Manualshelf

Safeguard Audit Service Manual (G06.29+, H06.08+, J06.03+)

ManualsBrandsHP ManualsServerHP NonStop G-Series
31323334353637383940
Specifying Auditing
Safeguard Audit Service Manual 520480-031
2 - 8
How Attempts to Add Protection Records Are
Audited
How Attempts to Add Protection Records Are Audited
When an attempt is made to add a protection record, the Safeguard subsystem
performs this procedure to authorize the action and to determine if auditing is required:
1. The appropriate OBJECTTYPE record is consulted to determine whether the user
attempting to add the protection record has the required authority.
2. If the user has the required authority, the Safeguard subsystem creates the
protection record and checks the value of AUDIT-ACCESS-PASS in the
OBJECTTYPE record. If AUDIT-ACCESS-PASS is specified, the Safeguard
subsystem writes one primary audit record and one secondary audit record to the
current audit file. The secondary record contains the image of the protection record
that was added.
3. If the user is not authorized, the Safeguard subsystem issues a security violation
(error 48) and checks the value of AUDIT-ACCESS-FAIL in the OBJECTTYPE
record. If AUDIT-ACCESS-FAIL is specified, the Safeguard subsystem writes one
primary audit record and one secondary record to the current audit file. The
secondary record contains the image of the protection record that the user
attempted to add.