Chapter 1. Monitoring Directory Server activity
The Red Hat Directory Server tracks and records performance data by using performance counters and logs.
- Performance counters provide a measurement of the Directory Server performance. Performance counters focus on the operations and information of Directory Server, configured databases, and database links (chaining databases).
Log files record events that happen during server activity. To monitor the performance, you can use the following logs:
- Access log
- Error log
- Audit log
- Audit fail log
Security log
For more details about log files, see Directory Server log files overview.
The information on the current Directory Server activities is available through the web console or by using the command line. You can also monitor the cache activity of all databases.
The access log is buffered and it enables full access logging even with highly loaded servers. However, there is a discrepancy between when the event occurs on the server and the time the event is recorded in the log.
1.1. Monitoring Directory Server using the command line
With the dsconf
command, you can monitor the disk usage, query server statistics that are stored in the directory, and other metrics to track the performance.
Prerequisite
-
Ensure the server is running to use the
dconf
utility.
Procedure
To monitor the server performance using the command-line, run:
# dsconf -D "cn=Directory Manager" ldap://server.example.com monitor server
where:
-
-D
is thebindDN
argument to connect to the LDAP directory. -
cn=Directory Manager
is thebindDN
value for LDAP authentication. -
ldap
collects the server statistics using the specified Lightweight Directory Access Protocol (LDAP) URL.
-
1.2. Server monitoring attributes
The dsconf
command returns the following attributes when monitoring Directory Server.
Attribute | Description |
---|---|
| Identifies the current directory version number. |
| The current number of active threads handling requests. The internal server tasks, such as replication or chaining, can create additional threads when required. |
| Provides the following summary information for each open connection when you bind to the directory as the Directory Manager:
By default, this information is available to the Directory Manager. However, you can edit the Access Control Instruction (ACI) attribute in directory entries and configure additional users on access privileges to the information. |
| Identifies the number of connections currently in service by the directory. |
| Identifies the number of connections the server handles after it starts. |
|
Displays the connections currently in a |
|
Displays the number of times a connection hits the |
|
Shows the number of file descriptors available for the directory. Each connection requires one file descriptor for every open index, log file management, and for |
| Identifies the number of threads waiting to read data from a client. |
| Identifies the number of operations the server initiates after it starts. |
| Identifies the number of operations the server completes. |
| Identifies the number of entries sent to clients after the server starts. |
| Identifies the number of bytes sent to clients after the server starts. |
| Identifies the server snapshot time. The time display is Greenwich Mean Time (GMT) in UTC format. |
| Identifies the time when the server starts. The time display is Greenwich Mean Time (GMT) in UTC format. |
| Identifies the number of back ends (databases) the server services. |
1.3. Monitoring Directory Server using the web console
The web console is a browser-based graphical user interface (GUI) that enables users to perform administrative tasks. The Directory Server packages automatically install the Directory Server user interface for the web console.
Procedure
To open Directory Server in the web console, connect to the web console running on port 9090 on the Directory Server host.
https://server.example.com:9090
-
Log in as the
root
user or withsudo
privileges. Under the
Monitoring
tab, select.
Additional resources
1.4. Server information
The Directory Server displays the following fields under the Server Information menu.
Field | Description |
---|---|
| Displays the name of the Directory Server instance. |
| Identifies the current server version. |
| The date and time the server is up and running. |
| The measure of time the instance is up and running. |
| The current number of active threads that handle requests. The internal server tasks, such as replication or chaining, can create additional threads when required. |
| The total number of threads waiting to be read from the client. Threads may not be immediately read if the server receives new request from the client and halts the request transmission. Generally, waiting threads indicate a slow network or a slow client. |
|
Displays all connections that are currently in a |
|
Displays the number of times a connection hits |
| The total number of connections established to a Directory Server instance. |
| The total number of open connections. Each connection can start multiple operations and therefore multiple threads. |
| The number of operations initiated by a connection. |
| The number of operations completed by the server for all connections. |
| The number of entries sent to clients after the server starts. |