When the Security Audit Log records events, it also triggers a corresponding security alert in the Computing Center Management System (CCMS) alert monitor.
The security alerts that are created correspond to the audit classes of events as defined in the Security Audit Log, which include:
- Dialog logon attempts
- RFC/CPIC logon attempts
- Transaction starts
- Report starts
- RFC function calls
- Changes to user master records
- Changes to the Security Audit Log configuration
By monitoring the security alerts in the CCMS alert monitor, you can quickly identify security-related problems in your system. After performing the immediate on-alert action to resolve the alert, you can analyze the Security Audit Log files for more information about the specific event that caused the alert.
You can view the security alerts directly in the CCMS alert monitor (see the topic Viewing Security Alerts) or use BAPIs (Business Application Program Interfaces) to access the alerts from external programs (see the topic Reading Security Alerts Using BAPIs).
No comments:
Post a Comment