Hi, for SOX auditing I need to provide Information Security with a daily list of failed login attempts (any server type) and actual logins for a list of sensitive accounts. Straightforward stuff on other platforms but I can't see how it can be done on i5/OS. I have seen a few references to doing this via system security auditing and have it configured but can't see what I should be searching for using DSPJRN and/or DSPAUDJRNE to give me the required output. Am I missing something simple or is this horribly complex? Thx.