[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: Logging question

To: Howard Chu <hyc@symas.com>
Subject: Re: Logging question
From: Ski Kacoroski <ckacoroski@nsd.org>
Date: Thu, 15 Jun 2006 17:33:15 -0700
Cc: matthew sporleder <msporleder@gmail.com>, openldap-software@OpenLDAP.org
In-reply-to: <448FBC85.1030701@symas.com>
References: <448F4F38.4020303@nsd.org> <b0459d5c0606132025v109ff45n810e5d7125c03cc4@mail.gmail.com> <448FAD29.90101@symas.com> <448FB5CD.4000703@nsd.org> <448FBC85.1030701@symas.com>
User-agent: Thunderbird 1.5.0.4 (X11/20060516)

Howard Chu wrote:

Ski Kacoroski wrote:
Howard Chu wrote:
matthew sporleder wrote:
On 6/13/06, Ski Kacoroski <ckacoroski@nsd.org> wrote:
Or you could look into the access log overlay.  :)
That may be a good solution. Define two separate log databases, and separate the machine and user data into two databases, using subordinates to glue them together. Use an accesslog overlay on each main database, logging to separate log databases.

Of course, the info in the accesslog may not be detailed enough for debugging purposes. You'll have to review the log schema and decide for yourself if it's adequate for your needs.
Matthew & Howard,


Ok, I have this working nicely with the following:

# Main logging database
database hdb
suffix   "cn=nsdlog"
...

# Hosts logging database
database hdb
suffix   "cn=nsdhostslog"
...

# Hosts database
database hdb
suffix   "ou=Hosts,dc=nsd,dc=org"
...
overlay accesslog
logdb   "cn=nsdhostslog"
logops  all

# Main database
database        hdb
suffix          "dc=nsd,dc=org"
...
overlay accesslog
logdb   "cn=nsdlog"
logops  all

Tricks to getting it working were:

1. Comment out the accesslog overlay configuration until you create the base object in the log databases or else slapd crashes

2. Be sure you have a rootdn and password set up on the log databases so you can create the base object

3. Do not use the subordinate option on the main dc=nsd,dc=org database. When I did this, the main database log picked up all the activity on the hosts database. The downside to not using the subordinate option is that I cannot do a recursive search from dc=nsd,dc=org into the ou=hosts branch (this is fine with me). It is interesting though that if do:

ldapsearch -x -h localhost "(ou=*)"

it does not show the ou=hosts branch but if I do

ldapsearch -x -h localhost -b "ou=hosts,dc=nsd,dc=org" "(ou=*)"

it does show the ou=hosts branch.

Also jxplorer gets all confused and will not let me see the ou=hosts branch at all. ldapsh however works fine with it.

Thanks again for all the help.

cheers,

ski

--
"When we try to pick out anything by itself, we find it
 connected to the entire universe"            John Muir

Chris "Ski" Kacoroski, ski@nsd.org, 206-501-9803

Follow-Ups:
- Re: Logging question
  - From: Howard Chu <hyc@symas.com>

References:
- Logging question
  - From: Ski Kacoroski <ckacoroski@nsd.org>
- Re: Logging question
  - From: "matthew sporleder" <msporleder@gmail.com>
- Re: Logging question
  - From: Howard Chu <hyc@symas.com>
- Re: Logging question
  - From: Ski Kacoroski <ckacoroski@nsd.org>
- Re: Logging question
  - From: Howard Chu <hyc@symas.com>

Prev by Date: Re: Logging question
Next by Date: Re: Replication between 2.2.x and 2.3.x
Index(es):
- Chronological
- Thread