Safeguard Audit Service Manual (G06.24+, H06.03+)
Audit File Record Formats
Safeguard Audit Service Manual—520480-014
A-14
Primary Audit Record
ZSFG-VAL-OUTCOME-NORECORD
The outcome was undetermined when the audit request occurred because the
authorization record for the accessed object could not be found or did not exist.
This outcome occurs in audit requests originated by the Safeguard subsystem.
ZSFG-VAL-OUTCOME-OTHER
The outcome of the requested operation was none of those defined here.
ZSFG-VAL-OUTCOME-PARTIAL-SUCCESS
The operation was successful for the primary partition of a file but might have
failed for one or more secondary partitions.
ZSFG-VAL-OUTCOME-PASSED
The requested operation was successfully completed.
ZSFG-VAL-OUTCOME-PENDING
The outcome is only partially complete and requires additional processing
before final authorization can be made.
ZSFG-VAL-OUTCOME-WARNING
The operation would have been denied, but the system was in Safeguard
warning mode.
ZMASTER-AUDITNUMBER
is a binary integer. It currently contains the same value as ZAUDITNUMBER.
ZSUBJECT
is an instance of the ZSFG-DDL-GUARD-SUBJECT template. For most events,
this template describes the process that attempted the audited operation. However,
for VERIFYUSER events, ZSUBJECT describes the process in control of the
terminal before the logon attempt. For LOGOFF events, ZSUBJECT describes the
logged-off user. For AUTHENTICATE events, ZSUBJECT describes the process
requesting the authentication. The component fields are:
ZSUBJECT-TYPE
is always ZSFG-VAL-GUARDIAN-USER.
ZUSERNUMBER
is, in internal form, the group number, member number of the subject.
ZUSERNAME
is either the group name.member name of the subject, or an alias name of
the subject, if used to gain access to the system.