| Where allowed to run: All environments (*ALL) Threadsafe: No |
Parameters Examples Error messages |
The CHGUSRAUD (Change User Audit) command allows a user with audit (*AUDIT) special authority to set up or change auditing for a user. The system value QAUDCTL controls turning auditing on and off. The auditing attributes of a user profile can be displayed with the Display User Profile (DSPUSRPRF) command.
Note: The changes made by CHGUSRAUD take effect the next time a job is started for this user.
| Top |
| Keyword | Description | Choices | Notes |
|---|---|---|---|
| USRPRF | User profile | Values (up to 50 repetitions): Simple name | Required, Positional 1 |
| OBJAUD | Object auditing value | *SAME, *NONE, *CHANGE, *ALL | Optional, Positional 2 |
| AUDLVL | User action auditing | Single values: *SAME, *NONE Other values (up to 31 repetitions): *AUTFAIL, *CMD, *CREATE, *DELETE, *JOBBAS, *JOBCHGUSR, *JOBDTA, *NETBAS, *NETCLU, *NETCMN, *NETFAIL, *NETSCK, *OBJMGT, *OFCSRV, *OPTICAL, *PGMADP, *PGMFAIL, *PRTDTA, *SAVRST, *SECCFG, *SECDIRSRV, *SECIPC, *SECNAS, *SECRUN, *SECSCKD, *SECURITY, *SECVFY, *SECVLDL, *SERVICE, *SPLFDTA, *SYSMGT |
Optional, Positional 3 |
| Top |
Specifies one or more user profiles whose auditing values are to be changed. A maximum of 50 user names can be specified.
This is a required parameter.
| Top |
Specifies the object auditing value for the user. This value only takes effect if the object auditing (OBJAUD) value for the object to be accessed has the value *USRPRF.
| Top |
Specifies the level of activity that is audited for this user profile.
Note: The system values QAUDLVL and QAUDLVL2 are used in conjunction with this parameter. For example, if QAUDLVL is set to *DELETE and AUDLVL is set to *CREATE, then both *DELETE and *CREATE would be audited for this user. The default value for the QAUDLVL and QAUDLVL2 system values is *NONE.
Single values
Other values (up to 31 repetitions)
The following will not be audited during an interactive sign-on unless the QAUDLVL or QAUDLVL2 system values include *AUTFAIL, or unless *AUTFAIL has been specified for the QSYS user profile with the Change User Audit (CHGUSRAUD) command:
Note: *JOBDTA is composed of two values to allow you to better customize your auditing. If you specify both of the values, you will get the same auditing as if you specified *JOBDTA. The following values make up *JOBDTA.
Note: *NETCMN is composed of several values to allow you to better customize your auditing. If you specify all of the values, you will get the same auditing as if you specified *NETCMN. The following values make up *NETCMN.
Note: *SECURITY is composed of several values to allow you to better customize your auditing. If you specify all of the values, you will get the same auditing as if you specified *SECURITY. The following values make up *SECURITY.
| Top |
CHGUSRAUD USRPRF(FRED) OBJAUD(*CHANGE)
AUDLVL(*CREATE *DELETE)
This command changes the auditing value in the user profile of the user FRED. All objects whose object auditing value is *USRPRF are audited when they are changed by user FRED. All objects that are created and all objects that are deleted will be audited for user FRED. Auditing records are sent to the auditing journal QAUDJRN in QSYS.
| Top |
*ESCAPE Messages
| Top |