Red Hat 8.1 User Manual
Page 26
2.3.1.29. nsslapd-auditlog-logrotationsyncmin (Audit Log Rotation Sync Minute)
This attribute sets the minute of the day for rotating audit logs. This attribute must be used in
conjunction with nsslapd-auditlog-logrotationsync-enabled and nsslapd-auditlog-
logrotationsynchour attributes.
Parameter
Description
Entry DN
cn=config
Valid Range
0 through 59
Default Value
None (because nsslapd-auditlog-
logrotationsync-enabled is off)
Syntax
Integer
Example
nsslapd-auditlog-logrotationsyncmin: 30
2.3.1.30. nsslapd-auditlog-logrotationtime (Audit Log Rotation Time)
This attribute sets the time between audit log file rotations. The audit log is rotated when this time
interval is up, regardless of the current size of the audit log. This attribute supplies only the number of
units. The units (day, week, month, and so forth) are given by the nsslapd-auditlog-
logrotationtimeunit attribute. If the nsslapd-auditlog-maxlogsperdir attribute is set to 1, the
server ignores this attribute.
Although it is not recommended for performance reasons to specify no log rotation, as the log grows
indefinitely, there are two ways of specifying this. Either set the nsslapd-auditlog-maxlogsperdir
attribute value to 1 or set the nsslapd-auditlog-logrotationtime attribute to -1. The server checks
the nsslapd-auditlog-maxlogsperdir attribute first, and, if this attribute value is larger than 1, the
server then checks the nsslapd-auditlog-logrotationtime attribute. See
“nsslapd-auditlog-maxlogsperdir (Audit Log Maximum Number of Log Files)”
Parameter
Description
Entry DN
cn=config
Valid Range
-1 | 1 to the maximum 32 bit integer value
(2147483647), where a value of -1 means that
the time between audit log file rotation is
unlimited.
Default Value
1
Syntax
Integer
Example
nsslapd-auditlog-logrotationtime: 100
2.3.1.31. nsslapd-auditlog-logrotationtimeunit (Audit Log Rotation Time Unit)
This attribute sets the units for the nsslapd-auditlog-logrotationtime attribute.
Parameter
Description
Entry DN
cn=config
Valid Values
month | week | day | hour | minute
Default Value
week
Syntax
DirectoryString
Example
nsslapd-auditlog-logrotationtimeunit: day
2.3.1.32. nsslapd-auditlog-maxlogsize (Audit Log Maximum Log Size)
This attribute sets the maximum audit log size in megabytes. When this value is reached, the audit log is
rotated. That means the server starts writing log information to a new log file. If nsslapd-auditlog-
maxlogsperdir to 1, the server ignores this attribute.
When setting a maximum log size, consider the total number of log files that can be created due to log
file rotation. Also, remember that there are three different log files (access log, audit log, and error log)
maintained by the Directory Server, each of which consumes disk space. Compare these considerations
to the total amount of disk space for the audit log.
Parameter
Description
Entry DN
cn=config
Valid Range
-1 | 1 to the maximum 32 bit integer value
(2147483647), where a value of -1 means the log
file is unlimited in size.
Default Value
100
Syntax
Integer
Example
nsslapd-auditlog-maxlogsize: 50
26
Chapter 2. Core Server Configuration Reference