ParameterDescription

SyntaxInteger

Example

nsslapd-accesslog-maxlogsize: 100

2.3.1.16 nsslapd-accesslog-maxlogsperdir (Access log maximum number of log files)

This attribute sets the total number of access logs that can be contained in the directory where the access log is stored. Each time the access log is rotated, a new log file is created. When the number of files contained in the access log directory exceeds the value stored in this attribute, then the oldest version of the log file is deleted.

NOTE: For performance reasons, HP recommends not setting this value to 1 because the server does not rotate the log, and it grows indefinitely.

If the value for this attribute is higher than 1, then check the nsslapd-accesslog-logrotationtimeattribute to establish whether log rotation is specified. If the nsslapd-accesslog-logrotationtimeattribute has a value of -1, then there is no log rotation. See “nsslapd-accesslog-logrotationtime (Access log rotation time)” for more information.

Parameter

Description

Entry DN

cn=config

Valid Range

1 to the maximum 32-bit integer value (2147483647)

DefaultValue

10

Syntax

Integer

Example

nsslapd-accesslog-maxlogsperdir: 10

2.3.1.17 nsslapd-accesslog-mode (Access log file permission)

This attribute sets the access mode or file permission with which access log files are to be created. The valid values are any combination of 000 to 777 (these mirror the numbered or absolute UNIX file permissions). The value must be a 3-digit number, the digits varying from 0 through

7:

Digit

Description

Digit

Description

0

None

4

Read only

1

Execute only

5

Read and execute

2

Write only

6

Read and write

3

Write and execute

7

Read, write, and execute

In the 3-digit number, the first digit represents the owner's permissions, the second digit represents the group's permissions, and the third digit represents everyone's permissions. When changing the default value, remember that 000 prevents access to the logs and that allowing write permissions to everyone can result in the logs being overwritten or deleted by anyone.

The newly configured access mode takes effect immediately for any open log file, as well as for any log files that are created subsequently.

2.3 Core server configuration attributes reference

29

Page 29
Image 29
HP UX Identity Security Software manual Nsslapd-accesslog-mode Access log file permission, SyntaxInteger Example