Have switched auditing on for a specific directory in the IFS, information is being collected in the audit journal. Now, how do I actually interpret when a file is deleted? I gleaned I need to look for an LD journal type - when I do a test delete of a file is generates numerous LD types, but I haven't managed to find info on how to interpret which one is the actual deletion.
Any ideas will be greatly appreciated.
February 20, 2006 7:54 PM
November 30, 2009 5:04 AM