Take a close look at what commands a user profile is using

The following commands allow you to log all CL commands entered by a specific user.

To audit all CL commands, a specific user is using the following steps below:

- Use command CHGUSRAUD USRPRF(USERNAME) AUDLVL(*CMD)

- Up to now, all CL commands this user is entering are written to the audit journal QAUDJRN

- To see all of the commands (and some more details such as date, time and program) use command DSPJRN JRN(QAUDJRN) ENTTYP(CD)

- To end the logging use command:

CHGUSRAUD USRPRF(USERNAME) AUDLVL(*NONE)

Please note: Auditing must be activated. Click here to see how to implement the system auditing.

==================================
MORE INFORMATION ON THIS TOPIC
==================================

The Best Web Links: tips, tutorials and more.

Search400's targeted search engine: Get relevant information on security.

Ask your systems management questions--or help out your peers by answering them--in our live discussion forums.

Check out this Search400.com Featured Topic: Top ten security tips

Visit the ITKnowledge Exchange and get answers to your security questions fast.

Rate this Tip To rate tips, you must be a member of Search400.com. Register now to start rating these tips. Log in if you are already a member. Submit a Tip Digg This!     StumbleUpon     Del.icio.us    RELATED CONTENT iSeries security tips Security considerations for IBM i backups Developing a security incident response system for System i Tracking remote access users on System i Setting up security for programmers on IBM i Controlling remote access on your IBM i Checking in on your IBM i authorization lists PCI data security standards and the System i Securing the integrated file system on IBM System i Contextual security on IBM i: Limit user profile access Time for a security checkup for your i Systems Management Can you trust all those trigger programs? Are your backups complete? Controlling remote command processing Watch your profiles Avoid locking issues Send message to users at a remote site Security journal receiver management Top 10 backup commands Create an iSeries Access image and update it with the latest Service Pack Tracking critical file access in real time iSeries system and application security Developing a security incident response system for System i Setting up security for programmers on IBM i Blocking AS/400 DB2 users Trouble accessing IFS path from Win2k3 server Checking in on your IBM i authorization lists Strategies for securing IBM i production files Changing password security levels and upgrading operating systems on the IBM i Determine the value of parameter UPPWEI in the DSPUSRPRF field Define journal code value "K" Modify content within a journal receiver file RELATED GLOSSARY TERMS Terms from Whatis.com − the technology online dictionary midrange  (Search400.com) RELATED RESOURCES 2020software.com, trial software downloads for accounting software, ERP software, CRM software and business software systems Search Bitpipe.com for the latest white papers and business webcasts Whatis.com, the online computer dictionary DISCLAIMER: Our Tips Exchange is a forum for you to share technical advice and expertise with your peers and to learn from other enterprise IT professionals. TechTarget provides the infrastructure to facilitate this sharing of information. However, we cannot guarantee the accuracy or validity of the material submitted. You agree that your use of the Ask The Expert services and your reliance on any questions, answers, information or other materials received through this Web site is at your own risk.