Managing Repository Server audit log records

Issuance of Repository Server (RS) audit log records can be controlled by specifying parameters in the FRPCFG and CSLRIxxx members of the IMS PROCLIB data set and through the F reposervername,AUDIT RS command.

Auditing can be enabled for the RS to connect to the z/OS® log stream by specifying AUDIT=Y in the FRPCFG member of the IMS PROCLIB data set, but no audit records are written if AUDIT_LEVEL=NONE is specified.

Auditing can be restarted after an error during RS initialization if AUDIT_FAIL=CONTINUE is specified.

You can also dynamically change the value specified for the AUDIT_LEVEL parameter in the FRPCFG member by issuing the RS command F reposervername,AUDIT.

You can control which types of events and member access are audited during client member sessions by specifying the AUDIT_DEFAULT= parameter in the FRPCFG member or the AUDITACCESS= parameter in the CSLRIxxx member. Audit access can also be modified through the UPDATE RM command. An audit access rule applies to all members of a specified repository type.

A read request from an authorized client that is done as a part of the update request is identified as a system read request. With an audit access rule of READ, system read requests do not cause a read audit record to be generated. With an audit access rule of SYSTEMREAD, all read requests, including system read requests, are audited.