5.1.2.3 Slot number

The slot number, in this case slot=608, is a legacy part of the access log; it has the same meaning as file descriptor. Ignore this part of the access log.

[21/Apr/2009:11:39:51 -0700] conn=11 fd=608 slot=608 connection from xxx.xxx.xxx.xxx to 192.18.122.139

5.1.2.4 Operation number

To process a given LDAP request, Directory Server will perform the required series of operations. For a given connection, all operation request and operation result pairs are given incremental operation numbers beginning with op=0 to identify the distinct operations being performed.

[21/Apr/2009:11:39:51 -0700] conn=11 op=0 RESULT err=0 tag=97 nentries=0 etime=0

In “Default access logging content”, we have op=0 for the bind operation request and result pair, then op=1 for the LDAP search request and result pair, and so on. The entry op=-1in the access log generally means that the LDAP request for this connection was not issued by an external LDAP client but, instead, initiated internally.

5.1.2.5 Method type

The method number, in this case method=128, indicates which LDAPv3 bind method was used by the client.

[21/Apr/2009:11:39:51 -0700] conn=11 op=0 BIND dn="cn=Directory Manager" method=128 version=3

There are three possible bind method values:

0 for authentication

128 for simple bind with user password

sasl for SASL bind using external authentication mechanism

5.1.2.6Version number

The version number, in this case version=3, indicates the LDAP version number (either LDAPv2 or LDAPv3) that the LDAP client used to communicate with the LDAP server.

[21/Apr/2009:11:39:51 -0700] conn=11 op=0 BIND dn="cn=Directory Manager" method=128 version=3

5.1.2.7 Error number

The error number, in this case err=0, provides the LDAP result code returned from the LDAP operation performed. The LDAP error number 0 means that the operation was successful. For a more comprehensive list of LDAP result codes, see “LDAP result codes”.

[21/Apr/2009:11:39:51 -0700] conn=11 op=0 RESULT err=0 tag=97 nentries=0 etime=0

5.1.2.8 Tag number

The tag number, in this case tag=97, indicates the type of result returned, which is almost always a reflection of the type of operation performed. The tags used are the BER tags from the LDAP protocol.

[21/Apr/2009:11:39:51 -0700] conn=11 op=0 RESULT err=0 tag=97 nentries=0 etime=0

Table 5-1 Commonly-used tags

Tag

Description

tag=97

A result from a client bind operation.

 

 

tag=100

The actual entry being searched for.

 

 

tag=101

A result from a search operation.

 

 

tag=103

A result from a modify operation.

 

 

tag=105

A result from an add operation.

 

 

5.1 Access log reference 175