Using Web Administration Tool

Edit online

You can use the administration server audit log and modify its settings using Web Administration Tool.

Procedure

  1. Expand Logs in the navigation area, click Modify log settings.
  2. Click Administration server audit log.
  3. Select Enable admin server audit logging to use the audit log utility with the administration server. Note: The default setting is enabled. You only need to select the check box, if you have previously disabled the administration server audit log.
  4. Enter the path and file name for the administration server audit log. Ensure that the file exists on the ldap server and that the path is valid. See Default log paths for default log paths.Note: If you specify a file that is not an acceptable file name (for example, invalid syntax or if the server does not have the rights to create and/or modify the file), the attempt fails with the following error: LDAP Server is unwilling to perform the operation.
  5. Under Log size threshold (MB) select the first radio button and enter the maximum log size in Megabytes. If you do not want to limit log size, select the Unlimited radio button instead.
  6. Under Maximum log archives, select one of the following options:
    • If you want to specify a maximum number of archived logs, select the radio button with an edit window next to it. Enter the maximum number of archives you want to save. One archived log is an earlier log that reached its size threshold.
    • If you do not want to archive logs, select No archives.
    • If you do not want to limit the number of archived logs, select Unlimited.
  7. Under Log archive path, do one of the following steps:
    • If you want to specify the path where archives are kept, select the radio button with an edit window next to it and enter the required path.
    • If you want to keep the archives in the directory where the log file is located, select the Same directory as log file radio button.
  8. Under Log Schedule, do the following steps:
    1. Specify the frequency between two cycles of Event by selecting an item from the Select frequency check box.
    2. Specify the start date and start time for Event in the Starting on fields. You can also click the calendar icon to specify the start date. The start time should be in the following format: 12:30:00 PM.
  9. Under Operations to log, do the following steps:
    1. Select the Bind check box to enable logging for bind operation. Otherwise, to disable logging for bind operation, clear the check box.
    2. Select the Unbind check box to enable logging for unbind operation. Otherwise, to disable logging for unbind operation, clear the check box.
    3. Select the Search check box to record LDAP search operations performed by any client . Otherwise, to disable search, clear the check box.
    4. Select the Add check box to records additions to LDAP. Otherwise, to disable this feature, clear the check box.
    5. Select the Modify check box to record modifications to LDAP. Otherwise, to disable this feature, clear the check box.
    6. Select the Delete check box to records deletions from LDAP. Otherwise, to disable this feature, clear the check box.
    7. Select the Modify RDN® check box to record modifications made to RDNs. Otherwise, to disable this feature, clear the check box.
    8. Select the Event notification check box to record event notifications. Otherwise, to disable this feature, clear the check box.
    9. Select the Extended operations check box to enable logging for extended operations. Otherwise, to disable logging for extended operations, clear the check box.
  10. Click Apply to apply your changes and continue working with logs, or click OK to save your changes and to return to the IBM® Security Verify Directory Web Administration Introduction panel. Click Cancel to return to the IBM Security Directory Server Web Administration Introduction panel without saving any changes.