3.2.1.1 Policy Setting State

The client-side plug-in persistent state consists of the 4 sections below. The location where this state is stored is specific to each implementation.

• System Advanced Audit Policy:

  A list of records, each with a record identifier (subcategory GUID). In addition to the key, each record has an audit setting value that defines the audit behavior for the subcategory. Subcategory settings are specified in section 2.2.1.

• Per-User Advanced Audit Policy:

  A list of records, each with a user or group SID, a subcategory GUID, and an audit setting value that overrides the system audit behavior for the subcategory for the user or group.

• Audit Options:

  A list of records, each with an audit option type and a setting value. Audit options are specified in section 2.2.2.

• Global Object Access Auditing:

  Consists of two persistent SACL-valued data elements: FileGlobalSacl and RegistryGlobalSacl. This is used to store the global object access audit settings used by administrators to define system access control lists (SACLs) that apply dynamically to every object in a specific resource manager. For more details, see section 2.2.3.