You can use option AU.R.H to search for assertion, override, and sensitive resource configuration
records.
On the main AU.R menu, type H on the Option line and press
Enter. Figure 1 is
displayed. Figure 1. AU.R.H - Compliance History log selection panel
zSecure Suite - Audit - History log
Command ===> _________________________________________________________________
Show assertion history log items that match all of the following criteria
Complex . . . . . . . . ________ System . . . . . . . . ________
Recorded by . . . . . . ________
Asserted by . . . . . . _______________________________________ (scan string)
Class or object type ________
Resource or object . . __________________________________________________
Control . . . . . . . . ________________________
Sensitivity type . . . ________________________
Assertion date . . . . __ __________ (operator + date)
Assertion enddate . . . __ __________ (operator + date)
Specify history log record types:
_ Current only _ Assertion _ Override _ Configuration
Output/run options
Summarize by _ 1. Complex 2. Control 3. Recorder 4. Asserter
_ Print format Send as e-mail Background run
Enter the selection criteria that you want to use to limit the history records report. You can
select on the following criteria:
Complex: complex name or filter for which the log record was defined.
System: system name of filter for which the log recod was defined.
Recorded by: the user ID that made the assertion, override, or
configuration update.
Asserted by: the name of the person on whose behalf the assertion,
override, or configuration update was made.
Class or object type: the internal class or object type that the
compliance rule uses. This is often not the same as the SAF class.
Resource or object: the resource or object that the compliance rule
uses.
Control: the name of the control (or rule set).
Sensitivity type: this field is convenient for searching through
sensitive resource configurations.
Assertion date: the date that the assertion, override, or configuration
update was made.
Assertion enddate: the assertion, override, or configuration update end
date (optional).
The Specify history log record types section enables you to select on the
following criteria:
Current only: shows only the active records, all older or retracted
records are excluded.
Assertion: includes all assertion type records.
Override: includes all override type records.
Configuration: includes all sensitive resource configuration
records.
If you do not select a specific record type, all record types are used.
The Output/run options section enable you to (optionally) change the top
level summary to Complex, Control,
Recorder, or Asserter. You can also select here if you
want to see the report in list form, receive it as email, or let the report be run as a batch
job.
When you press Enter, one or two reports are generated. For example: Figure 2. AU.R.H - History Display selection panel
zSecure Suite Display Selection Line 1 of 2
Command ===> __________________________________________________ Scroll===> CSR
Name Summary Records Title
_ ASSERTLG 1 15 Assertion/override history by control
_ ASSERTCF 1 1 History of configuration assertions
******************************* Bottom of Data ********************************
ASSERTLG
Assertion/override history by control generates the ASSERTLG report;
it shows the selected assertion and override records. By default, this report shows first the
assertions and then the overrides, both sorted by control name and timestamp. You can change the
sort order to complex, control, recorder, or asserter. See ASSERTLG: Assertion/override history by control.
ASSERTCF
History of configuration assertions generates the ASSERTCF report; it
shows the selected configuration records. By default, this report shows the configuration records by
sensitivity. See ASSERTCF: History of configuration assertions.