Implementing SAF-rule controlled auditing

Use the checklist shown here to implement SAF-rule controlled auditing:

  1. Determine the FACILITY and XFACILIT class profiles required to control ZDT/IMS audit logging at your installation. The information provided in this section should help you to do that:
  2. Determine which level of access to these profiles your users will require to meet the audit logging requirements at your installation. The information provided in these sections should help you to do that:
  3. Define the required profiles to RACF® or your equivalent security product and provide users with the required access to these profiles. The information provided in these sections describes how you do this when using RACF:

    If you use another security product, consult the documentation for your product.

  4. Activate SAF-rule controlled auditing for the user IDs that you intend to use in Step 5. The information provided in these sections describe how you do that:
  5. Test your configuration to ensure that audit logging occurs when, and only when, it is required.
  6. When you are satisfied that ZDT/IMS audit logging is only occurring when it should, activate SAF controlled audit logging for all ZDT/IMS users. The information provided in these sections describe how you do that: