My 2 cents...
I had auditing turned on for the IFS and had to turn it off. We have DB2 Web Query in use and the number of entries for the temporary files it creates/deletes was astronomical. I'm not sure if there are any other applications that would behave similarly.
We also have Precisely SAM (Exit Point security) - I have it logging my IFS access. I have it in "report" mode for the IFS. It seems to report what you would be looking for.
From: MIDRANGE-L <midrange-l-bounces@xxxxxxxxxxxxxxxxxx> On Behalf Of Don Brown via MIDRANGE-L
Sent: Wednesday, March 29, 2023 5:24 AM
Cc: Don Brown <DBrown@xxxxxxxxxx>
Subject: [EXTERNAL] Active users
I am about to engage a developer for a small project who will be working
remotely and I am just trying to make sure I have the environment set up
securely/correctly and had a couple of questions ...
If I want to see who is on the system in a green screen environment I just
look at the active jobs in qinter or other interactive sub systems.
From there I can look at the job log to see a little of what they are
But if a remote developer is working in the IFS how can I firstly see if
anyone is connected and what they are doing.
I can wrkobjlck on the user profile and see the jobs associated but that
is hit and miss
I don't currently have object auditing of IFS objects turned on but that
may be something I should consider.
Currently all IFS directories are *public *exclude and access is granted
by authority list so for the developer they only have access to the
specific directories they need. Am I missing anything here ?
Libraries are also protected by authority list with no *public access.
This email has been scanned for computer viruses. Although MSD has taken reasonable precautions to ensure no viruses are present in this email, MSD cannot accept responsibility for any loss or damage arising from the use of this email or attachments..
This is the Midrange Systems Technical Discussion (MIDRANGE-L) mailing list
To post a message email: MIDRANGE-L@xxxxxxxxxxxxxxxxxx
To subscribe, unsubscribe, or change list options,
or email: MIDRANGE-L-request@xxxxxxxxxxxxxxxxxx
Before posting, please take a moment to review the archives
Please contact support@xxxxxxxxxxxxxxxxxxxx for any subscription related questions.
[CAUTION! This email originated outside of the organization. Please do not open attachments or click links from an unknown or suspicious origin.]
As an Amazon Associate we earn from qualifying purchases.