Previous Topic: Determining Password RestrictionsNext Topic: Setting the Violation Threshold

Administering Your Security EnvironmentModifying Your Security EnvironmentDetermining Violation Logging

Determining Violation Logging

The LOG option is used to designate whether or not a job/session will be logged and where the information will be sent. The LOG operands include:

SMF

Events will be written to SMF and the Audit Tracking File. This is a default for LOG. See the “Monitoring Your Security Environment” chapter for information about the Audit Tracking File (ATF).

SEC9

Violation messages will be routed to security consoles. This is also a default for LOG.

MSG

Violation messages for batch jobs, started tasks or at online user terminal. MSG is in effect by default.

INIT

Logs all job/session initiations and terminations. INIT is in effect by default.

ACTIVITY

Logs all activity for all facilities. ACTIVITY is optional.

ACCESS

Logs all resource accesses. ACCESS is optional.

NONE

Deactivates SMF and ATF logging. NONE is optional.

Note: CA Top Secret will always record audited events and violations in the Audit/Tracking File, regardless of a LOG(NONE) specification.

ALL

Selects all LOG options for all facilities. ALL is optional.