The following steps were performed:
1. Audit Analyzer successfully installed on a Windows machine joined to Zone using DirectAuthorize.
2. A normal AD user logs into machine.
3. Audit Analyzer is launched and under "Options" (right-click menu), the log folder location changed to a path where the user has no right to create any files.
For example "c:\" or "d:\"
4. Audit Analyzer closed and reopened, an error is shown as follows:
"MMC could not create the snap-in"
This issue does not exist if the user logged in as a domain administrator and step #3 performed
Why does this happen?
The log file location is stored on a per-user basis and should never be stored in a location where the user has no access.
If an end user cannot write to a location (a simple drag and drop), then neither will the application in question