Introduction

Features

• Monitors for the arrival of different types of journal entries in the system audit journal QAUDJRN
  
  
• Comprehensive filters can be set up to ignore unimportant entries while quickly alerting you to important entries of which you need to be made aware
  
  
• Escalating actions can be defined to draw your attention to critical events
  
  
• Substitution variables can be used to pass variable information for easy and accurate command execution
  
  
• An unlimited number of actions can be performed in any pre-defined sequence when your selected journal entries are received by the system
  
  
• Actions include executing commands, calling programs, sending a text message to a mobile phone, writing a record to an external log file etc.
  
  
• Messages can be sent directly into the Halcyon Enterprise Console when a graphical centralized management tool is required
  
  
• Includes full diagnostics and audit trail

Benefits

• Analyze and monitor changes made to user profiles, such users changing their authority to *SECADM for example
• Quickly detect when invalid attempts are made to sign on - especially if this happens to be QSECOFR
• Changes to your system values can be tracked and traced as these can have a significant impact on areas of security and system performance
• Be informed when sensitive objects (such as the Payroll file) are created, deleted, restored, moved or renamed or ownership to that object or access rights are changed
• Authority failures can be detected and brought to someone's immediate attention. For example, a user might be attempting to access an object that they are not authorized to, such as the supplier master file
• Keep an eye on user profile swapping and be kept informed about what is happening on your system
• Command string audit - monitor for when security related commands are executed or commands are issued by a specific user or job