I have recently installed Anti-Virus scanning for the Netserver (IFS) portion on my IBM i. I am running IBM i v7r2. The Anti-Virus scans are making the number of journal receiver entries increase exponentially. Auditing events are configured as listed: attention events, authorization failure, object creation/deletion/restore, program adoption, security tasks, service tasks, system integrity violation, system management. I'm not auditing objects in QTEMP, & object auditing isn't active.
The AV scanner is producing a lot of entries of the following types: CA (auth change), LD (directory link/unlink/lookup), CO (create object), AD (auditing attribute change), & DO (delete operation).
My question is: can I specify exceptions to auditing/journaling? By job name, user profile, or any other parameter that would allow me to specify that I don't want the AV scanner activity being journaled.
Thanks in advance.