hi db2 gurus, after reading up on
http://www.databasejournal.com/features/db2/article.php/3438801, I would
like to get some input on "how" to develop a security policy.

I believe enabling every option below will give the most complete audit
trail, however, it likely comes with a huge price tag on performance.
Do you implement db2audit? Why is it important? What does it do? Which
option is a must? Will performance be affected if db2audit is enabled?

Thank you very much for your input.

Cheers
Ray

$ db2audit describe
DB2 AUDIT SETTINGS:

Audit active: "FALSE "
Log errors: "TRUE "
Log success: "FALSE "
Log audit events: "TRUE "
Log checking events: "TRUE "
Log object maintenance events: "TRUE "
Log security maintenance events: "TRUE "
Log system administrator events: "TRUE "
Log validate events: "TRUE "
Log context events: "FALSE "
Return SQLCA on audit error: "FALSE "

AUD0000I Operation succeeded.


DB2 & UDB email list listserv db2-l LazyDBA home page