Have a look at object monitoring in the system audit journal – QAUDJRN. The system values QAUDLVL and QAUDCTL controls this as well.
Best of luck
Along with object auditing (CHGOBJAUD), you can also use user auditing (CHGUSRAUD). User auditing can include AUDLVL(*CMD) to track commands issued by the user. Other than combining database journaling with object auditing, I’m not aware of any useful way of tracking which users did what to or with which files. Those are the system methods provided for tracking, so there’s no reason not to use them.
As for LMTCPB(*YES) and menu control, they are practically worthless. Ignore them.