact that all users can read this log. But it seems all users can also delete the log. Is it possible to disable the option that all users can delete the log, or give only specific users the right to delete it, but maintain the possibility for them to view it and add new entries?
After enabling the permission administration you can adjust the authorization for functions. There you have the possibility to allow or even restrict a user to delete the log files. For details please refer to the vRD 2010 online help, chapter "User-defined roles".
Thomas Hertwig Wrote:After enabling the permission administration you can adjust the authorization for functions. There you have the possibility to allow or even restrict a user to delete the log files. For details please refer to the vRD 2010 online help, chapter "User-defined roles".
I know this option is there, but what I want is the option that a user can read the logfile but not delete it. I can't find this option.
25-09-2009, 11:08 AM (This post was last modified: 25-09-2009, 12:39 PM by TCH.)
I just tested it and it works fine.
With deactivating the option "Allow deletion of error, change and security log" under Authorization for Functions within the vRD permission administration (see screenshot), the user will only be able only to read the log files, but not to delete them.
- In vRD in permission administration you just created a user-defined role
- You assigned a person to that role
- You configured the settings so that the mentioned option is deactivated (I explained wrong in my thread, sorry)
- You save this settings
- This user logs in to vRD
Now this user is able to read AND delete the log files, available under Tools|Logs? In my environment he is only able to read the logs, but not to delete them!
Yes, I did al of the above. I tried both settings (Allow deletion of error, change and security log), with the option activated and de-activated. It is possible for normal users to delete the log with both settings.
I created a new user-defined role with the permissions in the screenshot. Then I entered some text into the logbook of mail2. I logged out from my own account and then back in with a test account 'testuser'. Then I deleted the logbook of mail2 with success.
now I understand your issue. You wre talking all the time about the loogbook. I thought, you mena the log files (erro log, change log, security log).
Unfortunately at the moment it is not possible to restrict the access to the logbook using administrative permisssions. But I will put it on the list for next version.