22.3.1 Output patterns during privilege checking

A single audit trail is collected during a single privilege check. However, in the exceptional cases shown in Table 22-4, multiple audit trails are collected during a single privilege check.

Table 22-4 Event execution units and audit trail record output units

EventsExecution unitTarget output unitsNumber of output records
GRANT, REVOKEUserUsersNumber of target users
GroupGroupsNumber of target groups
RoleRolesNumber of target roles
CREATE CONNECTION SECURITY,
DROP CONNECTION SECURITY
Setting value of the connection security facilitySetting values of the connection security facilityNumber of setting values of the connection security facility

When multiple privilege checks occur in a single event, audit trails are output as follows: