Understanding how FM/CICS uses SAF rules to control auditing
SAF (System Authorization Facility) allows applications, such as FM/CICS, to define "resources" that might need to be protected. The "resource" to be protected need not be something specific, such as a data set; it can be essentially any type of resource or facility that the application considers to be important. For FM/CICS and auditing, the "resource" is the ability to write audit log records. The resource names reflect either the type of auditing that is to occur (eg to SMF), or the FM/CICS function and resource.
FM/CICS uses two types of SAF resource names to control auditing.
The SAF resource rules used by FM/CICS to control auditing are shown
in FM/CICS auditing FACILITY class resource names and FM/CICS
auditing XFACILIT class resource names).