Auditing of system programming interface commands

An auditor or system administrator can use this function to monitor the SET, PERFORM, ENABLE, DISABLE, and RESYNC commands for changes made to the CICS system configuration.

The CEMT system programming interface commands can change resource definitions dynamically. An incorrect entry can cause the CICS system to fail. When diagnosing a problem on a CICS system, it is important to know whether resources were changed. In CICS® TS for z/OS®, Version 5.1, you can now audit certain system programming interface commands which can dynamically change system definitions.

The audited commands are SET, PERFORM, ENABLE, DISABLE, RESYNC. When one of these commands is issued from a non-system task, CICS writes message DFHAP1900 to the transient data queue CADS. An auditor or system administrator can use this information in problem determination and system management.

The SET TERMINAL and PERFORM SHUTDOWN commands are not audited.

SET commands issued by CICSPlex SM Real Time Analysis (RTA) Evaluation Modification strings are not audited.

The CADS transient data queue is an indirect queue defined in group DFHDCTG, which is part of DFHLIST. See Required TDQUEUE definitions. By default, the messages are redirected to the CSSL queue, but if you believe that the volume of audit messages will be high, or you want to separate out audit messages, you can redirect these messages to another queue.

If auditing is not required for the region, change the definition in group DFHDCTG to redirect CADS to a dummy TDQUEUE. See Using dummy transient data queues. The change takes effect when CICS is restarted.