
user issues a SAFECOM INFO USER command it causes the following three underly-
ing events:
The attempt to run SAFECOM
The attempt to open the user’s terminal
The attempt to open the $ZSMP process
Simply logging on to the system will generate Safeguard audits not only as Safe-
guard software reads the USERID file and authenticates the user, but as the user reads
the TACLLOCL and TACLCSTM files and opens any files or macros run from
within these files.
RISK Setting AUDIT-USER-ACTION-PASS to call can increase the amount
of auditing enough to cause an impact on system performance, especially if the
SUPER.SUPER user record is configured to audit all activity. ...