Repository Server audit log records

If AUDIT=YES is specified in the FRPCFG member of the IMS PROCLIB data set, the Repository Server (RS) writes to the z/OS® logger audit log stream name specified in the AUDIT_LOG= parameter.

Maintaining the RS audit log is optional.

The RS audit log contains information about selected events that occur during server execution.

The audit access rule identifies the information that can be written to the audit log. The default access rule can be specified in the FRPCFG member of the IMS PROCLIB data set using the AUDIT_DEFAULT parameter. This specification is applicable to all IMS repositories managed by the RS. The value for the AUDIT_DEFAULT parameter can be overridden by setting the AUDITACCESS parameter in the CSLRIxxx member of the IMS PROCLIB data set.

If an audit access rule is already set for a given repository type, setting it again replaces the rule. Setting AUDITACCESS=DEFAULT removes the audit rule for the given repository type. The audit rule is then set to the default access rule specified in the FRPCFG member.

Audit log entries can be triggered in the audit log by the following events:
  • RS and repository events
  • ADMIN and CONTROL requests
  • Registration, connection, and UOW events
  • Events relating to repository members during a client member session:
    • Access failure due to a security restriction
    • Update
    • Read
    • System-level read

Refer to the FRPLGREC macro that maps the RS audit log records to view the event types and subtypes that are written and the data in each log record type.