DENIALS, entries made only when statement execution fails because the user did not have the privilege set necessary to perform the request, are no longer logged.
DENIALS can only be specified in an END LOGGING statement if the option was originally applied in a BEGIN LOGGING statement.