Canmove, confirm
937
edits
Changes
→Access to System Audit Log
Turn on audit service:
On Trusted Solaris 8 , auditing is enabled by default; for non-trusted Solaris run: /etc/security/bsmconv (either as root or a user that has been given the Audit Control RBAC profile in Solaris 8)
reboot your system.
After the system has rebooted, ensure auditd is running: ps -ecf | grep auditd
