The Security Jrn AuditJrn attribute group contains attributes that you can use to track all changes relating to system security. The attributes in this section apply to all audit journal entries.
Entry Type The type of entry written to the audit journal.
Note: You must specify the Entry Type attribute when you create a situation using the OS400 Security Jrn AuditJrn attribute group. If you do not use the Entry Type attribute in a predicate, the program stops the situation.
The valid values include:
AF |
Authority failure |
CA |
Authority changes |
CP |
User profile changes, created, or restored |
DS |
DST security password reset |
JD |
Change to user parameter of a job description |
NA |
Network attribute changed |
OW |
Object ownership changed |
PA |
Program changed to adopt authority |
PS |
Profile swap |
PW |
Password not valid |
RA |
Authority change during restore |
RJ |
Restoring job description with user profile specified |
RO |
Change of object owner during restore |
RP |
Restoring adopted authority program |
RU |
Restoring user profile authority |
SE |
Subsystem routing entry change |
SV |
System value changed |
Job Name The name of the job that caused the entry to be written in the audit journal. The valid value is an alphanumeric string with a maximum of 10 characters.
Job Number The job number of the job which caused the entry to be written in the audit journal. The valid value is an alphanumeric string with a maximum of 6 characters.
ORIGINNODE The host name for the monitored system. The valid value is an alphanumeric string with a maximum length of 64 characters.
User Profile The name of the current user profile associated with the job. The valid value is an alphanumeric string with a maximum of 10 characters.