XYGATE Access Control Reference Manual
XYGATE
®
Access Control Reference Manual
Chapter 8. OSS Auditing
XYPRO Technology Corporation 87 Proprietary and Confidential
When XYGATEOA, which is the OBJECT program of the OSS-AUDITED-SHELL
(shown in the Example of section 8.1 above) is started, XYGATEAC will start auditing
the activities on the XYGATEOA session.
Welcome to the XYPRO Technology Corporation Computing Facility \N1.
Last Logon: 25 AUG 2013, 07:42
Last Unsuccessful Attempt: 25 AUG 2013, 06:42 Total Failures: 115
XYGATEAC 5.75 XYPRO \N1 20991231 (see <<CONFIG for Copyright)
/G/VIK/IK:
/G/VIK/IK: date
Sun Aug 25 07:42:20 PDT 2013
/G/VIK/IK:
/G/VIK/IK: whoami
QA.IK
/G/VIK/IK:
/G/VIK/IK: pwd
/G/VIK/IK
/G/VIK/IK: finger
/bin/-sh: finger: not found
/G/VIK/IK:
/G/VIK/IK: date
Sun Aug 25 07:42:42 PDT 2013
/G/VIK/IK:
When the dollar sign ( $ ) appears, XYGATEAC is now auditing the activity. The user
continues the session until exiting.
The prompt on XOA can be customized through the shell variable PS1. If the
/etc/profile.sample file has been copied to /etc/profile, all users of the system
will see their default initial directory rather than the $ sign because
/etc/profile.sample file sets PS1='$PWD: ' The following is an example of
changing the prompt:
$
$ PS1='$PWD > '
/G/VIK/IK > cd /usr
/usr > cd /usr
/usr > cd /etc
/etc >
.>
If the XAC_REPORT macro is run at this point, the activity will appear.
9> xac_report
Choose an option:
A: Audit file :$VIK.XAC575.AUDIT
B: Report date range :2013-08-25 07:31 to 2013-08-25 23:59
C: Subject Userid :*.*
D: Subject Login name :*
E: Subject Terminal :*
F: Command :*
G: Display Output :Yes
H: Violations only :No
I: Output file :$S.#XYGATE.ACCESS
J: Sort order :USER