Manualshelf

Safeguard Audit Service Manual (G06.24+, H06.03+)

ManualsBrandsHP ManualsServerHP NonStop G-Series
41424344454647484950
Specifying Auditing
Safeguard Audit Service Manual520480-014
2-20
The ALTER SAFEGUARD Command
is set to audit ALL access attempts and the Safeguard configuration is set to audit
NONE of the disk file access attempts, both local and remote access attempts are
audited for the individual disk file. Specifying both systemwide and individual auditing
does not cause duplicate records to be generated for audited events.
The ALTER SAFEGUARD Command
To configure systemwide auditing, use the ALTER SAFEGUARD command to specify
Safeguard configuration attributes. The ALTER SAFEGUARD command is restricted to
either the super group or to the SECURITY-ADMINISTRATOR security group if it has
been created.
The INFO SAFEGUARD Command
You can check the values of the Safeguard configuration attributes with the INFO
SAFEGUARD command. A special AUDIT qualifier of the INFO command allows you
to display only the audit configuration attributes. The following example shows the
INFO SAFEGUARD command with the AUDIT qualifier and the resulting display:
=INFO SAFEGUARD, AUDIT
Systemwide Device Auditing
You can configure systemwide auditing of all nondisk devices regardless of individual
device authorization records. Devices can be audited at the LOCAL level, the
REMOTE level, or both levels (ALL).
These configuration attributes control systemwide device auditing:
AUDIT-OBJECT-ACCESS-PASS = NONE AUDIT-AUTHENTICATE-PASS = NONE
AUDIT-OBJECT-ACCESS-FAIL = NONE AUDIT-AUTHENTICATE-FAIL = NONE
AUDIT-OBJECT-MANAGE-PASS = NONE AUDIT-SUBJECT-MANAGE-PASS = NONE
AUDIT-OBJECT-MANAGE-FAIL = NONE AUDIT-SUBJECT-MANAGE-FAIL = NONE
AUDIT-DEVICE-ACCESS-PASS = NONE AUDIT-PROCESS-ACCESS-PASS = NONE
AUDIT-DEVICE-ACCESS-FAIL = NONE AUDIT-PROCESS-ACCESS-FAIL = NONE
AUDIT-DEVICE-MANAGE-PASS = NONE AUDIT-PROCESS-MANAGE-PASS = NONE
AUDIT-DEVICE-MANAGE-FAIL = NONE AUDIT-PROCESS-MANAGE-FAIL = NONE
AUDIT-DISKFILE-ACCESS-PASS = NONE
AUDIT-DISKFILE-ACCESS-FAIL = NONE
AUDIT-DISKFILE-MANAGE-PASS = NONE
AUDIT-DISKFILE-MANAGE-FAIL = NONE
AUDIT-CLIENT-GUARDIAN = ON
AUDIT-CLIENT-OSS = ON
Note. The Safeguard attribute, AUDIT-CLIENT-GUARDIAN, is a synonym for AUDIT-CLIENT-
SERVICE. The AUDIT-CLIENT-OSS attribute is supported only on systems running G06.29
and later G-series RVUs and H06.08 and later H-series RVUs.