The DCE Audit Service has the following features:
· An audit daemon performs the logging of audit records based on specified criteria.
· Application programming interfaces (APIs) can be used as part of application server programs to record audit events. These APIs can also be used to create tools that analyze the audit records.
· An administrative command interface to the audit daemon directs the daemon in selecting the events that are going to be recorded based on certain criteria.
· An event classification mechanism is used to logically group a set of audit events for ease of administration.
· Audit records can be directed to logs or to the console.