IBM Power Connect, learn, share, and engage with IBMPower. Join / Log in
Many administrators open support cases seeking guidance for AIX audit configuration. Audit customization and analysis is out of the scope of AIX Support, but I have published several technical notes that demonstrate audit configuration. I will add related technotes and references to this blog so readers have a common reference.
Redirecting AIX audit events to the syslogd subsystem
IBM Documentation Audit section:https://www.ibm.com/docs/en/aix/7.2?topic=system-auditing-overview
AIX Redbooks, "Auditing and Accounting"http://www.redbooks.ibm.com/redbooks/pdfs/sg246396.pdf
If you have specific questions about usage after reviewing the recommended documentation, IBM AIX Support will be happy to assist.
If you require consulting services, there are more fee-based services available.
Hello, JoséYes, I agree this book is rather old. We have had some internal discussions, and I agree it should at least get some "modernization" , and will continue to try to get some updates. This is one of the reasons I created this blog, so users would have a consistent list of how-tos and be able to communicate concerns about documentation. THANKS for your feedback!
Hi Jan,Thanks for the comprehensive collection, it's good to have a starting point.
I've noticed that the auditing redbook is getting a bit long in the tooth (AIX 5.3) any way to get a book update on the pipeline ?I know that by 5.3 audit was already quite complete, but it would still be a good option to add all the new stuff up to 7.3, adding a chapter on VIOS auditing and merging information from all those links into a coherent whole.