Hi, Question regarding security rights, particularly to a server 2008 admin share. Scenario is that we have a scheduled task running a powershell script that collects archived evtx files (compressed as CAB) from each server in our domain, from the path C:\Windows\System32\WinEvt\Logs\Archive. I setup the service account as a domain admin to test, now I'm looking at removing domain admin rights from the SVC account and assigning minimum required permissions. What permissions does the service account need to go to the path mentioned above (from a single domain controller) and grab the files? I thought local admin pushed out via GP might work but now I'm not so sure. Any advice would be handy. Thanks, Simon