Hi Techies,
I am new to openLDAP, i am reading its log file. Is their any easy way to decode the logs to identify what is going on?
Please see below logs: Mar 3 03:22:01 myserver OpenLDAP[53304]: daemon: activity on 1 descriptor Mar 3 03:22:01 myserver OpenLDAP[53304]: daemon: activity on: Mar 3 03:22:01 myserver OpenLDAP[53304]: Mar 3 03:22:01 myserver OpenLDAP[53304]: slap_listener_activate(7): Mar 3 03:22:01 myserver OpenLDAP[53304]: daemon: epoll: listen=7 busy Mar 3 03:22:01 myserver OpenLDAP[53304]: >>> slap_listener(ldap:// 0.0.0.0:389) Mar 3 03:22:01 myserver OpenLDAP[53304]: daemon: listen=7, new connection on 19 Mar 3 03:22:01 myserver OpenLDAP[53304]: daemon: activity on 1 descriptor Mar 3 03:22:01 myserver OpenLDAP[53304]: daemon: activity on: Mar 3 03:22:01 myserver OpenLDAP[53304]: Mar 3 03:22:01 myserver OpenLDAP[53304]: daemon: added 19r (active) listener=(nil) Mar 3 03:22:01 myserver OpenLDAP[53304]: conn=103380 fd=19 ACCEPT from IP= 10.101.21.156:60358 (IP=0.0.0.0:389) Mar 3 03:22:01 myserver OpenLDAP[53304]: daemon: epoll: listen=7 active_threads=0 tvp=zero Mar 3 03:22:01 myserver OpenLDAP[53304]: daemon: activity on 2 descriptors Mar 3 03:22:01 myserver OpenLDAP[53304]: daemon: activity on: Mar 3 03:22:01 myserver OpenLDAP[53304]: 19r Mar 3 03:22:01 myserver OpenLDAP[53304]: Mar 3 03:22:01 myserver OpenLDAP[53304]: daemon: read active on 19 Mar 3 03:22:01 myserver OpenLDAP[53304]: daemon: epoll: listen=7 active_threads=0 tvp=zero Mar 3 03:22:01 myserver OpenLDAP[53304]: connection_get(19) Mar 3 03:22:01 myserver OpenLDAP[53304]: connection_get(19): got connid=103380 Mar 3 03:22:01 myserver OpenLDAP[53304]: connection_read(19): checking for input on id=103380 Mar 3 03:22:01 myserver OpenLDAP[53304]: op tag 0x60, time 1614759721 Mar 3 03:22:01 myserver OpenLDAP[53304]: conn=103380 op=0 do_bind Mar 3 03:22:01 myserver OpenLDAP[53304]: >>> dnPrettyNormal: <cn=Manager,dc=icma-web,dc=com> Mar 3 03:22:01 myserver OpenLDAP[53304]: daemon: activity on 1 descriptor Mar 3 03:22:01 myserver OpenLDAP[53304]: daemon: activity on: Mar 3 03:22:01 myserver OpenLDAP[53304]: <<< dnPrettyNormal: <cn=Manager,dc=icma-web,dc=com>, <cn=manager,dc=icma-web,dc=com> Mar 3 03:22:01 myserver OpenLDAP[53304]: conn=103380 op=0 BIND dn="cn=Manager,dc=icma-web,dc=com" method=128 Mar 3 03:22:01 myserver OpenLDAP[53304]: do_bind: version=3 dn="cn=Manager,dc=icma-web,dc=com" method=128 Mar 3 03:22:01 myserver OpenLDAP[53304]: daemon: epoll: listen=7 active_threads=0 tvp=zero Mar 3 03:22:01 myserver OpenLDAP[53304]: ==> bdb_bind: dn: cn=Manager,dc=icma-web,dc=com Mar 3 03:22:01 myserver OpenLDAP[53304]: conn=103380 op=0 BIND dn="cn=Manager,dc=icma-web,dc=com" mech=SIMPLE ssf=0 Mar 3 03:22:01 myserver OpenLDAP[53304]: do_bind: v3 bind: "cn=Manager,dc=icma-web,dc=com" to "cn=Manager,dc=icma-web,dc=com" Mar 3 03:22:01 myserver OpenLDAP[53304]: send_ldap_result: conn=103380 op=0 p=3 Mar 3 03:22:01 myserver OpenLDAP[53304]: send_ldap_result: err=0 matched="" text="" Mar 3 03:22:01 myserver OpenLDAP[53304]: send_ldap_response: msgid=1 tag=97 err=0 Mar 3 03:22:01 myserver OpenLDAP[53304]: conn=103380 op=0 RESULT tag=97 err=0 text= Mar 3 03:22:01 myserver OpenLDAP[53304]: daemon: activity on 1 descriptor Mar 3 03:22:01 myserver OpenLDAP[53304]: daemon: activity on: Mar 3 03:22:01 myserver OpenLDAP[53304]: 19r Mar 3 03:22:01 myserver OpenLDAP[53304]: Mar 3 03:22:01 myserver OpenLDAP[53304]: daemon: read active on 19 Mar 3 03:22:01 myserver OpenLDAP[53304]: daemon: epoll: listen=7 active_threads=0 tvp=zero Mar 3 03:22:01 myserver OpenLDAP[53304]: connection_get(19) Mar 3 03:22:01 myserver OpenLDAP[53304]: connection_get(19): got connid=103380 Mar 3 03:22:01 myserver OpenLDAP[53304]: connection_read(19): checking for input on id=103380 Mar 3 03:22:01 myserver OpenLDAP[53304]: op tag 0x63, time 1614759721 Mar 3 03:22:01 myserver OpenLDAP[53304]: conn=103380 op=1 do_search Mar 3 03:22:01 myserver OpenLDAP[53304]: >>> dnPrettyNormal: <dc=icma-web,dc=com> Mar 3 03:22:01 myserver OpenLDAP[53304]: <<< dnPrettyNormal: <dc=icma-web,dc=com>, <dc=icma-web,dc=com> Mar 3 03:22:01 myserver OpenLDAP[53304]: SRCH "dc=icma-web,dc=com" 2 0 Mar 3 03:22:01 myserver OpenLDAP[53304]: 0 0 0 Mar 3 03:22:01 myserver OpenLDAP[53304]: begin get_filter Mar 3 03:22:01 myserver OpenLDAP[53304]: EQUALITY Mar 3 03:22:01 myserver OpenLDAP[53304]: end get_filter 0 Mar 3 03:22:01 myserver OpenLDAP[53304]: filter: (uid=icma_emp_1emp113) Mar 3 03:22:01 myserver OpenLDAP[53304]: attrs: Mar 3 03:22:01 myserver OpenLDAP[53304]: Mar 3 03:22:01 myserver OpenLDAP[53304]: conn=103380 op=1 SRCH base="dc=icma-web,dc=com" scope=2 deref=0 filter="(uid=icma_emp_1emp113)" Mar 3 03:22:01 myserver OpenLDAP[53304]: => bdb_search Mar 3 03:22:01 myserver OpenLDAP[53304]: bdb_dn2entry("dc=icma-web,dc=com") Mar 3 03:22:01 myserver OpenLDAP[53304]: => access_allowed: search access to "dc=icma-web,dc=com" "entry" requested Mar 3 03:22:01 myserver OpenLDAP[53304]: <= root access granted Mar 3 03:22:01 myserver OpenLDAP[53304]: => access_allowed: search access granted by manage(=mwrscxd) Mar 3 03:22:01 myserver OpenLDAP[53304]: search_candidates: base="dc=icma-web,dc=com" (0x00000001) scope=2 Mar 3 03:22:01 myserver OpenLDAP[53304]: => bdb_dn2idl("dc=icma-web,dc=com") Mar 3 03:22:01 myserver OpenLDAP[53304]: => bdb_filter_candidates Mar 3 03:22:01 myserver OpenLDAP[53304]: #011AND Mar 3 03:22:01 myserver OpenLDAP[53304]: => bdb_list_candidates 0xa0 Mar 3 03:22:01 myserver OpenLDAP[53304]: => bdb_filter_candidates Mar 3 03:22:01 myserver OpenLDAP[53304]: #011OR Mar 3 03:22:01 myserver OpenLDAP[53304]: => bdb_list_candidates 0xa1 Mar 3 03:22:01 myserver OpenLDAP[53304]: => bdb_filter_candidates Mar 3 03:22:01 myserver OpenLDAP[53304]: #011EQUALITY Mar 3 03:22:01 myserver OpenLDAP[53304]: => bdb_equality_candidates (objectClass) Mar 3 03:22:01 myserver OpenLDAP[53304]: => key_read Mar 3 03:22:01 myserver OpenLDAP[53304]: bdb_idl_fetch_key: [b49d1940] Mar 3 03:22:01 myserver OpenLDAP[53304]: <= bdb_index_read: failed (-30988) Mar 3 03:22:01 myserver OpenLDAP[53304]: <= bdb_equality_candidates: id=0, first=0, last=0 Mar 3 03:22:01 myserver OpenLDAP[53304]: <= bdb_filter_candidates: id=0 first=0 last=0 Mar 3 03:22:01 myserver OpenLDAP[53304]: => bdb_filter_candidates Mar 3 03:22:01 myserver OpenLDAP[53304]: #011EQUALITY Mar 3 03:22:01 myserver OpenLDAP[53304]: => bdb_equality_candidates (uid) Mar 3 03:22:01 myserver OpenLDAP[53304]: => key_read Mar 3 03:22:01 myserver OpenLDAP[53304]: bdb_idl_fetch_key: [9a14f458] Mar 3 03:22:01 myserver OpenLDAP[53304]: <= bdb_index_read: failed (-30988) Mar 3 03:22:01 myserver OpenLDAP[53304]: <= bdb_equality_candidates: id=0, first=0, last=0 Mar 3 03:22:01 myserver OpenLDAP[53304]: <= bdb_filter_candidates: id=0 first=0 last=0 Mar 3 03:22:01 myserver OpenLDAP[53304]: <= bdb_list_candidates: id=0 first=0 last=0 Mar 3 03:22:01 myserver OpenLDAP[53304]: <= bdb_filter_candidates: id=0 first=0 last=0 Mar 3 03:22:01 myserver OpenLDAP[53304]: <= bdb_list_candidates: id=0 first=1 last=0 Mar 3 03:22:01 myserver OpenLDAP[53304]: <= bdb_filter_candidates: id=0 first=1 last=0 Mar 3 03:22:01 myserver OpenLDAP[53304]: bdb_search_candidates: id=0 first=1 last=0 Mar 3 03:22:01 myserver OpenLDAP[53304]: bdb_search: no candidates Mar 3 03:22:01 myserver OpenLDAP[53304]: send_ldap_result: conn=103380 op=1 p=3 Mar 3 03:22:01 myserver OpenLDAP[53304]: send_ldap_result: err=0 matched="" text="" Mar 3 03:22:01 myserver OpenLDAP[53304]: send_ldap_response: msgid=2 tag=101 err=0 Mar 3 03:22:01 myserver OpenLDAP[53304]: conn=103380 op=1 SEARCH RESULT tag=101 err=0 nentries=0 text= Mar 3 03:22:01 myserver OpenLDAP[53304]: daemon: activity on 1 descriptor Mar 3 03:22:01 myserver OpenLDAP[53304]: daemon: activity on:
--On Thursday, March 4, 2021 12:00 PM +0530 chandan jain chandandevops@gmail.com wrote:
Hi Techies,
I am new to openLDAP, i am reading its log file. Is their any easy way to decode the logs to identify what is going on?
I would suggest simply setting a loglevel of "stats". You're currently going to suffer from information overload.
I'd also note that the BDB backend is deprecated and is generally not recommended for use.
--Quanah
--
Quanah Gibson-Mount Product Architect Symas Corporation Packaged, certified, and supported LDAP solutions powered by OpenLDAP: http://www.symas.com
openldap-technical@openldap.org