Is there a way to reverse a dontaudit rule without having to modify and recompile base policy? I need to see the audit message to help determine what permissions are being denied for a particular application. Regards, Joy