How do I get openldap on Centos 6 to write anything to it's log files

ldap openldap centos6
31,947

Solution 1

I haven't tried olcLogFile but by default, OpenLDAP log all information to rsyslog's local4 facility.

Add the following line to /etc/rsyslog.conf or /etc/rsyslog.d/ldap.conf:

local4.*                        /var/log/ldap.log

Restart the rsyslog service and check out this log.

Solution 2

olcLogFile is only used on Windows because it lacks syslog.

The way to do log on your system is which that @quanta answered.

Solution 3

As the reasoning regarding olcLogFile given in this answer is not true, I have to correct this.

Quoting the relevant part of slapd-config(5):

olcLogFile: <filename>
            Specify a file for recording debug log messages. By default
            these messages only go to stderr and are not recorded any‐
            where else. Specifying a logfile copies messages to both
            stderr and the logfile.
Share:
31,947

Related videos on Youtube

Arlukin
Author by

Arlukin

Updated on September 18, 2022

Comments

  • Arlukin
    Arlukin over 1 year

    I don't get any information in my log file for openldap on my Centos 6 server. This is how i configured it. SELinux is disabled at the moment.

    First created a folder where I'd like to store the log files.

    mkdir /var/log/slapd
chmod 755 /var/log/slapd/
chown ldap:ldap /var/log/slapd/

    Then did the configuration.

    ldapsearch -D "cn=admin,cn=config" -w secret -b cn=config cn=config
dn: cn=config
changetype:modify
replace: olcLogFile
olcLogFile: /var/log/slapd/slapd.log
-
replace: olcLogLevel
olcLogLevel: conns filter config acl stats shell
EOF

    Just to be safe I restarted the service

    service openldap restart

    It does create the file, but don't write anything into the file. Of course I did some searches and updates to the LDAP-server, so it gets connections and stuff to log.

    $ ls -alh
total 12K
drwxr-xr-x. 2 ldap ldap 4.0K Oct 25 14:27 .
drwxr-xr-x. 6 root root 4.0K Oct 25 14:10 ..    
-rw-r--r--. 1 ldap ldap    0 Oct 25 14:33 slapd.log

    My LDAP-setup can be found here (now slightly modified on my own server)

    How do I configure LDAP on Centos 6 for user authentication in the most secure and correct way?

  • Arlukin
    Arlukin over 12 years
    Thanks. It worked like a charm. It was /etc/rsyslog.conf on my box. Same, same but different.
  • Greg Petersen
    Greg Petersen about 11 years
    Depend on which syslog daemon is in use.
  • Halil
    Halil over 8 years
    I created a file called /etc/rsyslog.d/slapd.confand put the contents inside this file. I didn't modify /etc/rsyslog.conf
  • gxx
    gxx over 7 years
    "olcLogFile is only used on Windows because it lacks syslog.": This is not true, see slapd-config(5) or my answer.

Recents

Why Is PNG file with Drop Shadow in Flutter Web App Grainy?
How to troubleshoot crashes detected by Google Play Store for Flutter app
Cupertino DateTime picker interfering with scroll behaviour
Why does awk -F work for most letters, but not for the letter "t"?
Flutter change focus color and icon color but not works
How to print and connect to printer using flutter desktop via usb?
Critical issues have been reported with the following SDK versions: com.google.android.gms:play-services-safetynet:17.0.0
Flutter Dart - get localized country name from country code
navigatorState is null when using pushNamed Navigation onGenerateRoutes of GetMaterialPage
Android Sdk manager not found- Flutter doctor error
Flutter Laravel Push Notification without using any third party like(firebase,onesignal..etc)
How to change the color of ElevatedButton when entering text in TextField

Related

ldap_sasl_interactive_bind_s: Can't contact LDAP server (-1) for ldapi:/// on CentOS
ldap_modify: Insufficient access (50) when changing password
How do I configure LDAP on Centos 6 for user authentication in the most secure and correct way?
What are the other alternative to test a LDAP connection on linux machine
inetOrgPerson with member or memberOf?
Nested Group LDAP Search Filter
How to add rights to an user with olcAccess, in an OpenLDAP 2.4
I need to find out disabled users from ldap
Is there an LDAP standard group membership attribute for users?
Decrypting OpenLDAP passwords