Add Extra Logging for LDAP Troubleshooting


Adam Adrianson -


After trying to setup XL Deploy or XL Release for LDAP authentication, LDAP users cannot sign on.  The logs have no helpful information.


XL Deploy, XL Release, LDAP, Active Directory


Logging can be turned up and consolidated in a separate log file  to make it easier to follow the events.  At the end of xl[d/r]_home/conf/logback.xml, just before the </configuration> tag, add the following appender and loggers and then restart.  Signon events can then be found in xl[d/r]_home/log/ldapsecurity.log -

    <appender name="SEC_FILE" class="ch.qos.logback.core.rolling.RollingFileAppender">
        <rollingPolicy class="ch.qos.logback.core.rolling.FixedWindowRollingPolicy">
        <triggeringPolicy class="ch.qos.logback.core.rolling.SizeBasedTriggeringPolicy">
            <pattern>%d{yyyy-MM-dd HH:mm:ss.SSS} [%thread] {%mdc} %-5level %logger{36} - %msg%n</pattern>
    <logger name="" level="debug" additivity="false">
        <appender-ref ref="SEC_FILE" />
    <logger name="" level="debug" additivity="false">
        <appender-ref ref="SEC_FILE" />
    <logger name="org.springframework.ldap" level="debug" additivity="false">
        <appender-ref ref="SEC_FILE" />

Default logging is insufficient to diagnose some LDAP configuration issues.

Additional Information
level="debug" can be turned up to level="trace" for any of the above loggers as needed





Have more questions? Submit a request