beautypg.com

Red Hat 8.1 User Manual

Page 26

background image

2.3.1.29. nsslapd-auditlog-logrotationsyncmin (Audit Log Rotation Sync Minute)

This attribute sets the minute of the day for rotating audit logs. This attribute must be used in
conjunction with nsslapd-auditlog-logrotationsync-enabled and nsslapd-auditlog-
logrotationsynchour attributes.

Parameter

Description

Entry DN

cn=config

Valid Range

0 through 59

Default Value

None (because nsslapd-auditlog-
logrotationsync-enabled is off)

Syntax

Integer

Example

nsslapd-auditlog-logrotationsyncmin: 30

2.3.1.30. nsslapd-auditlog-logrotationtime (Audit Log Rotation Time)

This attribute sets the time between audit log file rotations. The audit log is rotated when this time
interval is up, regardless of the current size of the audit log. This attribute supplies only the number of
units. The units (day, week, month, and so forth) are given by the nsslapd-auditlog-
logrotationtimeunit attribute. If the nsslapd-auditlog-maxlogsperdir attribute is set to 1, the
server ignores this attribute.

Although it is not recommended for performance reasons to specify no log rotation, as the log grows
indefinitely, there are two ways of specifying this. Either set the nsslapd-auditlog-maxlogsperdir
attribute value to 1 or set the nsslapd-auditlog-logrotationtime attribute to -1. The server checks
the nsslapd-auditlog-maxlogsperdir attribute first, and, if this attribute value is larger than 1, the
server then checks the nsslapd-auditlog-logrotationtime attribute. See

Section 2.3.1.33,

“nsslapd-auditlog-maxlogsperdir (Audit Log Maximum Number of Log Files)”

for more information.

Parameter

Description

Entry DN

cn=config

Valid Range

-1 | 1 to the maximum 32 bit integer value
(2147483647), where a value of -1 means that
the time between audit log file rotation is
unlimited.

Default Value

1

Syntax

Integer

Example

nsslapd-auditlog-logrotationtime: 100

2.3.1.31. nsslapd-auditlog-logrotationtimeunit (Audit Log Rotation Time Unit)

This attribute sets the units for the nsslapd-auditlog-logrotationtime attribute.

Parameter

Description

Entry DN

cn=config

Valid Values

month | week | day | hour | minute

Default Value

week

Syntax

DirectoryString

Example

nsslapd-auditlog-logrotationtimeunit: day

2.3.1.32. nsslapd-auditlog-maxlogsize (Audit Log Maximum Log Size)

This attribute sets the maximum audit log size in megabytes. When this value is reached, the audit log is
rotated. That means the server starts writing log information to a new log file. If nsslapd-auditlog-
maxlogsperdir to 1, the server ignores this attribute.

When setting a maximum log size, consider the total number of log files that can be created due to log
file rotation. Also, remember that there are three different log files (access log, audit log, and error log)
maintained by the Directory Server, each of which consumes disk space. Compare these considerations
to the total amount of disk space for the audit log.

Parameter

Description

Entry DN

cn=config

Valid Range

-1 | 1 to the maximum 32 bit integer value
(2147483647), where a value of -1 means the log
file is unlimited in size.

Default Value

100

Syntax

Integer

Example

nsslapd-auditlog-maxlogsize: 50

26

Chapter 2. Core Server Configuration Reference