Manualshelf

Safeguard Audit Service Manual (G06.29+, H06.08+, J06.03+)

ManualsBrandsHP ManualsServerHP NonStop G-Series
51525354555657585960
Specifying Auditing
Safeguard Audit Service Manual 520480-031
2 - 25
OSS Auditing
CREATORSYSTEMNUMBER
CREATORPROCESSNAME
CREATORAUTHLOCNAME
CREATORTERMINALNAME
CREATORAUTHLOCNUMBER
OBJECTNAME
AUDIT-EXCLUDE-VALUE
specifies a set of values (up to five) for the respective field names in the AUDIT-
EXCLUDE-FIELD. A combination of field names and values determine the
exclusion of NonStop client audit events. The default value is NONE.
To change any of these values, issue the ALTER SAFEGUARD command from
SAFECOM. For example, to specify exclusion of audit events generated by a NonStop
client subsystem when a READ operation is performed on the system:
ALTER SAFEGUARD, AUDIT-EXCLUDE-FIELD OPERATION, AUDIT-EXCLUDE-
VALUE READ
To specify exclusion of audit records generated when READ, WRITE, and EXECUTE
operations are performed on the system:
ALTER SAFEGUARD, AUDIT-EXCLUDE-FIELD OPERATION, AUDIT-EXCLUDE-
VALUE (READ:WRITE:EXECUTE)
When the configuration attributes AUDIT-CLIENT-GUARDIAN and AUDIT-CLIENT-
OSS are both set to OFF, the audit exclusion values set by AUDIT-EXCLUDE-FIELD
and AUDIT-EXCLUDE-VALUE do not take effect.
OSS Auditing
The Safeguard audit attribute, AUDIT-CLIENT-OSS (ACO), controls if the OSS-
related audit records are written to the audit trail in most cases.
Note. The AUDIT-EXCLUDE-FIELD and AUDIT-EXCLUDE-VALUE attributes must be used in
a single command line while filtering the audit records.
Note. The AUDIT-EX
CLUDE-FIELD and AUDIT-EXCLUDE-VALUE attributes are supported
only on systems running J06.03 and later J-series RVUs, H06.14 and later H-series RVUs, and
G06.32 and later G-series RVUs.
Note. The OSS Auditing is supported only on systems ru
nning G06.29 and later G-series
RVUs and H06.08 and later H-series RVUs.