Advanced Authentication provides a Diagnostic Tool that allows you to collect the debug logs for Mac OS X Client and Device Service. These logs help the Support team with the following:
Investigate issues with Mac OS X Client and Device Service.
Verify connection issues between a Mac OS X Client and DNS server.
Identify a list of the Advanced Authentication servers on the domain.
You can collect the debug logs in two ways:
NOTE:You can find the Diagnostic Tool component in the Advanced Authentication appliance distributive package.
To collect the debug logs using the Diagnostic Tool, perform the following steps:
Run the file DiagTool.app and click .
NOTE:After you enable or disable the logs, it is recommended to restart your operating system.
Repeat your issue.
Run the file DiagTool.app again.
All the logs are displayed.
Clickin the tab.
A file that contains all logs is saved in the logs-year-month-date-hour:minute:seconds.zip format in the /tmp directory.
For example, logs file is saved as logs-2017-10-23-15:30:20.zip.
You can perform the following actions in thetab:
Useto disable the logging.
Useto update the logs list.
Useto open any specific log.
Useto delete the existing logs.
To identify the Advanced Authentication servers on the domain, perform the following steps:
Run the file DiagTool.app.
Select _aav6 records.to allow the Diagnostic Tool to find the Advanced Authentication server using
You can clear _aaa records., if you want to find the Advanced Authentication server using
A list of servers is displayed, if the IP is either IPv4 or IPv6.
NOTE:If you configure the IP address of the Advanced Authentication server in DNS service record, the Diagnostic tool cannot find and retrieve the respective record. Ensure that you configure the DNS service record with the Fully Qualified Domain Name (FQDN) to enable the Diagnostic tool to find and retrieve the respective record.
If you do not have the Diagnostic Tool, you can collect the debug logs manually. To collect the debug logs manually, perform the following steps:
Create a text file config.properties in the /Library/Logs/NetIQ/ directory.
Add a string to the file: logEnabled=True that ends with a line break.
Create a directory named Logs in the /Library/Logs/NetIQ/ directory.
Restart the operating system.
Repeat your issue.
Compress the logs located in the /Library/Logs/NetIQ/Logs/ directory to a zip file.