Top Secret ATF shows security events which do not appear in the started task's job log

search cancel

Top Secret ATF shows security events which do not appear in the started task's job log

book

Article ID: 216960

calendar_today

Updated On:

Products

Top Secret

Issue/Introduction

Why does Top Secret Audit Tracking File show security events, but they don't appear in the applicaiton's joblog?

Environment

Release : 16.0

Component : CA Top Secret for z/OS

Resolution

RACROUTE security events get logged to the Top Secret Audit Tracking File when the following criteria are met:

1. LOG=NONE on RACROUTE security calls must NOT be set.
2. Top Secret auditing needs to be turned on via Top Secret Control Option LOG.
3. The resource needs to be defined to Top Secret.

Auditing activity can be written to the Top Secret Audit Tracking File, but will not be written to the started tasks log/joblog.

1. To Audit a user's activity, add the AUDIT attribute.

TSS ADD(acid) AUDIT

2. To Audit a specific resource's access activity, add the resource to the AUDIT acid:

TSS ADD(AUDIT) resource-class(resource)

Additional Information

REFERENCES:
Article ID: 193645 How to setup recording of non-violations to be logged to the TSS Audit File

LOG—Control Event and Command Logging

Feedback

thumb_up Yes

thumb_down No