Chat now with support
Chat with Support

Defender 6.6 - Administration Guide

Getting started Managing Defender objects in Active Directory Configuring security tokens Securing VPN access Securing Web sites Securing Windows-based computers Defender Management Portal (Web interface) Securing PAM-enabled services Delegating Defender roles, tasks, and functions Automating administrative tasks Administrative templates Integration with Active Roles Push Notifications Appendices
Appendix A: Enabling diagnostic logging Appendix B: Troubleshooting common authentication issues Appendix C: Troubleshooting DIGIPASS token issues Appendix D: Defender classes and attributes in Active Directory Appendix E: Defender Event Log messages Appendix F: Defender Client SDK Appendix G: Defender Web Service API

Desktop Login

To enable diagnostic logging for Desktop Login

  • On a computer where Desktop Login is installed, use Registry Editor to create the following value in the HKLM\SOFTWARE\PassGo Technologies\Defender\Defender GINA registry key:

    Value type: REG_DWORD

    Value name: Diagnostics

    Value data: 1

The path to the log file is %ProgramData%\One Identity\Defender\Diagnostics\Defender Desktop Login.txt.

To disable diagnostic logging for Desktop Login, delete the Diagnostics value from the Defender GINA registry key, or set the value data to 0.

EAP Agent

To enable diagnostic logging for EAP Agent on a 32-bit (x86) system

On a 32-bit computer where EAP Agent is installed, use Registry Editor to create the following value in the HKLM\SOFTWARE\PassGo Technologies\Defender\Defender 5 EAP registry key:

Value type: REG_DWORD

Value name: Diagnostics

Value data: 1

To enable diagnostic logging for EAP Agent on a 64-bit (x64) system

On a 64-bit computer where EAP Agent is installed, use Registry Editor to create the following value in the HKLM\SOFTWARE\Wow6432Node\PassGo Technologies\Defender\Defender 5 EAP registry key:

Value type: REG_DWORD

Value name: Diagnostics

Value data: 1

The path to the log file is %ProgramData%\One Identity\Defender\Diagnostics\DefenderEAP.txt.

To disable diagnostic logging for EAP Agent, delete the Diagnostics value from the Defender 5 EAP registry key, or set the value data to 0.

Integration Pack for Active Roles

To enable diagnostic logging for Integration Pack for Active Roles

  • On a computer where Integration Pack for Active Roles is installed, use Registry Editor to create the following value in the HKLM\SOFTWARE\PassGo Technologies\Defender registry key:

    Value type: REG_DWORD

    Value name: DefenderSDK Diagnostics

    Value data: 1

The path to the log file is %ProgramData%\One Identity\Defender\Diagnostics\DefenderSDK.txt.

To disable diagnostic logging for Integration Pack for Active Roles, delete the DefenderSDK Diagnostics value from the Defender registry key, or set the value data to 0.

Management Portal

To enable diagnostic logging for Management Portal

  1. On a computer where Management Portal is installed, go to the WWW folder in the Management Portal installation directory.

    Normally, the path to the folder is %ProgramFiles%\One Identity\Defender\Management Portal\WWW.

  2. Make the following changes to the Web.config text file held in the WWW folder:
    • In the <log4net debug="false"> entry, set the value to "true": <log4net debug="true">
    • In the <level value="ERROR" /> entry, set the value to "DEBUG": <level value="DEBUG" />

You can find the log file DefenderWeb.txt in the Logs folder in the Management Portal installation directory. Normally, the path to the log file is %ProgramFiles%\One Identity\Defender\Management Portal\Logs\DefenderWeb.txt.

To disable diagnostic logging for Management Portal, set the following values in the Web.config file:

  • <log4net debug="false">
  • <level value="ERROR" />
Related Documents

The document was helpful.

Select Rating

I easily found the information I needed.

Select Rating