Manualshelf

Safeguard Audit Service Manual (G06.24+, H06.03+)

ManualsBrandsHP ManualsServerHP NonStop G-Series
41424344454647484950
Specifying Auditing
Safeguard Audit Service Manual520480-014
2-24
Systemwide Auditing for Users, Aliases, and Groups
AUDIT-OBJECT-ACCESS-PASS
specifies conditions for auditing successful attempts to access any of the
previously listed types of objects. This setting supplements any audit settings for
individual objects. The conditions can be ALL, NONE, LOCAL, or REMOTE. The
default is NONE.
If client auditing is enabled, this attribute also controls auditing for successful client
operations pertaining to any of the previously listed types of objects.
AUDIT-OBJECT-ACCESS-FAIL
specifies conditions for auditing unsuccessful attempts to access any of the
previously listed types of objects. This setting supplements any audit settings for
individual objects. The conditions can be ALL, NONE, LOCAL, or REMOTE. The
default is NONE.
If client auditing is enabled, this attribute also controls auditing for unsuccessful
client operations pertaining to any of the types of objects in the preceding list.
AUDIT-OBJECT-MANAGE-PASS
specifies conditions for auditing successful attempts to create or manage any
authorization record on the system. An authorization record can apply to an object,
OBJECTTYPE, or security group. This setting supplements any audit settings for
individual objects. The conditions can be ALL, NONE, LOCAL, or REMOTE. The
default is NONE.
AUDIT-OBJECT-MANAGE-FAIL
specifies conditions for auditing unsuccessful attempts to create or manage any
authorization record on the system. An authorization record can apply to an object,
OBJECTTYPE, or security group. This setting supplements any audit settings for
individual objects. The conditions can be ALL, NONE, LOCAL, or REMOTE. The
default is NONE.
To change any of these values, issue the ALTER SAFEGUARD command from
SAFECOM. For example, to audit all successful attempts to manage any authorization
record on the system:
=ALTER SAFEGUARD, AUDIT-OBJECT-MANAGE-PASS ALL
Systemwide Auditing for Users, Aliases, and Groups
You can configure systemwide auditing for users, aliases, and groups regardless of
individual user and alias records. These configuration attributes control
systemwide user auditing:
Caution. Configuring the Safeguard subsystem to audit all system objects can affect system
performance. Be sure you have adequate system resources to handle extensive auditing.