This manual page is for Mac OS X version 10.6.3

If you are running a different version of Mac OS X, view the documentation locally:

  • In Terminal, using the man(1) command

Reading manual pages

Manual pages are intended as a quick reference for people who already understand a technology.

  • For more information about the manual page format, see the manual page for manpages(5).

  • For more information about this technology, look for other documentation in the Apple Reference Library.

  • For general information about writing shell scripts, read Shell Scripting Primer.


AUDIT(8)                                 BSD System Manager's Manual                                AUDIT(8)

NAME
     audit -- audit management utility

SYNOPSIS
     audit -e | -i | -n | -s | -t

DESCRIPTION
     The audit utility controls the state of the audit system.  One of the following flags is required as an
     argument to audit:

     -e      Forces the audit system to immediately remove audit log files that meet the expiration criteria
             specified in the audit control file without doing a log rotation.

     -i      Initializes and starts auditing.  This option is currently for Mac OS X only and requires
             auditd(8) to be configured to run under launchd(8).

     -n      Forces the audit system to close the existing audit log file and rotate to a new log file in a
             location specified in the audit control file.  Also, audit log files that meet the expiration
             criteria specified in the audit control file will be removed.

     -s      Specifies that the audit system should [re]synchronize its configuration from the audit control
             file.  A new log file will be created.

     -t      Specifies that the audit system should terminate.  Log files are closed and renamed to indicate
             the time of the shutdown.

NOTES
     The auditd(8) daemon must already be running.  Optionally, it can be configured to be started on-demand
     by launchd(8) (Mac OS X only).  The audit utility requires audit administrator privileges for success-ful successful
     ful operation.

FILES
     /etc/security/audit_control  Audit policy file used to configure the auditing system.

SEE ALSO
     audit(4), audit_control(5), auditd(8), launchd(8)

HISTORY
     The OpenBSM implementation was created by McAfee Research, the security division of McAfee Inc., under
     contract to Apple Computer Inc. in 2004.  It was subsequently adopted by the TrustedBSD Project as the
     foundation for the OpenBSM distribution.

AUTHORS
     This software was created by McAfee Research, the security research division of McAfee, Inc., under
     contract to Apple Computer Inc.  Additional authors include Wayne Salamon, Robert Watson, and SPARTA
     Inc.

     The Basic Security Module (BSM) interface to audit records and audit event stream format were defined
     by Sun Microsystems.

BSD                                           January 29, 2009                                           BSD

Reporting Problems

The way to report a problem with this manual page depends on the type of problem:

Content errors
Report errors in the content of this documentation with the feedback links below.
Bug reports
Report bugs in the functionality of the described tool or API through Bug Reporter.
Formatting problems
Report formatting mistakes in the online version of these pages with the feedback links below.

Did this document help you? Yes It's good, but... Not helpful...