========================================================================= IBM Security Access Manager for Enterprise Single Sign-On (ISAMESSO) Audit Log Housekeeping Maintenance Script ========================================================================= Release date : 16-Jan-2012 Script version : 1.0.1 Target IMS version : 8.1.x / 8.2.x Target Database : Ms SQL Server 2005/2008 The audit log housekeeping maintenance script removes audit logs older than a specified number of days. 1. Creating the stored procedure Create this stored procedure in the ISAMESSO schema. Make sure the database login account that you use in the following tasks has: * Current schema set to ISAMESSO schema. * Privileges to - create,drop,execute on stored procedure - select,insert,delete,update on ISAMESSO database tables. 1.1 Using Microsoft SQL Server Management Studio ------------------------------------------------- 1.1.1 Open the script "sp_pruneImsLogOlderThan" In the Microsoft SQL Server Management Studio, Select "File > Open". Browse to the script "sp_pruneImsLogOlderThan" and open it. 1.1.2 Replace , and Insert the following command at the first line in "sp_pruneImsLogOlderThan.sql" ---------------------------- USE GO EXECUTE AS USER = ''; GO ---------------------------- 1.1.3 Execute the script and make sure "Command(s) completed successfully." is displayed. 2. Verify Stored Procedure Creation Execute the following script to verify that the stored procedure is created successfully. ---------------------------- USE GO EXECUTE AS USER = ''; GO EXEC sp_pruneImsLogOlderThan 'ABOUT',0 ---------------------------- If the stored procedure is created successfully, you will get an output similar to: -------------------------------------------------------------------- SAMESSO log housekeeping maintenance script Database Name : IMS_DB Schema Name : IMS_SCHEMA Script version : 1.0.1 Database version : Microsoft SQL Server 2005 - 9.00.4035.00 -------------------------------------------------------------------- 3. Using the Maintenance Script Before Executing the script make sure the following * current schema is pointing to ISAMESSO schema. To set the current schema to ISAMESSO schema use the following command: EXECUTE AS USER = ''; * Database account that is used has the following privileges: - select, insert, delete, update data in ISAMESSO schema - execute stored procedure Maintenance Script Syntax : EXEC sp_pruneImsLogOlderThan '', where: - Mandatory, text, case sensitive. Replace with one of the following values 'ABOUT' Displays script information 'DELETE' Performs actual delete 'HELP' Displays script syntax and example 'SIMULATE' Simulates deletion without actual delete - Mandatory, numeric. Replace with one of the following values 0 Deletes all the log records. X Deletes logs older than 'X' number of days. 4. Example 1. To simulate deletion of audit logs older than 30 days without performing an actual delete. Use: EXEC sp_pruneImsLogOlderThan 'SIMULATE',30 2. To delete audit log older than 2 weeks (14 days) from database use: EXEC sp_pruneImsLogOlderThan 'DELETE', 14 3. To delete all audit logs from database use: EXEC sp_pruneImsLogOlderThan 'DELETE', 0