Skip main navigation (Press Enter).

TechXchange Training Community Credentials Events Conference

TechXchange Training Community Credentials Events Conference

AIX

AIX

Connect with fellow AIX users and experts to gain knowledge, share insights, and solve problems.

View Only

Back to discussions

Expand all | Collapse all

AIX Auditing configuration

1. AIX Auditing configuration

Like
Archive User
Posted Thu July 08, 2010 08:13 AM

Reply
Originally posted by: CHPrjohnso

We have implemented auditing on our AIX servers using the GENERAL and FILES classes for all userids in the config file. Our basic requirement is to be able to track who deletes and modifies files and directories. Probably we also need to see chmod and some other commands which would help us investigate security issues.

On some servers, the trail files grow at a very fast rate so I am looking to tune the config file so we only get what we need. Has anyone done this and can advise?

I already have a script to copy the trail files and back them up to TSM so the audit file systems don't fill up, but would like to not collect so much data if it isn't necessary.

Thanks
#AIX-Forum

Additional
Resources

Discover these carefully selected resources to dive deeper into your journey and unlock fresh insights

Office

If you need immediate assistance please contact the Community Management team

support@communitysite.ibm.com

Monday - Friday: 8AM - 5 PM MT

Powered by Higher Logic

Global message icon