OK+A events are logged to the Top Secret Audit Tracking File when the Top Secret files are being accessed.

The user accessing the files does not have the AUDIT attribute. The Top Secret file are not on the AUDIT record. There is no ACTION(AUDIT) for the files on any PERMIT.

Release : 16.0

Component : Top Secret for z/OS

Top Secret files are always AUDITed because they contain sensitive data security information.

Also, access to the Top Secret files are ALWAYS treated as FAIL MODE and cannot be overridden.

This is done by design.