We have an audit table that inserts rows via a couple of Db2 packages. The table also has a couple of secondary RACF groups that have been given select authorization to be allowed to execute jobs that unload data. Management wants to be able to report if there were any unauthorized updates or deletes on our audit table. (Not that there should be, but just in case.)
I can think of three ways of checking to see if there were any updates or deletes on our audit table. 1) We could create a job to scan the Db2 logs (via BMC’s Log Master) to report/count what activity has occurred on the table. 2) Create an InfoSphere Replication subscription to capture any updates or deletes. 3) Create a trigger to insert a row on a new table whenever an update or delete occurred on our audit table.
Is any one of the three (or a different way that I have not thought of) the best way to accomplish this? Thanks!