2017 R1

Security Aspects of the AuditPermanent link for this heading

Reading Audit logsPermanent link for this heading

To be able to read the audit log of an object class the Read Audit Log permission (COOSYSTEM@1.1:AccTypeReadAuditLog) is needed. The audit log can be read using the Audit Log property (COOSYSTEM@1.1:objauditlog) of an object.

Note: If dedicated audit data sources are used, successful reading of data is required for each data source to be able to read audit information.

Data SourcePermanent link for this heading

If a user accesses a data source, for the first write access he or she needs the permission for creating tables. The table (fscauditlogentrylist) is created automatically and audit information is written to this table. Further on, only write and read access for this table is required.