Manage Learn to apply best practices and optimize your operations.

Prevent a user from deleting the DFU Audit Log?

How can I prevent the user, who has an UPDDTA authority, from deleting the DFU Audit Log?

The DFU audit log is actually a spooled file. If you can specify which outq the audit log goes to, specify that the spooled file goes to a secured outq. If the user has *JOBCTL special authority, make sure you send the spooled file to an outq that was created with OPRCTL(*NO) so they cannot manipulate the spooled file. If the user has *SPLCTL special authority, you cannot prevent them from deleting the spooled file.


The Best Web Links: Tips, tutorials and more.

Search400.com's targeted search engine: Get relevant information on security.

Ask your systems management questions--or help out your peers by answering them--in our live discussion forums.

Read this Search400.com Featured Topic: Secure your iSeries

Dig Deeper on iSeries system and application security