General Audit Record Structure

The audit records produced by Trusted Solaris auditing software have a sequence of tokens. Certain tokens are optional within an audit record, according to the current audit policy. The group, sequence, and trailer tokens fall into this category. The administrator can determine if these are included in an audit record with the auditconfig command -getpolicy option.

Previous: Audit Token Structure
Next: Kernel-Level Generated Audit Records