Fujitsu SPARC Enterprise M4000 Reference Manual page 276

showaudit(8)
OPTIONS
310
The following options are supported:
-a users Displays the audit record generation policy for the specified users.
users is a comma-separated list of valid user names.
-c classes Displays the audit record generation policy for the specified audit
classes. classes is a comma-separated list of audit classes. A class
may be specified by its numeric value or its name. The ACS_
prefix may be omitted. For example, the class of audit related
events can be expressed as ACS_AUDIT, AUDIT or 16.
The following are valid classes:
all
ACS_SYSTEM(1)
ACS_WRITE(2)
ACS_READ(4)
ACS_LOGIN(8)
ACS_AUDIT(16)
ACS_DOMAIN(32)
ACS_USER(64)
ACS_PLATFORM(128)
ACS_MODES(256)
-e events Displays the audit record generation policy for the specified audit
events. events is a comma-separated list of audit events. An event
may be specified by its numeric value or its name. The AEV_
prefix may be omitted. For example, the event for SSH login can be
expressed as AEV_LOGIN_SSH, LOGIN_SSH, or 0.
See showaudit -e all for a list of all valid events.
Displays the global user audit record generation policy.
-g
Displays usage statement.
-h
When used with other options or operands, an error occurs.
Displays the address to which email is sent when the local audit
-m
storage space usages reaches a threshold.
XSCF Reference Manual • Last Revised June 2007
Denotes all classes.
System-related events
Commands that can modify a state
Commands that read a current
state
Login-related events
Audit-related events
Domain management–related
events
User management–related events
Platform management–related
events
Mode-related events