Red Hat DIRECTORY SERVER 8.0 Command Reference Manual page 29

• 4 - Read only
• 5 - Read and execute
• 6 - Read and write
• 7 - Read, write, and execute
In the 3-digit number, the first digit represents the owner's permissions, the second digit represents the
group's permissions, and the third digit represents everyone's permissions. When changing the default
value, remember that 000 does not allow access to the logs and that allowing write permissions to
everyone can result in the logs being overwritten or deleted by anyone.
The newly configured access mode only affects new logs that are created; the mode is set when the
log rotates to a new file.
Parameter
Entry DN
Valid Range
Default Value
Syntax
Example
2.3.1.18. nsslapd-attribute-name-exceptions
This attribute allows non-standard characters in attribute names to be used for backwards
compatibility with older servers, such as "_" in schema-defined attributes.
Parameter
Entry DN
Valid Values
Default Value
Syntax
Example
2.3.1.19. nsslapd-auditlog (Audit Log)
This attribute sets the path and filename of the log used to record changes made to each database.
Parameter
Entry DN
Valid Values
Default Value
Syntax
Example
For audit logging to be enabled, this attribute must have a valid path and parameter, and the
nsslapd-auditlog-logging-enabled configuration attribute must be switched to on. The table
Description
cn=config
000 through 777
600
Integer
nsslapd-accesslog-mode: 600
Description
cn=config
on | off
off
DirectoryString
nsslapd-attribute-name-exceptions: on
Description
cn=config
Any valid filename
/var/log/dirsrv/slapd-instance_name/audit
DirectoryString
nsslapd-auditlog: /var/log/dirsrv/
slapd-instance_name/audit
cn=config
19