nss.alt.zone.auditlevel

This configuration parameter enables you to specify a default audit level for all users who do not have an audit level explicitly defined using the nss.user.override.userlist parameter. Note that this parameter is only applicable in classic zones. You should not set this parameter if you are using hierarchical zones.

You can set this parameter to one of the following valid values:

  • use_sysrights
  • audit_if_possible
  • no_audit
  • audit_required

The default value is use_sysrights. This setting determines the audit level by communicating with the adclient process.

The effective audit level for a user is determined in the following order:

  1. If the user is included in the list specified by the nss.user.override.userlist parameter and the audit level is specified for the user, the specified audit level is used.
  2. If the user is included in the list specified by the nss.user.override.userlist parameter and the audit level is not specified for the user, the value specified by the nss.user.override.auditlevel parameter is used.
  3. If the user is not included in the list specified by the nss.user.override.userlist parameter, the audit level specified for the nss.alt.zone.auditlevel parameter is used.