Specifying the level of audit logging

You control the amount of audit logging that CICS® performs for each process, using the AUDITLOG and AUDITLEVEL attributes of the PROCESSTYPE definition. For detailed information about defining process-types, see CEDA DEFINE PROCESSTYPE. However, note the following:

The AUDITLEVEL option of the PROCESSTYPE definition allows you to specify one of four logging levels for processes of the defined type:

ACTIVITY
Specifies activity-level auditing. Audit records will be written from:
  1. The process audit points
  2. The activity primary audit points.
That is, an audit record will be written:
  1. Whenever a process of this type:
    • Is defined
    • Is requested to run
    • Is requested to link
    • Is acquired
    • Completes
    • Is reset
    • Is canceled
    • Is suspended
    • Is resumed
  2. Each time data is placed in a process container belonging to a process of this type--that is, each time a PUT CONTAINER PROCESS or PUT CONTAINER ACQPROCESS command is issued against a process of this type
  3. Each time a process container belonging to a process of this type is deleted
  4. Each time a root activity (DFHROOT) of this type of process is activated.
  5. Every time a non-root activity belonging to a process of this type:
    • Is requested to link
    • Is activated
    • Completes.
FULL
Specifies full auditing. Audit records will be written from:
  1. The process audit points
  2. The activity primary and secondary audit points.
That is, an audit record will be written:
  1. Whenever a process of this type:
    • Is defined
    • Is requested to run
    • Is requested to link
    • Is acquired
    • Completes
    • Is reset
    • Is canceled
    • Is suspended
    • Is resumed

    Each time data is placed in a process container belonging to a process of this type

    Each time a process container belonging to a process of this type is deleted

    Each time a root activity (DFHROOT) of this type of process is activated

  2. Every time a non-root activity belonging to a process of this type:
    • Is defined
    • Is requested to run
    • Is requested to link
    • Is activated
    • Completes
    • Is acquired
    • Is reset
    • Is canceled
    • Is suspended
    • Is resumed
    • Is deleted.
OFF
Specifies that no audit trail records will be written. This is the default value.
PROCESS
Specifies process-level auditing. Audit records will be written from the process audit points only. That is, an audit record will be written whenever a process of this type:

Each time data is placed in a process container belonging to a process of this type

Each time a process container belonging to a process of this type is deleted

Each time a root activity (DFHROOT) of this type of process is activated

Note:
If you specify any value for AUDITLEVEL other than OFF, you must also specify the AUDITLOG option of the PROCESSTYPE definition.

You must choose a level of auditing that suits your needs. The more records that are written to the audit log, the longer your business transaction will take to run. The fewer records written, the less information there will be for auditing or diagnostic purposes.

To reset the AUDITLEVEL attribute of an installed PROCESSTYPE definition, use the CEMT SET PROCESSTYPE command. Changes are preserved across a restart of CICS. Note that changes to an installed PROCESSTYPE definition have no effect on existing processes.

If a request to write an audit record fails:

Related concepts
Introduction to BTS audit trails
Audit trail examples
Related tasks
Audit trail constraints--using DASD-only logstreams
Using the audit trail utility program, DFHATUP
[[ Contents Previous Page | Next Page Index ]]