If you pull up a subject in the new UI, you should not see the audit menu, and you should not be able to run audits.  It is difficult to filter the audits for VIEW/READ/etc security so only let grouper admins see it.  Note, if you want to configure a grouper-ui.properties group: uiV2.subject.seeAudits.must.be.in.group     then that group will be able to see audits for users too...