AUDIT_USER man page on SmartOS

Man page or keyword search:  
man Server   16655 pages
apropos Keyword Search (all sections)
Output format
SmartOS logo
[printable version]

AUDIT_USER(4)							 AUDIT_USER(4)

NAME
       audit_user - per-user auditing data file

SYNOPSIS
       /etc/security/audit_user

DESCRIPTION
       audit_user  is  a  database  that stores per-user auditing preselection
       data.  You  can	use  the  audit_user  file  with  other	 authorization
       sources,	 including  the	 NIS  map audit_user.byname and the NIS+ table
       audit_user. Programs use the getauusernam(3BSM) routines to access this
       information.

       The  search order for multiple user audit information sources is speci‐
       fied in the /etc/nsswitch.conf file. See nsswitch.conf(4).  The	lookup
       follows the search order for passwd(4).

       The  fields  for each user entry are separated by colons (:). Each user
       is separated from the next by a newline. audit_user does not have  gen‐
       eral read permission. Each entry in the audit_user file has the form:

	 username:always-audit-flags:never-audit-flags

       The fields are defined as follows:

       username
			     User's login name.

       always-audit-flags
			     Flags specifying event classes to always audit.

       never-audit-flags
			     Flags specifying event classes to never audit.

       For  a complete description of the audit flags and how to combine them,
       see audit_control(4).

EXAMPLES
       Example 1 Using the audit_user File

	 other:lo,am:io,cl
	 fred:lo,ex,+fc,-fr,-fa:io,cl
	 ethyl:lo,ex,nt:io,cl

FILES
       /etc/nsswitch.conf

       /etc/passwd

       /etc/security/audit_user

ATTRIBUTES
       See attributes(5) for descriptions of the following attributes:

       ┌─────────────────────┬─────────────────┐
       │   ATTRIBUTE TYPE    │ ATTRIBUTE VALUE │
       ├─────────────────────┼─────────────────┤
       │Interface Stability  │	See below.     │
       └─────────────────────┴─────────────────┘

       The file format stability is Committed. The file content	 is  Uncommit‐
       ted.

SEE ALSO
       bsmconv(1M),  getauusernam(3BSM),  audit_control(4),  nsswitch.conf(4),
       passwd(4)

       Part VII, Solaris Auditing, in System  Administration  Guide:  Security
       Services

NOTES
       This functionality is available only if the Basic Security Module (BSM)
       has been enabled. See bsmconv(1M) for more information.

       Configuration changes do not affect audit sessions that	are  currently
       running, as the changes do not modify a process's preselection mask. To
       change the preselection mask on a running process,  use	the  -setpmask
       option  of  the	auditconfig command (see auditconfig(1M)). If the user
       logs out and logs back  in,  the	 new  configuration  changes  will  be
       reflected in the next audit session.

				 Jun 26, 2008			 AUDIT_USER(4)
[top]

List of man pages available for SmartOS

Copyright (c) for man pages and the logo by the respective OS vendor.

For those who want to learn more, the polarhome community provides shell access and support.

[legal] [privacy] [GNU] [policy] [cookies] [netiquette] [sponsors] [FAQ]
Tweet
Polarhome, production since 1999.
Member of Polarhome portal.
Based on Fawad Halim's script.
....................................................................
Vote for polarhome
Free Shell Accounts :: the biggest list on the net