Table of Contents
Advertisement
When selecting a time limit, consider the following:
When a ticket expires, logging is automatically stopped. If you know that user is
experiencing a problem that prevents the user from logging out, you might want to
create a ticket with a short time limit.
If the user does not log out (just closes the browser window or the problem closes it),
the session remains in the list of logged sessions. After 10 minutes of inactivity, the
session is closed and the lock on the log file is cleared. As long as the log file is
locked, no other application can read the file.
Ticket Log Level: Select the level of information to log, from severe-only messages to
debug.
Log to Console: Select to log the messages to the user's file and to the console.
If you have set up logging for session-based logging (see
on page
256), then this allows you see the messages in the
stdout.log
If you have enabled Component File Logger Levels, selecting this option can create
duplicate entries in the
3c Click Create.
4 Create a URL that uses the following format:
https://<base_URL>/nidp/app/login?id=<LogSession>
Replace <base_URL> with the base URL of your Identity Server, including the port. Make
sure the port agrees with the HTTP scheme (either http or https).
Replace <LogSession> with the ID you specified for the authentication card when defining the
Logging Session contract.
IMPORTANT: The id is the ID of the authentication card of the Logging Session contract. It
is not the name of the ticket you just created.
If the base URL of the Identity Server is https://idp.amlab.net:8443/nidp and the ID for the
authentication card is LogSession, create the following URL:
https://idp.amlab.net:8443/nidp/app/login?id=LogSession
5 Send the URL of the LogSession card and the name of the ticket to the user.
Enabling a Logging Session
These steps are performed by the user. The URL needs to be sent to the user, with the ID and ticket
values that were specified in
1 Open a browser and enter the log session URL sent by the help desk.
If the URL does not display a page that prompts for the ticket name, check the value of the id
string. The id must be set to the ID of the authentication card of the Logging Session contract.
Instead of sending the user a URL, you can enable the Show Card option for the Logging
Session card. When you do this, all users can see it. You need to decide if this is acceptable.
When the Show Card option is enabled, the login page looks similar to the following:
file.
catalina.out
"Creating a Logging Ticket" on page
"Enabling Basic Logging"
catalina.out
or
file.
stdout.log
256.
Maintaining an Identity Server 257
or
Advertisement
Table of Contents
Troubleshooting
Related Manuals for Novell ACCESS MANAGER 3.1 SP1 - IDENTITY SERVER
Related Products for Novell ACCESS MANAGER 3.1 SP1 - IDENTITY SERVER
- NOVELL ACCESS MANAGER 3.1 SP2 - README 2010
- NOVELL ACCESS MANAGER 3.1 SP2 BETA 1 - SCENARIOS 2009
- NOVELL ACCESS MANAGER 3.1 SP1 - AGENT GUIDE
- NOVELL ACCESS MANAGER 3.1 SP2 - SSL VPN USER GUIDE 2010
- Novell Access Manager 3.1 SP 1
- Novell Access Manager 3.1 SP2 Beta 1
- Novell Access Manager 3.1 SP 2
- NOVELL CLIENT LOGIN EXTENSION 3.7 - ADMINISTRATION
- NOVELL IDENTITY ASSURANCE SOLUTION 3.0.2 - ADMINISTRATION
- NOVELL IDENTITY MANAGER 3.6.1 - STAGING BEST PRACTICES GUIDE 2010
- NOVELL IDENTITY MANAGER 3.6.1 - NULL SERVICE AND LOOPBACK SERVICE DRIVERS
- NOVELL IDENTITY MANAGER 3.6.1 - JOBS GUIDE
- NOVELL IDENTITY MANAGER 3.6.1 - TASK SERVICE DRIVER
- NOVELL IFOLDER 3 - ADMINISTRATION
- NOVELL POLICIES IN IMANAGER 3.6.1 - 06-05-2009
- NOVELL POLICY IN DESIGNER 3.5 - 09-18-2009