Powertech Authority Broker For IBM iAudit
Overview
With Authority Broker For IBM i, System Administrators have the ability to limit access to powerful user profiles and control access to sensitive databases and programs. Users can be granted temporary authority that is either more or less powerful than their usual settings, and in cases where the user needs higher authority, they can temporarily change to that authority if the administrator has granted them sufficient privileges. In cases where a user would be safer operating under less authority, they can again temporarily change to that authority with the system administrator's advance approval.
Authority Broker For IBM i, which can be called from command line or batch processes, is similar to the "su" capability of UNIX. But unlike "su", Authority Broker For IBM i provides additional capabilities such as full auditing and reporting of all changes to authority, as well as comprehensive auditing of the actions the user performs under the assumed authority.
Authority Broker For IBM i Events
Understanding the MSG ID
For Authority Broker For IBM i events, message IDs are numbered according to the following scheme:
The first letter in the message ID:
U = Powertech user defined journal entries from QAUDJRN which are from Authority Broker For IBM i.
The second two letters in the message ID:
BG = Begin swap
BH = User profile swap logging
EN = End profile swap
ER = Authority Broker action logged
FC = FireCall logged
FL = Action failure
JA= Timed switch performed
The four-digit number at the end of the message ID:
All Authority Broker For IBM i message IDs currently use '0001'.
Below is a compilation of Authority Broker For IBM i events.
| MSGID | MSG |
|---|---|
| UBG0001 | Begin Swap |
| UBH0001 | User Profile swap logging |
| UEN0001 | End Profile swap |
| UER0001 | Authority Broker For IBM i action logged |
| UFC0001 | FireCall logged |
| UFL0001 | Action Failure |
| UJA0001 | Timed Switch Performed |