Oracle Solaris provides an audit service that collects data about system access and use. The audit data provides a reliable time-stamped log of security-related system events. This data can then be used to assign responsibility for actions that take place on a system.
Auditing is a basic requirement for security evaluation, validation, compliance, and certification bodies. Auditing can also provide a deterrent to potential intruders.
For more information, see the following:
For a list of audit-related man pages, see Chapter 7, Auditing Reference, in Managing Auditing in Oracle Solaris 11.2 .
For guidelines, see How to Audit Significant Events in Addition to Login/Logout and the man pages.
For an overview of auditing, see Chapter 1, About Auditing in Oracle Solaris, in Managing Auditing in Oracle Solaris 11.2 .
For auditing tasks, see Chapter 3, Managing the Audit Service, in Managing Auditing in Oracle Solaris 11.2 .