When monitoring your security, the operating system
can log security events that occur on your system. These events are recorded
in special system objects called journal receivers. You can set up journal
receivers to record different types of security events, such as changing a
system value or user profile, or an unsuccessful attempt to access an
object. The level of auditing via the QAUDLVL system value has varying
impacts on system performance and DASD utilization. The best practice
recommendations include *AUTFAIL, *DELETE, *OBJMGT, *PGMFAIL, *SAVRST, and
*SECURITY. See the accompanying documents for details regarding journal
receiver management.
Review these two documents for more information:
Basic security Journal Receiver Management
System managed journal receivers
==================================
MORE INFORMATION ON THIS TOPIC
==================================
The Best Web Links: tips, tutorials and more.
Search400's targeted search engine: Get relevant information on security.
Ask your systems management questions--or help out your peers by answering them--in our live discussion forums.
Check out this Search400.com Featured Topic: Top ten security tips
Visit the ITKnowledge Exchange and get answers to your security questions fast.