Use
The Security AuditLog saves its audits to a corresponding audit file on a daily basis. Dependingon the size of your SAP system and the filters specified, you may be facedwith an enormous quantity of data within a short period of time.
We recommendarchiving your audit files on a regular basis and deleting the original filesas necessary.
Use this procedureto delete old audit files. You can either delete the files from allapplication servers or from only the local server where you are working. If anapplication server is not currently active, it will be included in the nextreorganization.
This procedure only deletes the audit logfile(s)! It does not perform any other administrative taskssuch as archiving. If archives are necessary for future references, you mustmanually archive them before deleting.
You cannotpurge files that are less than 3 days old!
Procedure
...
1.To access theSecurity Audit Log reorganization tool from the SAPstandard menu, choose Tools à Administration à Monitor à Security Audit Log à Reorganization (transaction SM18).
The Security Audit: Delete Old Audit Logs screenappears.
2.Enter the Minimum age of files to delete (default = 30days).
This valuemust be >= 3.
3.Activate the On all active instances indicator to delete the auditfiles from all application servers. Leave the indicator blank if you only wantto delete the files from the local application server.
4.Activate the Simulation Only indicator if you do not actually want todelete the files. In this case, the action is only simulated.
5.Choose Program à Execute.
Result
The system deletesthe corresponding audit files (unless you chose to simulate). You receive alist showing how many files were deleted and how many were retained on eachapplication server.