Parameter:
DEBUG_LDAPShort description: Debug output for the LDAP task – bind attempts, search filters, schema lookups, and referrals.
Profile
Parameter | DEBUG_LDAP |
Category | Logging / Debug |
Component | Server |
Available since | 10.0 |
Supported versions | 10.0, 11.0, 12.0, 14.0, 14.5, 14.5.1 |
GUI equivalent | notes.ini only (no GUI) |
Possible values | 0 = off (default), 1 = basic, 2 = verbose (incl. filters & attributes), 3 = trace |
Description
Domino's LDAP task serves external LDAP clients (e.g. mail clients, authentication servers, federation tools).
DEBUG_LDAP writes detailed trace output – which client authenticates with which bind DN, which search filters are requested with which base DN, which attributes are returned, and whether/where referrals occur.Ideal for topics such as LDAP login fails, address search in mail client returns no hits, anonymous search doesn't work, performance problems with many LDAP queries.
Example configuration
DEBUG_LDAP=2 Debug_Outfile=/local/notesdata/IBM_TECHNICAL_SUPPORT/ldap_debug.log
Notes & pitfalls
- Level
3produces a lot of entries – enable only temporarily.
- Takes effect immediately via
set config DEBUG_LDAP=...; a restart of the LDAP task is not strictly required.
- Entries appear in
console.logand inDebug_Outfile.
- Complementary to
DEBUG_NAMELOOKUP,LDAPDebugswitches,Schema_Daemonparameters.
- For bind issues, additionally use
tell ldap show config,show config DEBUG_LDAP.