SAT file management may

• manage the files created by SAT (Security Audit Trail); in particular it may switch the SAT logging file (SATLOG) with the CHANGE-SAT-FILE command

• evaluate the SATLOG files and the CONSLOG files

• use the SET-REPLOG-READ-MARK command to request the current status of the REP logging file $SYSAUDIT.REPLOG.<date>.<sessno> (which can then be viewed with SHOW-FILE), see the “Introduction to System Administration” [2]

The owner of this privilege is called the SAT file manager (see the “SECOS - Security Control System - Audit” manual [1]). For security reasons, SAT logging is always activated for the SAT file manager.

Upon delivery, the privilege SAT file management is assigned to the user ID SYSAUDIT. The security administrator may assign it to any other user ID (except his/her own and TSOS).

Logging with SAT is automatically activated for user IDs with this privilege and it cannot be deactivated as long as the user ID possesses the privilege. This applies in all cases, regardless of whether the privilege is assigned as an individual privilege or as part of a privilege set.

The restrictions regarding the nomination of the SAT file manager with regard to the user IDs and co-existing privileges and rights may be canceled if required (see section "Centralized administration").

The privilege SAT file management is referred to as SAT-FILE-MANAGEMENT in commands and messages and as SATFMGMT in macros.