On 06-Dec-2013 13:04 -0800, Graap, Kenneth wrote:
Auditing actions (ZC ZR audit entries for example) is a function of
QAUDLVL and the AUDLVL setting on the User Profile... <<SNIP>>
The ZC and ZR are "object auditing" vs "action auditing". The Audit
Level controls action auditing; there are seemingly object-specific
tracking there however, most notably the three special values:
*CREATE *DELETE *OBJMGT
<
http://pic.dhe.ibm.com/infocenter/iseries/v7r1m0/topic/rzarl/rzarlaudobj.htm>
" _Planning the auditing of object access_
The i5/OS operating system provides the ability to log accesses to an
object in the security audit journal by using system values and the
object auditing values for users and objects. This is called object
auditing.
The QAUDCTL system value, the OBJAUD value for an object, and the OBJAUD
value for a user profile work together to control object auditing. The
OBJAUD value for the object and the OBJAUD value for the user who is
using the object determine whether a specific access should be logged.
The QAUDCTL system value starts and stops the object auditing function.
..."
<
http://pic.dhe.ibm.com/infocenter/iseries/v7r1m0/topic/rzarl/rzarlaudlvl.htm>
" _Planning the auditing of actions_
The QAUDCTL (audit control) system value, the QAUDLVL (audit level)
system value, the QAUDLVL2 (audit level extension) system value, and the
AUDLVL (action auditing) parameter in user profiles work together to
control action auditing.
..."
As an Amazon Associate we earn from qualifying purchases.
This mailing list archive is Copyright 1997-2024 by midrange.com and David Gibbs as a compilation work. Use of the archive is restricted to research of a business or technical nature. Any other uses are prohibited. Full details are available on our policy page. If you have questions about this, please contact
[javascript protected email address].
Operating expenses for this site are earned using the Amazon Associate program and Google Adsense.