Hello Rob, The audit log can't be linked to the LDAP MOD log from the access file, as the only correlating factors are the timestamp, the DN, and the change type, which is not efficient for correlating logs because we can't be sure if we are looking at the corresponding MOD operation.
I would like to have something similar to what OpenLDAP offers (https://www.openldap.org/lists/openldap-software/200904/msg00049.html), with logs using the same connection and operation IDs as the MOD and RESULT. As you mentioned, the debug mode is too verbose and will consume too much disk space. Thank you. Best regards, Whidix -- _______________________________________________ FreeIPA-users mailing list -- [email protected] To unsubscribe send an email to [email protected] Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedorahosted.org/archives/list/[email protected] Do not reply to spam, report it: https://pagure.io/fedora-infrastructure/new_issue
