Red Hat Directory Server 8.0 Configuration, Command, and File Reference
Access Log and Connection Code
Reference
Red Hat Directory Server (Directory Server) provides logs to help monitor directory activity.
Monitoring helps quickly detecting and remedying failures and, where done proactively,
anticipating and resolving potential problems before they result in failure or poor performance.
Part of monitoring the directory effectively is understanding the structure and content of the log
files.
This chapter does not provide an exhaustive list of error messages. However, the information
presented in this chapter serves as a good starting point for common problems.
1. Access Log Content
The Directory Server access log contains detailed information about client connections to the
directory. A connection is a sequence of requests from the same client with the following
structure:
• Connection record, which gives the connection index and the IP address of the client.
• Bind record.
• Bind result record.
• Sequence of operation request/operation result pairs of records (or individual records in the
case of connection, closed, and abandon records).
• Unbind record.
• Closed record.
Every line begins with a timestamp — [21/Apr/2007:11:39:51 -0700] — the format of which
may vary depending on the platform. -0700 indicates the time difference in relation to GMT.
Apart from the connection, closed, and abandon records, which appear individually, all records
appear in pairs, consisting of a request for service record followed by a result record. These two
records frequently appear on adjacent lines, but this is not always the case.
This section presents the different levels of access logging available with Directory Server, then
describes the default access logging content, and ends with a description of the additional
access logging level content.
• Section 1.1, “Access Logging Levels”
• Section 1.2, “Default Access Logging Content”
• Section 1.3, “Access Log Content for Additional Access Logging Levels”
Chapter 5.
179