A session is the association of an initiator with a stream of communication. A session may represent a user's connection to server, as in the case of logging into a Linux or Windows host, or a set of related transactions in a connection-less environment, as in the case of using a cookie to maintain persistent transactions between a browser client and a Web server.
Table 5-2 Session Management Event Taxonomy
Event Name |
Event Identifier |
Corresponding eDir Event |
Description |
Use |
---|---|---|---|---|
Create Session |
0.0.1.0 |
DSE_LOGIN_EX |
Create a new session |
This event should be reported whenever a new session (as defined above) is created. NOTE:Prior to eDirectory 8.8.8 P9, DSE_LDAP_CONNECTION event is used to monitor the Create Session event. |
Terminate Session |
0.0.1.1 |
DSE_LOGOUT |
Terminate an existing session |
This event should be reported whenever an existing session (as defined above) is terminated. |
Modify Session |
0.0.1.3 |
DSE_CHANGE_CONN_STATE |
Modify user session attributes |
This event should be reported whenever attribute information is modified on an existing session. |
The following sections are examples for Session Management events.
Click Create Session to generate an event for creating a session, as shown in the following example:
Nov 03 14:36:17 eDirectory : INFO {"Source" : "eDirectory#DS","Observer" : {"Account" : {"Domain" : "TP9","Name" : "CN=SLES11-SP3-164,O=novell"},"Entity" : {"SysAddr" : "164.99.179.164","SysName" : "SLES11-SP3-164"}},"Initiator" : {"Account" : {"Name" : "CN=admin,O=novell","Id" : "32816"},"Entity" : {"SysAddr" : "164.99.179.165:15054"},"Assertions" : {"NetAddress" : "164.99.179.165","NullPassword" : "FALSE","bindery login" : "FALSE"}},"Target" : {"Data" : {"Name" : "CN=SLES11-SP3-164,O=novell"}},"Action" : {"Event" : {"Id" : "0.0.1.0","Name" : "CREATE_SESSION","CorrelationID" : "eDirectory#11#","SubEvent" : "DSE_LOGIN_EX"},"Time" : {"Offset" : 1478163977},"Log" : {"Severity" : 7},"Outcome" : "2.3","ExtendedOutcome" : "-669"}}
Click Modify Session to generate an event for modifying a session, as shown in the following example:
Jan 08 10:19:34 eDirectory : INFO {"Source" : "eDirectory#DS","Observer" : {"Account" : {"Domain" : "MYTREE","Name" : "CN=SRV1,O=mycom"},"Entity" : {"SysAddr" : "100.1.2.164","SysName" : "SLES11-SP2-164"}},"Initiator" : {"Account" : {"Domain" : "MYTREE","Name" : "CN=SRV1,O=mycom"},"Entity" : {"SysAddr" : "0.0.0.0:0"},"Assertions" : {"NetAddress" : "164.99.136.142"}},"Target" : {"Data" : {"Name" : "CN=SRV1,O=mycom","newFlags" : "1","oldFlags" : "0"}},"Action" : {"Event" : {"Id" : "0.0.1.3","Name" : "MODIFY_SESSION","CorrelationID" : "eDirectory#0#","SubEvent" : "DSE_CHANGE_CONN_STATE"},"Time" : {"Offset" : 1389847774},"Log" : {"Severity" : 7},"Outcome" : "0","ExtendedOutcome" : "0"}}