Home > Ask the AS/400 Experts > iSeries Security Questions & Answers > Monitoring QSECOFR
Ask The iSeries 400 Expert: Questions & Answers
EMAIL THIS

Monitoring QSECOFR

Carol Woodbury EXPERT RESPONSE FROM: Carol Woodbury

Pose a Question
Other iSeries 400 Categories
Meet all iSeries 400 Experts
Become an Expert for this site


Digg This!    StumbleUpon Toolbar StumbleUpon    Bookmark with Delicious Del.icio.us   


>
QUESTION POSED ON: 26 July 2005
Monitoring QSECOFR What's the best practice in tracking activity QSECOFR has on V4 OS/400s, and is it different on V5 OS/400 systems?

>
The best way to monitor QSECOFR is through the audit journal. You could run queries to find any objects created or deleted (*CREATE and *DELETE must be specified in the QAUDLVL system value to generate these) by QSECOFR. You can also monitor all of the CL commands this profile enters by running the Change User Auditing (CHGUSRAUD) specifying *CMD for the User action auditing parameter. A couple of other activities that you might find useful are the invalid sign on attempts for the QSECOFR profile -- *SECURITY must be specified in the QAUDLVL parameter to log this activity –- and the programs and service programs that adopt QSECOFR. You can find these by running the Display Program Adopt (DSPPGMADP) command. These techniques can be used on either V4 or V5 systems.


Digg This!    StumbleUpon Toolbar StumbleUpon    Bookmark with Delicious Del.icio.us   



RELATED CONTENT
iSeries Security
Changing password security levels and upgrading operating systems on the IBM i
Determine the value of parameter UPPWEI in the DSPUSRPRF field
Define journal code value "K"
Modify content within a journal receiver file
Change password parameters on the AS/400 without deactivating user's passwords
Prevent insiders with *READ or *USE access from circumventing object authority on IBM i
Prevent insiders from obtaining user ids and passwords on the IBM i
Change the IBM i system to allow only certain types of SSL protocol versions
Authorize a specific user to select files in a separate library
Allow a user to view a library prod without granting full access to all data

Security
Understanding the user class of a profile
Use caution when providing access to file shares
Top advice on securing your iSeries
Top 10 security tips
20 ways to improve your system's security
iSeries immune to Mydoom? Sort of
Tightening iSeries security
Understand all your trace options, including the latest one -- STRTRC
DDM and limit capabilities? I don't think so
A security no-brainer: Analyze default passwords

RELATED RESOURCES
2020software.com, trial software downloads for accounting software, ERP software, CRM software and business software systems
Search Bitpipe.com for the latest white papers and business webcasts
Whatis.com, the online computer dictionary



Search and Browse the Expert Answer Center
Search and browse more than 25,000 question and answer pairs from more than 250 TechTarget industry experts.
Browse our Expert Advice



iSeries Networking - Printing, Remote Access, TCP/IP
HomeNewsTopicsITKnowledge ExchangeTipsBlogsAsk the ExpertsMultimediaWhite PapersProducts
About Us  |  Contact Us  |  For Advertisers  |  For Business Partners  |  Site Index  |  RSS
SEARCH 
TechTarget provides technology professionals with the information they need to perform their jobs - from developing strategy, to making cost-effective purchase decisions and managing their organizations' technology projects - with its network of technology-specific websites, events and online magazines.

TechTarget Corporate Web Site  |  Media Kits  |  Site Map




All Rights Reserved, Copyright 1999 - 2009, TechTarget | Read our Privacy Policy
  TechTarget - The IT Media ROI Experts