SharePoint Audit Log Event ID 31
31: Permissions updated
This is an event from
SharePoint
audit event from
LOGbinder SP
generated by
.
On this page
Permissions on an object were updated. The role that is listed usually includes several permissions. For example the default "read" role for a list object includes view items, open items, view versions, create alerts, and view application pages. The permissions that a particular role includes can be changed.
Free Security Log Resources by Randy
- Occurred: this is the date and time when SharePoint recorded the event to the internal SharePoint audit log and may be earlier than the date/time in the header of this event which reflects when LOGbinder SP wrote the event to Windows event log
- Site: This is the URL of the site generating this event
- User: name of the user who performed the action
- Object
- Type:
- Subtype:
- URL:
- Title: title of the object targeted by this operation
- Description
- Target
- Permissions
- Role name: Name of the role level that was applied
- Role description: Description of the role level that was applied
Supercharger Free Edition
Supercharger's built-in Xpath filters leave the noise behind.
Free.
This Event Is Produced By
Which Integrates with Your SIEM
Permissions updated
Occurred: 11/22/2011 5:02:59 PM
Site: http://sp2010-sp
User: System Account
Object
Type: Web
Subtype: n/a
URL: http://sp2010-sp
Title: SP2010
Description: ddddddddddddddddddd
Target
Name: Customer Information
Type: Group
Permissions
Role name: Read
Role description: Can view pages and list items and download documents.
One instance of this event is logged for each role assigned this user. Look at adjacent events to determine all roles assigned to the user or group.
Top 10 Windows Security Events to Monitor
Free Tool for Windows Event Collection