Understanding how File Manager uses SAF rules to control auditing
SAF (System Authorization Facility) allows applications, such as File Manager, to define "resources" that might need to be protected. The "resource" to be protected need not be something specific, such as a data set; it can be essentially any type of resource or facility that the application considers to be important. For File Manager and auditing, the "resource" is the ability to write audit log records. The resource names reflect either the type of auditing that is to occur (eg to SMF), or the File Manager function and data set.
File Manager uses two types of SAF resource names to control auditing.
The SAF resource rules used by File Manager to control auditing are shown
in File Manager auditing FACILITY class resource names and File Manager auditing XFACILIT class resource names).