8.2 What Can Be Logged

The identity applications functionality that deals with workflows (PRDs) and actions such as granting and managing of roles, resources, and entitlements can be logged. The log level for these features is controlled by configuring logging for the packages used by them. You can change log levels from the Logging page. For more information, see .

The identity applications functionality that executes on a client and does not directly execute in context of the User Application web server cannot be logged in the same way. For example, most of the form processing that occurs in the client. The action scripts defined on the form control’s onLoad, onChange, or custom events execute in the browser of the user’s client computer and not in the User Application web server. Therefore, if an error occurs while rendering the form or processing an action script, it cannot be directly logged. However, Identity Vault queries issued from a form or Start Activity can be logged for troubleshooting the identity applications features. To view the identity applications client errors and informational messages, click the Console tab or the Network tab under Developer Tools section in the client browser. It contains HTTP response codes for both success and failed requests. The identity applications allow you to record the outcome of a user’s request and response.

Identity Applications allow you to log what happens with a user’s request and response during certain times:

You can configure the log files to include entries for the following events:

The log files help you determine which of the following reasons is responsible for a request failure:

To view Identity Manager processing events in Identity Manager drivers, use Trace. Specify appropriate trace values to the driver set and the drivers in Designer or iManager. For more information, see Viewing Identity Manager Processes in the NetIQ Identity Manager Driver Administration Guide.