Allocate an audit log

You must allocate an audit log for CICS® DA. The audit log lists all the commands that the CICS DA server runs, or attempts to run, as a result of a user action. The audit log also identifies the user ID that requested the action.

About this task

The audit log can be either a data set or a z/OS® UNIX file. The log is referenced by a DD statement in the JCL procedure CPHOESVR, which is a member in the SCPHINST library installed during the SMP/E installation. The data set must be allocated or, in the case of a z/OS UNIX file, created, before you start the server.

Note: The audit log contains important audit and tracking information. You must ensure that the audit log is created with the correct security access for your organization. You must however ensure that the CICS DA user ID has authorization to write to the audit log.

Procedure

Choose one of the following options to allocate the audit log:
  • If you want to use a data set for the audit log, create a data set with the attributes shown in the following example:
    //*********************************************************************
    //* ALLOCATE DATA SET                                                 *
    //*********************************************************************
    //ALLOC   EXEC PGM=IEFBR14                                             
    //NEWDS    DD DSN=@cphhlq@.CPHAUDIT,UNIT=SYSDA,                 
    //            SPACE=(TRK,(5,5,0)),DISP=(NEW,CATLG),                    
    //            DCB=(LRECL=132,BLKSIZE=13200,RECFM=FB)  
  • If you want to use a z/OS UNIX file for the audit log, the DD statement is:
    //CPHAUDIT DD PATH='@hfspath@/audit.log'
    In the DD statement, @hfspref@ is the z/OS UNIX file path.

What to do next

Complete the remaining tasks to configure CICS DA. For more information, see the related tasks.


allocate_audit.html | Timestamp icon Last updated: Friday, 11 December 2015