12.2.6 Enabling the audit trail facility
The following explains how to enable the audit trail facility.
To enable the audit trail facility, you must execute the adbaudittrail command. As an HADB user with the audit admin privilege, execute the adbaudittrail command with the --start option specified.
When enabling the audit trail facility, you can specify in the --write-error option the approach to take when the HADB server cannot write audit trail data to an audit trail file. Specify a value for the --write-error option based on the approach you selected in 12.1.7 Considering the approach to take when attempts to write to the audit trail file fail.
- ■ When specifying DOWN in the --write-error option
-
If you specify DOWN in the --write-error option, the HADB server does not terminate if audit trail data cannot be written to the audit trail file.
A specification example is as follows:
adbaudittrail -u ADBAUDITADMIN -p '#HelloHADB_ADMIN' --start --write-error DOWN - ■ When specifying FAILSOFT in the --write-error option
-
If you specify FAILSOFT in the --write-error option, the HADB server does not terminate even if audit trail data cannot be written to the audit trail file. The audit trail data that could not be written to the audit trail file is discarded, and the HADB server continues operating.
A specification example is as follows:
adbaudittrail -u ADBAUDITADMIN -p '#HelloHADB_ADMIN' --start --write-error FAILSOFT
- Note
-
For details about the adbaudittrail command, see adbaudittrail (Manage the Audit Trail Facility) in the manual HADB Command Reference.