Advanced Authentication provides a Diagnostic Tool that allows you to collect the debug logs for Mac OS X Client and Device Service. These logs help the Support team with the following:
Investigate issues with Mac OS X Client and Device Service.
Verify connection issues between a Mac OS X Client and DNS server.
Identify a list of the Advanced Authentication servers on the domain.
You can collect the debug logs in two ways:
NOTE:You can find the Diagnostic Tool component in the Advanced Authentication appliance distributive package.
To collect the debug logs using the Diagnostic Tool, perform the following steps:
Run the file DiagTool.app and click Enable.
NOTE:After you enable or disable the logs, it is recommended to restart your operating system.
Repeat your issue.
Run the file DiagTool.app again.
All the logs are displayed.
Click Save in the Debug logs tab.
A file that contains all logs is saved in the logs-year-month-date-hour:minute:seconds.zip format in the /tmp directory.
For example, logs file is saved as logs-2017-10-23-15:30:20.zip.
Click Save.
You can perform the following actions in the Debug logs tab:
Use Disable to disable the logging.
Use Refresh to update the logs list.
Use Open to open any specific log.
Use Clear All to delete the existing logs.
To identify the Advanced Authentication servers on the domain, perform the following steps:
Run the file DiagTool.app.
Click Servers.
Specify DNS Server and Domain.
Select Use v6 DNS lookup to allow the Diagnostic Tool to find the Advanced Authentication server using _aav6 records.
You can clear Use v6 DNS lookup, if you want to find the Advanced Authentication server using _aaa records.
Click Search.
A list of servers is displayed, if the IP is either IPv4 or IPv6.
NOTE:If you configure the IP address of the Advanced Authentication server in DNS service record, the Diagnostic tool cannot find and retrieve the respective record. Ensure that you configure the DNS service record with the Fully Qualified Domain Name (FQDN) to enable the Diagnostic tool to find and retrieve the respective record.
If you do not have the Diagnostic Tool, you can collect the debug logs manually. To collect the debug logs manually, perform the following steps:
Create a text file config.properties in the /Library/Logs/NetIQ/ directory.
Add a string to the file: logEnabled=True that ends with a line break.
Create a directory named Logs in the /Library/Logs/NetIQ/ directory.
Restart the operating system.
Repeat your issue.
Compress the logs located in the /Library/Logs/NetIQ/Logs/ directory to a zip file.