The General Logging page displays the location of the files that Access Manager components use for logging system messages. There are some exceptions:
Default Auditing File: If you have configured Novell Audit to send events to the default audit file (on Linux, this is/var/opt/novell/naudit/logs/auditlog), this file does not appear in the list. (On a Windows machine that has different security restraints, the file appears in the list.)
If you want this file to appear in this list on a Linux machine, you must make this file readable by the novlwww user. It is a breach of Novell Audit security for Access Manager code to change the permissions on this file. You must decide whether changing its permissions and displaying the file in this list compromises your security.
To add this file in the list of files for the Administration Console, configure the following:
Use commands similar to the following to grant the novlwww user executable permissions to the naudit directories:
chmod o+rx /var/opt/novell/naudit
chmod o+rx /var/opt/novell/naudit/logs
Use a command similar to the following to grant the novlwww user read access to the auditlog file:
chmod o+r /var/opt/novell/naudit/logs/auditlog
Proxy Service Log Files: If you enable proxy service logging, these files are not available for downloading from this page because there could be potentially hundreds of these files. If this type of logging has been enabled, the directory where they are located is displayed. For more information about this type of logging, see Section 17.4.4, Configuring Logging for a Proxy Service.
To view or download a log file:
In the Administration Console, click Auditing > General Logging.
Select one or more log files, click Download, then open it or save it to disk.
You can use any text editor to view the file.
Each Access Manager component generates multiple log files. The following tables lists these files and the types of messages they contain.
|
Filename |
Description |
|---|---|
|
/var/opt/novell/nam/logs/adminconsole/tomcat/catalina.out |
Contains Tomcat errors. |
|
/var/opt/novell/nam/logs/adminconsole/volera/app_sc.0.log |
Contains events related to importing devices, device configuration changes, health status changes, statistics reporting, and communication problems. |
|
/var/opt/novell/nam/logs/adminconsole/volera/app_cc.0.log |
Contains events related to policy configuration. |
|
/var/opt/novell/nam/logs/adminconsole/volera/platform.0.log |
Contains XML events for configuration changes. This log file contains very little useful information for system administrators. |
|
Filename |
Description |
|---|---|
|
\Program Files (x86)\Novell\Tomcat\ logs\stderr.log |
Contains Tomcat error messages directed to stderr. This file is reset whenever Tomcat is restarted. |
|
\Program Files (x86)\Novell\Tomcat\ logs\stdout.log |
Contains Tomcat error messages directed to stdout. This file is reset whenever Tomcat is restarted. |
|
\Program Files (x86)\Novell\logs\ app_sc.0.log |
Contains events related to importing devices, device configuration changes, health status changes, statistics reporting, and communication problems. |
|
\Program Files (x86)\Novell\logs\ app_cc.0.log |
Contains events related to policy configuration. |
|
\Program Files (x86)\Novell\logs\ platform.0.log |
Contains XML events for configuration changes. This log file contains very little useful information for system administrators. |
|
\Program Files (x86)\Novell\Nsure Audit\logs\auditlog |
Contains the log entries for Novell auditing. |
|
Filename |
Description |
|---|---|
|
/var/opt/novell/nam/logs/idp/tomcat/catalina.out |
Logging to this file occurs only if you have selected the Echo to Console option from the Identity Servers > Servers > Edit > Logging page. When component logging has been set to info for Applications, it contains entries tracing user authentication and role assignments. |
|
/var/opt/novell/nam/logs/jcc/jcc-0.log.0 |
Contains the log entries for the server communications module related to interaction of the Identity Server with the Administration Console, such as imports, certificates, health checks, and configuration. |
|
Filename |
Description |
|---|---|
|
\Program Files (x86)\Novell\Tomcat\ logs\stderr.log |
Contains Tomcat error messages directed to stderr. This file is reset whenever Tomcat is restarted. |
|
\Program Files (x86)\Novell\Tomcat\ logs\stdout.log |
Logging to this file only occurs if you have selected the Echo to Console option from the Identity Servers > Servers > Edit > Logging page. When component logging has been set to info for Applications, it contains entries tracing user authentication and role assignments. This file is reset whenever Tomcat is restarted. |
|
\Program Files (x86)\Novell\devman\ jcc\logs\jcc-0.log.0 |
Contains the log entries for the server communications module related to interaction of the Identity Server with the Administration Console, such as imports, certificates, health checks, and configuration. |
|
Filename |
Description |
|---|---|
|
/var/opt/novell/nam/logs/mag/tomcat/catalina.out |
Logging to this file only occurs if you have selected the Echo to Console option from the Identity Servers > Servers > Edit > Logging page. Check this file for entries tracing the evaluation of authorization, identity injection, and form fill policies. |
|
/var/log/novell/reverse/<proxy_service-name> |
If logging is enabled on one or more reverse proxies, this directory contains the log files. To enable this type of logging, see Section 17.1.2, HTTP Transaction Logging for Proxy Services. A directory is listed for each reverse proxy on which you have enabled logging. |
|
/var/opt/novell/nam/logs/jcc/jcc-0.log.0 |
Contains the log entries for the server communications module related to interaction of the Access Gateway with the Administration Console, such as imports, certificates, health checks, and configuration. |
|
/var/opt/novell/nam/logs/mag/apache2/error_log |
Contains the diagnostic information and records of any errors that it encounters in processing requests.To enable this type of logging, see Section 17.4.1, Managing Access Gateway Logs. This directory also contains the Apache generated log files such as the error_log file. |
|
/var/opt/novell/nam/logs/mag/amlogging/ags_error.log |
Contains the messages generated for configuration, device imports, health, and statistics. It also contains entries for the policy evaluation processes done by the Gateway Service Manager module. |
|
/var/opt/novell/nam/logs/mag/amlogging/verbose_log |
Contains the verbose log entries. |
|
Filename |
Description |
|---|---|
|
\Program Files\Novell\amlogging\logs\ ags_error.log |
Contains the messages generated for configuration, device imports, health, and statistics. It also contains entries for the policy evaluation processes done by the Gateway Service Manager module. |
|
\Program Files\Novell\amlogging\logs\ |
If you have enabled log profiles, this directory contains these log files. To enable this type of logging, see Section 17.4.1, Managing Access Gateway Logs. |
|
\Program Files\Novell\Apache\logs\ <name> |
If logging is enabled on one or more reverse proxies, this directory contains the log files. To enable this type of logging, see Section 17.4.4, Configuring Logging for a Proxy Service. This directory also contains the Apache generated log files such as the error_log file. |
|
\Program Files\Novell\Tomcat\logs\ stdout.log |
Contains the log messages generated by the Embedded Service Provider. Logging to this file only occurs if you have selected the Echo to Console option from the Identity Servers > Servers > Edit > Logging page. Check this file for entries tracing the evaluation of authorization, identity injection, and form fill policies. This file is reset whenever Tomcat is restarted. |