Red Hat 8.1 사용자 설명서
cn=config
11
2.3.1.1. nsslapd-accesslog (Access Log)
This attribute specifies the path and filename of the log used to record each LDAP access. The
following information is recorded by default in the log file:
following information is recorded by default in the log file:
• IP address of the client machine that accessed the database.
• Operations performed (for example, search, add, and modify).
• Result of the access (for example, the number of entries returned or an error code).
For more information on turning access logging off, see the "Monitoring Server and Database Activity"
chapter in the Directory Server Administrator's Guide.
chapter in the Directory Server Administrator's Guide.
For access logging to be enabled, this attribute must have a valid path and parameter, and the
nsslapd-accesslog-logging-enabled
nsslapd-accesslog-logging-enabled
configuration attribute must be switched to on. The table
lists the four possible combinations of values for these two configuration attributes and their outcome
in terms of disabling or enabling of access logging.
in terms of disabling or enabling of access logging.
Attribute
Value
Logging enabled or disabled
nsslapd-accesslog-logging-
enabled
enabled
nsslapd-accesslog
on
empty string
Disabled
nsslapd-accesslog-logging-
enabled
enabled
nsslapd-accesslog
on
filename
Enabled
nsslapd-accesslog-logging-
enabled
enabled
nsslapd-accesslog
off
empty string
Disabled
nsslapd-accesslog-logging-
enabled
enabled
nsslapd-accesslog
off
filename
Disabled
Table 2.2. dse.ldif File Attributes
Parameter
Description
Entry DN
cn=config
Valid Values
Any valid filename.
Default Value
/var/log/dirsrv/slapd-instance_name/access
Syntax
DirectoryString
Example
nsslapd-accesslog: /var/log/dirsrv/
slapd-instance_name/access
slapd-instance_name/access
2.3.1.2. nsslapd-accesslog-level (Access Log Level)
This attribute controls what is logged to the access log.