Where to find Symantec / CA Directory columns in log files description?
search cancel

Where to find Symantec / CA Directory columns in log files description?

book

Article ID: 271229

calendar_today

Updated On:

Products

CA Directory

Issue/Introduction

Could you let us know where to find column description for Symantec/CA Directory log files?

Are they customizable?

For example, in summary log what is the meaning for each column:

[6] 20230729.001234.485 #064.000 UNBIND : : 2361 sec 0 kbytes 3 ops 0 cpu
[1] 20230729.001515.016 #067.000 UNBIND : : 2385 sec 0 kbytes 3 ops 0 cpu
[1] 20230729.011508.548 #068.000 BIND : ###.###.###.### COM/PRUDENTIAL/ADMINISTRATORS/SSO/FR_RCS :
[0] 20230729.011508.591 #068.004 ABANDON : id 3 :
[2] 20230729.011508.640 #068.007 SEARCH : 3 deep subtree complex : 1 entries 16 attrs

 

 

Environment

Release : 12.x, 14.x

Resolution

Symantec Directory documentation describes trace log messages here: https://techdocs.broadcom.com/us/en/symantec-security-software/identity-security/directory/14-1/administrating/monitor-the-directory/monitoring-with-traces.html
The error/warning/information messages are explained in this document:
https://techdocs.broadcom.com/us/en/symantec-security-software/identity-security/directory/14-1/reference/system-messages-for-ca-directory/dxserver-alarm-messages.html

The following explains the columns in the Directory log files:

[2] 20230729.011508.640 #068.007 SEARCH : 3 deep subtree complex : 1 entries 16 attrs

where:

[<number>] -  thread identifier
It helps isolating events that occur in a particular thread. Quite important for log files presenting events in high traffic and/or have events logged over multiple lines.

<Timestamp> - Date/time in yyyyMMdd HHmmss.SSS format

#<number1>.<number2> - connection data
number1 - connection number (connection between this DSA and LDAP client)
number2 - so called "messageID" that is taken from an LDAP request and is set by an LDAP client. LDAP client increments messageID every time it sends a new request.

<Message> - usually is understandable without any further explanation, maybe except the trace messages (see the link above).

In addition to the above trace information, we also need to explain the characters that can be found in the first position in a line in a trace file, like this ones:

! [64] dxserver 14.1.04 (build 17620) Linux 64-Bit
* [64] 20230728.130356.807 DSA_I1220 DSA started: dxserver 14.1.04 (build 17620) Linux 64-Bit

Characters meaning:
* - Alarm or fatal error
? - error or warning
! - event
> - response

Powered by Wolken Software