Re: LDAP Query logs?

Tech-Archive recommends: Repair Windows Errors & Optimize Windows Performance

From: JasonMeyer (jason.meyer_at_nospam.isd623.org)
Date: 09/24/04 

Date: Fri, 24 Sep 2004 14:42:36 -0500

Ok I think I found something....I watch the ldap packets and in the
searchresponse there is a correct response and
referral:ldap://anotherdc.server.inside.fw.org. The very next packet is a
DNS lookup for the server named in the referral. And the next packet after
that is a DNS lookup failure response from my public DNS server. So I guess
what is the referral ldap:// bit mean/whats it for?

Jason
"Joe Richards [MVP]" <humorexpress@hotmail.com> wrote in message
news:OQxpMcloEHA.3592@TK2MSFTNGP14.phx.gbl...
> There are no logs directly. You can force logging of expensive/inefficient
> queries and then define all queries to be expensive or inefficient. See
>
> http://support.microsoft.com/default.aspx?scid=kb;en-us;Q314980
>
>
http://msdn.microsoft.com/library/default.asp?url=/library/en-us/dnactdir/ht
ml/efficientadapps.asp
>
>
> You could also look at network traces with ethereal or netmon.
>
> You could also go to sysinternals and buy a tool from them that shows all
ldap
> traffic to a DC.
>
> joe
>
>
>
> --
> Joe Richards Microsoft MVP Windows Server Directory Services
> www.joeware.net
>
>
>
> JasonMeyer wrote:
> > Do AD server keep a log of LDAP queries? Can they? I am having an issue
with
> > a CF web app that works from an internal dev server but when I test it
on a
> > live public webserver it fails. I just would like to see what the
queries
> > look like that are coming to it. Thanks.
> >
> >
> > Jason
> >
> >

Relevant Pages

  • Re: "Critical extension is unavailable"
    ... A lot of people also find out that referrals may not be followed by their favorite app in the way needed as well. ... If the application docs don't tell you you will need to get out a network sniffer and look at the raw LDAP traffic. ... Joe Richards Microsoft MVP Windows Server Directory Services ... Is there a tool that can be used for sending "free form" queries to ...
    (microsoft.public.windows.server.active_directory)
  • Re: Replication of 2003 AD to 2000 server: viable for LDAP?
    ... I also suggest to remove/ the exchange to a dedicated server. ... queries of our PDC to validate recipient addresses. ... also installed on our PDC. ... Our problem involves these LDAP ...
    (microsoft.public.windows.server.active_directory)
  • Re: LDAP Query logs?
    ... the IPs that have been opened up for LDAP queries. ... > queries and then define all queries to be expensive or inefficient. ... > Joe Richards Microsoft MVP Windows Server Directory Services ...
    (microsoft.public.win2000.active_directory)
  • Re: Does samba 3.0.14Aa on OS 5.0.6 work with ldapsam backend on another LDAP server?
    ... used 3.0.9 on SCO 5.0.6 for quite some time after suffering problems I ... a RedHat4 box running samba 3.0.10 and OpenLDAP 2.2.13. ... and no LDAP server (although there were the ... share on the SCO server without any smbpasswd on that server! ...
    (comp.unix.sco.misc)