Specifying file audit options

Specify file audit options using the ISPF shell, or a chaudit command. The command can be used to specify either user audit options or auditor audit options. To specify user audit options, you must be a superuser or the owner of the file. To specify auditor audit options, you must have RACF® AUDITOR authority.

If you have AUDITOR authority, you do not need access in the permission bits to:
  • Search and read any directory in the file system
  • Use the chaudit command to change the auditor audit options for any file in the file system

If both user and auditor audit options are set, RACF merges the options and audits all the set options.

For information about setting audit control, see z/OS Security Server RACF Auditor's Guide.

Parent topic: Auditing access to files and directories