Audit Control Flags in macOS 10.15

NIST 800-171 Rev 1 (Draft) created for macOS 10.12 asks for certain events to be not only logged, but flagged (page 48, line 1866). Then on page 110, Appendix J.14, it provides the following command line to be used in Terminal to set those flags (below). When attempting this using macOS 10.15.6, it returns an error message that the file “audit_control.bk” does not exist.

Can anyone tell me how to implement the audit flag command in 10.15.6?

The command line specified in the NIST 800-179 Appendix J.14 for “Set audit control flags” is below. I added “privacy/“ in front of “etc/“ since that’s where that folder is located in the Library.

sed -i.bk ‘s/^flags.*/flags:lo,ad,-all,fd,fm,^-fa,^-fc,^-cl/’ privacy /etc/security/audit_control; rm privacy/etc/security/audit_control.bk

Terminal responds with the following when the complete “sed” line above is entered:

‘s/^flags.*/flags:lo,ad,-all,fd,fm,^-fa,^-fc,^-cl/’ invalid command code ?

Terminal also responds with:

privacy/etc/security/audit_control.bk no such file or directory exists

The NIST 800-179 can be found at: https://csrc.nist.gov/CSRC/media/Publications/sp/800-179/rev-1/draft/documents/sp800-179r1-draft.pdf

Any help in figuring out how to set these flags is appreciated. Thank you for your help.