NetIQ Documentation: Novell Access Manager 3.1 SP5 Administration Console Guide

4.2 Downloading the Log Files

The General Logging page displays the location of the files that the Access Manager components use for logging system messages. There are some exceptions:

J2EE Agent: The J2EE Agent uses the J2EE global logger, and the location of this file is customizable. For information about J2EE agent log files, see Viewing Log Files in the NetIQ Access Manager 3.1 SP5 J2EE Agent Guide.
Default Auditing File: If you have configured Novell Audit to send events to the default audit file (on Linux, this is/var/opt/novell/naudit/logs/auditlog), this file does not appear in the list. (On a Windows machine that has different security restraints, the file appears in the list.)

If you want this file to appear in this list on a Linux machine, you must make this file readable by the novlwww user. It is a breach of Novell Audit security for Access Manager code to change the permissions on this file. You must decide whether changing its permissions and displaying the file in this list compromises your security.

To have it appear in the list of files for the Administration Console, configure the following:
- Use commands similar to the following to grant the novlwww user executable permissions to the naudit directories:
```
chmod o+rx /var/opt/novell/naudit
chmod o+rx /var/opt/novell/naudit/logs
```
- Use a command similar to the following to grant the novlwww user read access to the auditlog file:
```
chmod o+r /var/opt/novell/naudit/logs/auditlog
```
Proxy Service Log Files: If you enable proxy service logging, these files are not available for downloading from this page because there could be potentially hundreds of these files. If this type of logging has been enabled, the directory where they are located is displayed. For more information about this type of logging, see Configuring Logging for a Proxy Service in the NetIQ Access Manager 3.1 SP5 Access Gateway Guide.

To view or download the log file:

In the Administration Console, click Auditing > General Logging.
Select one or more log files, click Download, then open it or save it to disk.

You can use any text editor to view the file.

Each Access Manager component generates multiple log files. The following tables lists these files and the types of messages they contain.

4.2.1 Linux Administration Console Logs

Filename	Description
/var/opt/novell/tomcat5/logs/catalina.out	Contains Tomcat errors.
/opt/novell/devman/share/logs/app_sc.0.log	Contains events related to importing devices, device configuration changes, health status changes, statistics reporting, and communication problems.
/opt/novell/devman/share/logs/app_cc.0.log	Contains events related to policy configuration.
/opt/novell/devman/share/logs/platform.0.log	Contains XML events for configuration changes. This log file contains very little useful information for system administrators.

4.2.2 Windows Server 2003 Administration Console Logs

Filename	Description
\Program Files\Novell\Tomcat\logs\ stderr.log	Contains Tomcat error messages directed to stderr. This file is reset whenever Tomcat is restarted.
\Program Files\Novell\Tomcat\logs\ stdout.log	Contains Tomcat error messages directed to stdout. This file is reset whenever Tomcat is restarted.
\Program Files\Novell\logs\ app_sc.0.log	Contains events related to importing devices, device configuration changes, health status changes, statistics reporting, and communication problems.
\Program Files\Novell\logs\ app_cc.0.log	Contains events related to policy configuration.
\Program Files\Novell\logs\ platform.0.log	Contains XML events for configuration changes. This log file contains very little useful information for system administrators.
\Program Files\Novell\Nsure Audit\ logs\auditlog	Contains the log entries for Novell auditing.

4.2.3 Windows Server 2008 Administration Console Logs

Filename	Description
\Program Files (x86)\Novell\Tomcat\ logs\stderr.log	Contains Tomcat error messages directed to stderr. This file is reset whenever Tomcat is restarted.
\Program Files (x86)\Novell\Tomcat\ logs\stdout.log	Contains Tomcat error messages directed to stdout. This file is reset whenever Tomcat is restarted.
\Program Files (x86)\Novell\logs\ app_sc.0.log	Contains events related to importing devices, device configuration changes, health status changes, statistics reporting, and communication problems.
\Program Files (x86)\Novell\logs\ app_cc.0.log	Contains events related to policy configuration.
\Program Files (x86)\Novell\logs\ platform.0.log	Contains XML events for configuration changes. This log file contains very little useful information for system administrators.
\Program Files (x86)\Novell\Nsure Audit\logs\auditlog	Contains the log entries for Novell auditing.

4.2.4 Linux Identity Server Logs

Filename	Description
/var/opt/novell/tomcat5/logs/catalina.out	Logging to this file occurs only if you have selected the Echo to Console option from the Identity Servers > Servers > Edit > Logging page. When component logging has been set to info for Applications, it contains entries tracing user authentication and role assignments.
/opt/novell/devman/jcc/logs/jcc-0.log.0	Contains the log entries for the server communications module related to interaction of the Identity Server with the Administration Console, such as imports, certificates, health checks, and configuration.

Filename

Description

/var/opt/novell/tomcat5/logs/catalina.out

Logging to this file occurs only if you have selected the Echo to Console option from the Identity Servers > Servers > Edit > Logging page.

When component logging has been set to info for Applications, it contains entries tracing user authentication and role assignments.

/opt/novell/devman/jcc/logs/jcc-0.log.0

Contains the log entries for the server communications module related to interaction of the Identity Server with the Administration Console, such as imports, certificates, health checks, and configuration.

4.2.5 Windows Server 2003 Identity Server Logs

Filename

Description

\Program Files\Novell\Tomcat\logs\ stderr.log

Contains Tomcat error messages directed to stderr.

This file is reset whenever Tomcat is restarted.

\Program Files\Novell\Tomcat\logs\ stdout.log

Logging to this file occurs only if you have selected the Echo to Console option from the Identity Servers > Servers > Edit > Logging page.

When component logging has been set to info for Applications, it contains entries tracing user authentication and role assignments.

This file is reset whenever Tomcat is restarted.

\Program Files\Novell\devman\jcc\ logs\jcc-0.log.0

4.2.6 Windows Server 2008 Identity Server Logs

Filename

Description

\Program Files (x86)\Novell\Tomcat\ logs\stderr.log

Contains Tomcat error messages directed to stderr.

This file is reset whenever Tomcat is restarted.

\Program Files (x86)\Novell\Tomcat\ logs\stdout.log

Logging to this file only occurs if you have selected the Echo to Console option from the Identity Servers > Servers > Edit > Logging page.

When component logging has been set to info for Applications, it contains entries tracing user authentication and role assignments.

This file is reset whenever Tomcat is restarted.

\Program Files (x86)\Novell\devman\ jcc\logs\jcc-0.log.0

4.2.7 Linux Access Gateway Appliance Logs

Filename	Description
/var/opt/novell/tomcat5/logs/catalina.out	Logging to this file only occurs if you have selected the Echo to Console option from the Identity Servers > Servers > Edit > Logging page. Check this file for entries tracing the evaluation of authorization, identity injection, and form fill policies.
/var/log/novell/reverse/<name>	If logging is enabled on one or more reverse proxies, this directory contains the log files. To enable this type of logging, see Configuring Logging for a Proxy Service in the NetIQ Access Manager 3.1 SP5 Access Gateway Guide. A directory is listed for each reverse proxy on which you have enabled logging.
/var/log/ics_dyn.log	Contains all log entries generated by the Linux Access Gateway Appliance. Use syslog to control file rolling and log file distribution.
/opt/novell/devman/jcc/logs/jcc-0.log.0	Contains the log entries for the server communications module related to interaction of the Access Gateway with the Administration Console, such as imports, certificates, health checks, and configuration.
/var/log/lagsoapmessages	Logs all the SOAP messages between the Linux Access Gateway and the Embedded Service Provider.
/var/log/laghttpheaders	Contains a log of the HTTP headers to and from the Linux Access Gateway.

4.2.8 Linux Access Gateway Service Logs

Filename	Description
/var/log/novell-apache2	If logging is enabled on one or more reverse proxies, this directory contains the log files. To enable this type of logging, see Configuring Logging for a Proxy Service in the NetIQ Access Manager 3.1 SP5 Access Gateway Guide. This directory also contains the Apache generated log files such as the error_log file.
/var/opt/novell/amlogging/logs	If you have enabled log profiles, this directory contains these log files. To enable this type of logging, see Access Gateway Service Logs in the NetIQ Access Manager 3.1 SP5 Access Gateway Guide.
/var/opt/novell/amlogging/logs/ags_error.log	Contains the messages generated for configuration, device imports, health, and statistics. It also contains entries for the policy evaluation processes done by the Gateway Service Manager module.
/var/opt/novell/tomcat5/logs/catalina.out	Contains the log messages generated by the Embedded Service Provider. Logging to this file occurs only if you have selected the Echo to Console option from the Identity Servers > Servers > Edit > Logging page. Check this file for entries tracing the evaluation of authorization, identity injection, and form fill policies.

4.2.9 Windows Access Gateway Service Logs

Filename	Description
\Program Files\Novell\amlogging\logs\ ags_error.log	Contains the messages generated for configuration, device imports, health, and statistics. It also contains entries for the policy evaluation processes done by the Gateway Service Manager module.
\Program Files\Novell\amlogging\logs\	If you have enabled log profiles, this directory contains these log files. To enable this type of logging, see Access Gateway Service Logs in the NetIQ Access Manager 3.1 SP5 Access Gateway Guide.
\Program Files\Novell\Apache\logs\ <name>	If logging is enabled on one or more reverse proxies, this directory contains the log files. To enable this type of logging, see Configuring Logging for a Proxy Service in the NetIQ Access Manager 3.1 SP5 Access Gateway Guide. This directory also contains the Apache generated log files such as the error_log file.
\Program Files\Novell\Tomcat\logs\ stdout.log	Contains the log messages generated by the Embedded Service Provider. Logging to this file only occurs if you have selected the Echo to Console option from the Identity Servers > Servers > Edit > Logging page. Check this file for entries tracing the evaluation of authorization, identity injection, and form fill policies. This file is reset whenever Tomcat is restarted.

4.2.10 SSL VPN Server Logs

Filename	Description
/var/opt/novell/tomcat5/logs/catalina.out	Logging to this file occurs only if you have selected the Echo to Console option from the Identity Servers > Servers > Edit > Logging page.
/opt/novell/devman/jcc/logs/jcc0.log.0	Contains the log entries for the server communications module related to interaction of the SSL VPN with the Administration Console, such as imports, certificates, and configuration.
/var/log/messages	Contains the log entries for the Connection Manager and SOCKS servers.
/var/log.novell-openvpn.log	Contains log entries for the OpenVPN server or the Enterprise mode server.
/var/log/stunnel.log	Contains log entries for Stunnel or the Kiosk mode server.