Safeguard Administrator's Manual (G06.29+, H06.08+, J06.03+)

ManualsBrandsHP ManualsServerHP NonStop G-Series

131

132

133

134

135

136

137

138

139

140

Configuration

Safeguard Administrator’s Manual—523317-029

9-24

Configuring Disk File Auditing

AUDIT-PROCESS-MANAGE-PASS

Successful attempts to create or manage the authorization record for a process or

subprocess are audited. This setting supplements the audit settings for individual

processes or subprocesses. The conditions can be ALL, NONE, LOCAL, or

REMOTE. The default is NONE.

AUDIT-PROCESS-MANAGE-FAIL

Unsuccessful attempts to create or manage the authorization record for a process

or subprocess are audited. This setting supplements the audit settings for

individual processes or subprocesses. The conditions can be ALL, NONE, LOCAL,

or REMOTE. The default is NONE.

To change any of these values, issue the ALTER SAFEGUARD command from

SAFECOM. For example, to specify auditing of all successful attempts to access a

process or subprocess, in addition to the audit settings in the individual process or

subprocess authorization records:

=ALTER SAFEGUARD, AUDIT-PROCESS-ACCESS-PASS ALL

Configuring Disk File Auditing

You can configure systemwide auditing of all disk volumes, subvolumes, and files in

addition to the audit settings in the individual volume, subvolume, and disk-file

authorization records. These objects can be audited at the local level, at the remote

level, or at both levels (ALL).

These Safeguard attributes relate to auditing disk files:

AUDIT-DISKFILE-ACCESS-PASS

Successful attempts to access a volume, subvolume, or disk file are audited. This

setting supplements the audit settings for these individual objects. The conditions

can be ALL, NONE, LOCAL, or REMOTE. The default is NONE.

AUDIT-DISKFILE-ACCESS-FAIL

Unsuccessful attempts to access a volume, subvolume, or disk file are audited.

This setting supplements the audit settings for these individual objects. The

conditions can be ALL, NONE, LOCAL, or REMOTE. The default is NONE.

AUDIT-DISKFILE-MANAGE-PASS

Successful attempts to create or manage authorization records for a volume,

subvolume, or disk file are audited. This setting supplements the individual audit

settings. The conditions can be ALL, NONE, LOCAL, or REMOTE. The default is

NONE.