Is there a way to audit (record all occurrences of) the appearance of warning message:
TSS7003W Password Will Expire on mm/dd/yy
Set CA Top Secret control option:
which will indicate the TSS7003W message is a violation and sent to the security console by using WTO route code 9.
This is not recommended, because every time the TSS7003W message is issued, it would be written to the console.
Please refer to the CA Top Secret Control Options Guide for more details about the MSG control option.