Safeguard Audit Service Manual (G06.29+, H06.08+, J06.03+)
Managing the Audit Trail
Safeguard Audit Service Manual — 520480-031
3 - 4
Defining and Managing the Audit Trail
The SECURITY-PERSISTENCE-ADMIN security group designates a list of users who
have the same privileges as that of the super group users for managing persistence
processes.
After you create the security groups, the super group no longer has special privileges
regarding the audit service commands.
The security groups also restrict who can use other commands within the Safeguard
subsystem. For more information on security groups, see the Safeguard
Administrator’s Manual.
Defining and Managing the Audit Trail
Members of the SECURITY-ADMINISTRATOR security group are responsible for
defining and initializing the audit pools and for specifying audit recovery actions. Until
you define and select an audit pool, the Safeguard subsystem uses the predefined
audit pool on $SYSTEM.SAFE. Once the audit pools are defined, members of the
SYSTEM-OPERATOR security group can close and release the individual audit files and
select audit pools as appropriate.
The procedure for initializing and maintaining the audit files:
1. Use the ADD AUDIT POOL command to define the location and size of audit
pools.
2. Use the SELECT command to select a previously defined audit pool as the current
audit pool and, optionally, to select the next audit pool to be used.
3. Use the ALTER AUDIT SERVICE command to specify the actions to be taken if
the current audit pool becomes filled or inaccessible.
4. If necessary, use the ALTER AUDIT POOL command to change the disk allocation
p
arameters for an audit pool.
5. When you want to close the current audit file and open the next audit file, use the
NEXTFILE command.
6. When you no longer need to ret
ain an audit file, use the RELEASE command to
purge the file, rename it, and mark it for reuse.
7. When you no longer need to retain a complete audit pool, use the DELETE AUDIT
POOL command to delete that audit pool.
8. Use the INFO AUDIT POOL and INFO AUDIT SERVICE commands as
necessary to obt
ain information about the audit pools and the audit service
configuration.
Note. The SECURITY-PERSISTENCE-ADMIN security group is supported only on systems
running on J06.16 and later J-series RVUs and H06.27 and later H-series RVUs.