On Срд, 02 кра 2025, Theodor Vallier via FreeIPA-users wrote:
Hello Rob,
The audit log can't be linked to the LDAP MOD log from the access file,
as the only correlating factors are the timestamp, the DN, and the
change type, which is not efficient for correlating logs because we
can't be sure if we are looking at the corresponding MOD operation.
There are two formats of auditlog: using LDIF and JSON. JSON format
includes connection and operation IDs as well as time and a lot of other
details.
Set 'nsslapd-auditlog-log-format: json' in cn=config to get JSON output.
If you'd set it to anything other than 'default' or 'json', it will be
'json-pretty'.
--
/ Alexander Bokovoy
Sr. Principal Software Engineer
Security / Identity Management Engineering
Red Hat Limited, Finland
--
_______________________________________________
FreeIPA-users mailing list -- freeipa-users@lists.fedorahosted.org
To unsubscribe send an email to freeipa-users-le...@lists.fedorahosted.org
Fedora Code of Conduct:
https://docs.fedoraproject.org/en-US/project/code-of-conduct/
List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines
List Archives:
https://lists.fedorahosted.org/archives/list/freeipa-users@lists.fedorahosted.org
Do not reply to spam, report it:
https://pagure.io/fedora-infrastructure/new_issue
