Ability to view error and
access logs and rotate the log files.
|
Try
This:
Use Netscape Console to view
the currently configured access log. |
Factoid:
The access log file grows
by about 1MB for every 2,000 directory accesses. |
In real-world environments,
log files could end up competing for disk space with the directory database,
thereby degrading the write performance. In the interest of performance,
you should always try to locate your logs on a separate disk from the directory
database.
|
Try
This:
Use Netscape Console to view
the configuration settings for the access log. |
You can disable access logging
manually by changing the accesslog-logging-enabled parameter
in the slapd.conf file. |
Directory Server Administrator's
Guide: Chapter 10, Managing Your Directory Server.
|
Try
This:
Use Netscape Console to view
the log creation and deletion policies currently in effect for your access
log. |
Try
This:
Change the creation and deletion
policy for your error log. |
|
Server Log Files
The Directory Server maintains 3 log files:
Access Log: The access log contains detailed information about
client connections to the directory. You can turn off access logging
in order to improve performance.
Error Log: The error log contains detailed messages of errors
and events the server experiences during normal operations.
Audit Log: The audit log contains detailed information about
changes made to each database as well as to server configuration.
If you choose to leave error and access logs on, you should move them
to a separate disk from your database.
Viewing the Access Log
To view the access log for the directory server:
On the Directory Server Console, select the Status tab and
then select the Logs icon in the navigation tree.
Select the Access Log tab in the right pane. The first 25
entries in the access log are displayed by default.
Click Refresh to update the displayed information. For continuous
updates, click the Continuous check box.
From this display you can:
Select an archived access log by clicking the Select Log pull-down
menu, picking the desired archived log, then clicking Refresh.
Alter the number of displayed messages by entering the desired number in
the Lines to show text box and then clicking Refresh.
Displayed messages containing a string you specify by entering the desired
string in the Show only lines containing text box and then clicking
Refresh.

Configuring the Access Log
Configuration settings for the access log include such things
as the location of the log itself, and the creation and deletion policies.
To configure the access log for your server:
On the Directory Server Console, select the Configuration
tab and then select the Logs icon in the navigation tree.
Select the Access Log tab in the right pane.
Logging is enabled when you select the Enable Logging
checkbox. To disable logging, simply clear this checkbox.
In the Log File text box, you enter the full path and filename
you want the server to use for the access log. The default is nshome/slad-serverId/logs/access
Creation Policy
In the Creation Policy boxes, you can also define a
policy that would cause the server to periodically archive the current
access log and start a new one. Note the entries for Maximum number
of logs, File size for each log, and Create a new log every.
Deletion Policy
By moving the slider bar down in the console display you can
get to the
Deletion Policy area of the Access log configuration.
Note that through this area, you set policies that have the server delete
logs that exceed a defined size, delete logs when the disk free space is
less that a define amount, or delete files that are older than a defined
age.
Viewing The Error Log
The error log contains detailed messages of errors and events
the server experiences during normal operations. To view the error
log:
On the Directory Server Console, select the Status tab and
then select the Logs icon in the navigation tree.
Select the Error Log tab in the right pane. The first 25 entries
in the error log are displayed by default.
Configuring the Error Log
Configuration settings for the error log include such things
as the location of the log itself, and the creation and deletion policies.
To configure the error log for your server:
On the Directory Server Console, select the Configuration
tab and then select the Logs icon in the navigation tree.
Select the Error Log tab in the right pane.
Note that some of the items, for example the creation and deletion
policy settings, are very similar to those in the access log. One
item unique to the error log is the Log Level. Log Level specifies
the level of logging to be used by the directory server.
Viewing the Audit Log
The audit log contains detailed information about changes made
to each database as well as to the server configuration. To view the audit
log:
In the Directory Server administration window, select the Status
tab and then select the Logs icon in the navigation tree.
Select the Audit Log tab in the right pane. The first 25 entries
in the audit log are displayed by default.
Click Refresh to update the displayed information.
You can view an archived audit log by selecting it in the Select
Log pull-down menu and clicking Refresh. You can also
limit the displayed information to those entries that match a desired string
through the Show only lines containing text box.
Configuring the Audit Log
You can use the Console to enable and disable audit logging
and to specify where the audit log file is stored. To configure audit
logging for your server.
On the Console, select the Configuration tab.
Select the Audit Log tab in the right pane.
From the display, you can enable/disable audit logging (the Enable logging
checkbox), set up a creation and deletion policy, and set the full path
and filename you want the server to use for the audit log.
|