Removable
Rights applicable to the Removable device type:
•Audit: Read
Read, Read Encrypted, Eject, Mount and Unmount actions and file names are written to the audit log.
•Audit: Write/Print
Delete, Delete Encrypted, Rename, Rename Encrypted, Write, Write Encrypted, Restore and Restore Encrypted actions and file names are written to the audit log.
•Audit: Format
Format, Format Encrypted actions and disk name are written to the audit log.
•Shadowing: Write/Print
Files are written to the shadow log.
•Shadowing: Format
Raw data is written to the shadow log.