CHKAUDAUT -- Check *AUDIT Special Authority

CHKAUDAUT CHECK *AUDIT SPECIAL AUTHORITY TAASEIA
The Check AUDIT Special Authority command checks if the user (including group authority and adopted authority) has AUDIT special authority. The command completes normally with no feedback if the user has AUDIT authority. If the user does not have AUDIT authority, TAA9891 is sent as an escape message. How CHKAUDAUT operates ---------------------- The CHKAUDAUT command attempts to set auditing for the TAASEIAC2 program in TAATOOL using CHGOBJAUD to OBJAUD(USRPRF). If the user is authorized, CHGOBJAUD is used again to set the program to OBJAUD(NONE). If the user does not have AUDIT authority (or his group profile if any or any adopted authority), an escape message is monitored for and TAA9891 is sent as an escape message. The TAASEIAC2 program has no other function other than to act as a test object to set and unset auditing for. Audit Journal ------------- If the user is not authorized, an entry will appear in the audit journal of entry type AF and sub type K. The name of the object will be QSYCGOBA in QSYS. The user name will be the current user. If the user is authorized, an entry will normally not occur. An entry would occur if the user profile is set for auditing or the CHKAUDAUT command is set for auditing. CHKAUDAUT escape messages you can monitor for --------------------------------------------- TAA9891 The user does not have AUDIT special authority Escape messages from based on functions will be re-sent. CHKAUDAUT Command parameters CMD ---------------------------- ERRTXT The error text to be used if an error occurs. The default is STD which produces standard error text. The intent of allowing you to enter the text is if you are using the CHKAUDAUT command in a program that uses a standard error handling routine to bubble up the message text to the caller. You can supply some specific text relative to the function of your program. Restrictions ------------ None. Prerequisites ------------- The following TAA Tools must be on your system: SNDESCINF Send escape information SNDESCMSG Send escape message Implementation -------------- None, the tool is ready to use. Objects used by the tool ------------------------ Object Type Attribute Src member Src file ------ ---- --------- ---------- ---------- CHKAUDAUT CMD TAASEIA QATTCMD TAASEIAC PGM CLP TAASEIAC QATTCL TAASEIAC2 *PGM CLP TAASEIAC2 QATTCL

CHKAUDAUT       CHECK *AUDIT SPECIAL AUTHORITY         TAASEIA


The  Check  *AUDIT  Special  Authority  command   checks  if  the  user
(including  group authority and  adopted authority) has  *AUDIT special
authority.   The  command completes  normally with  no feedback  if the
user  has  *AUDIT  authority.    If  the  user  does  not  have  *AUDIT
authority, TAA9891 is sent as an escape message.

How CHKAUDAUT operates
----------------------

The  CHKAUDAUT  command attempts  to  set  auditing  for the  TAASEIAC2
program  in TAATOOL  using CHGOBJAUD to  OBJAUD(*USRPRF).   If the user
is  authorized,  CHGOBJAUD  is  used  again  to  set  the   program  to
OBJAUD(*NONE).

If the  user does not  have *AUDIT authority  (or his group  profile if
any or  any adopted authority), an escape  message is monitored for and
TAA9891 is sent as an escape message.

The TAASEIAC2 program  has no  other function other  than to  act as  a
test object to set and unset auditing for.

Audit Journal
-------------

If the  user  is not  authorized, an  entry  will appear  in the  audit
journal of entry  type AF and sub type K.  The  name of the object will
be QSYCGOBA in QSYS.  The user name will be the current user.

If  the  user is  authorized, an  entry will  normally  not occur.   An
entry would  occur  if the  user profile  is set  for  auditing or  the
CHKAUDAUT command is set for auditing.

CHKAUDAUT escape messages you can monitor for
---------------------------------------------

      TAA9891    The user does not have *AUDIT special authority

Escape messages from based on functions will be re-sent.

CHKAUDAUT Command parameters                          *CMD
----------------------------

   ERRTXT        The error  text to  be used if  an error occurs.   The
                 default  is *STD  which produces standard  error text.

                 The intent of  allowing you  to enter the  text is  if
                 you  are using  the  CHKAUDAUT  command in  a  program
                 that  uses   a  standard  error  handling  routine  to
                 bubble up the  message text  to the caller.   You  can
                 supply some  specific  text relative  to the  function
                 of your program.


Restrictions
------------

None.

Prerequisites
-------------

The following TAA Tools must be on your system:

     SNDESCINF       Send escape information
     SNDESCMSG       Send escape message

Implementation
--------------

None, the tool is ready to use.

Objects used by the tool
------------------------

   Object        Type    Attribute      Src member    Src file
   ------        ----    ---------      ----------    ----------

   CHKAUDAUT     *CMD                   TAASEIA       QATTCMD
   TAASEIAC      *PGM       CLP         TAASEIAC      QATTCL
   TAASEIAC2     *PGM       CLP         TAASEIAC2     QATTCL

Added to TAA Productivity tools April 15, 2009

Home Page

Up to Top