Hi folks I've noticed that our system (z/OS 1.4) seems to set dataset profiles to AUDIT FAILURES(READ) by default. I'm wondering what the value of this is, since we also get a violation record written whenever an access failure occurs, so this seems to be a bit of overkill, if not wasteful on SMF space. For audit reports, I'm only interested in successful access attempts. I have the violation reports for the unsuccessful ones. I'm thinking of going through the RACF database with a combination of ICETOOL and Rexx and turning all the audit failure settings off - is this reasonable? Is it possible to change the default setting to FAILURES(NOAUDIT) as well? Thanks in advance Brian - This e-mail message is for the sole use of the intended recipient(s)and may contain confidential and privileged information of Transaction NetworkServices. Any unauthorized review, use, disclosure or distribution isprohibited. If you are not the intended recipient, please contact thesender by reply e-mail and destroy all copies of the original message.
---------------------------------------------------------------------- For IBM-MAIN subscribe / signoff / archive access instructions, send email to [EMAIL PROTECTED] with the message: GET IBM-MAIN INFO Search the archives at http://bama.ua.edu/archives/ibm-main.html
