Hello,
I am trying to Create a GPO that will allow only a specially created security group Access to delete/modify event logs on all systems in the network. After researching this it seems the only way to do it is to edit the registry quite a bit as well as trying to find an SDDI for the group.
Before I try this I was hoping for some feed back to see if anyone else has been able to do this another way