All audit logs must be owned by root user. The path for audit log can be
configured via log_file parameter in /etc/audit/auditd.conf
or by default, the path for audit log is /var/log/audit/
.
To properly set the owner of /var/log/audit/*, run the command:
$ sudo chown root /var/log/audit/*