Allocate an audit log
You must allocate an audit log for CICS® DA. The audit log lists all the commands that the CICS DA server runs, or attempts to run, as a result of a user action. The audit log also identifies the user ID that requested the action.
About this task
The audit log can be either a data set or a z/OS® UNIX file. The log is referenced by a DD statement in the JCL procedure CPHOESVR, which is a member in the SCPHINST library installed during the SMP/E installation. The data set must be allocated or, in the case of a z/OS UNIX file, created, before you start the server.
Note: The audit log contains
important audit and tracking information. You must ensure that the
audit log is created with the correct security access for your organization.
You must however ensure that the CICS DA
user ID has authorization to write to the audit log.
Procedure
Choose one of the following options to allocate the audit
log:
- If you want to use a data set for the audit log, create a
data set with the attributes shown in the following example:
//********************************************************************* //* ALLOCATE DATA SET * //********************************************************************* //ALLOC EXEC PGM=IEFBR14 //NEWDS DD DSN=@cphhlq@.CPHAUDIT,UNIT=SYSDA, // SPACE=(TRK,(5,5,0)),DISP=(NEW,CATLG), // DCB=(LRECL=132,BLKSIZE=13200,RECFM=FB)
- If you want to use a z/OS UNIX file for the audit log, the
DD statement is:
In the DD statement, @hfspref@ is the z/OS UNIX file path.//CPHAUDIT DD PATH='@hfspath@/audit.log'