Chat now with support
Chat with Support

Defender 6.4 - Administration Guide

Getting started Managing Defender objects in Active Directory Configuring security tokens Securing VPN access Securing Web sites Securing Windows-based computers Defender Management Portal (Web interface) Securing PAM-enabled services Delegating Defender roles, tasks, and functions Automating administrative tasks Administrative templates Integration with Active Roles Push Notifications Appendices
Appendix A: Enabling diagnostic logging Appendix B: Troubleshooting common authentication issues Appendix C: Troubleshooting DIGIPASS token issues Appendix D: Defender classes and attributes in Active Directory Appendix E: Defender Event Log messages Appendix F: Defender Client SDK Appendix G: Defender Web Service API

Integration Pack for Active Roles

To enable diagnostic logging for Integration Pack for Active Roles

  • On a computer where Integration Pack for Active Roles is installed, use Registry Editor to create the following value in the HKLM\SOFTWARE\PassGo Technologies\Defender registry key:

    Value type: REG_DWORD

    Value name: DefenderSDK Diagnostics

    Value data: 1

The path to the log file is %ProgramData%\One Identity\Defender\Diagnostics\DefenderSDK.txt.

To disable diagnostic logging for Integration Pack for Active Roles, delete the DefenderSDK Diagnostics value from the Defender registry key, or set the value data to 0.

Management Portal

To enable diagnostic logging for Management Portal

  1. On a computer where Management Portal is installed, go to the WWW folder in the Management Portal installation directory.

    Normally, the path to the folder is %ProgramFiles%\One Identity\Defender\Management Portal\WWW.

  2. Make the following changes to the Web.config text file held in the WWW folder:
    • In the <log4net debug="false"> entry, set the value to "true": <log4net debug="true">
    • In the <level value="ERROR" /> entry, set the value to "DEBUG": <level value="DEBUG" />

You can find the log file DefenderWeb.txt in the Logs folder in the Management Portal installation directory. Normally, the path to the log file is %ProgramFiles%\One Identity\Defender\Management Portal\Logs\DefenderWeb.txt.

To disable diagnostic logging for Management Portal, set the following values in the Web.config file:

  • <log4net debug="false">
  • <level value="ERROR" />

Management Portal (reports)

To enable diagnostic logging for Management Portal (reports)

  1. On a computer where Management Portal is installed, go to the WWW\Areas\Reports\Generators folder in the Management Portal installation directory.

    Normally, the path to the folder is %ProgramFiles%\One Identity\Defender\Management Portal\WWW\Areas\Reports\Generators.

  2. Add the following lines to the mappath.ini text file held in the Generators folder:

    [Diagnostics]

    Enabled=1

The path to the log file is %ProgramData%\One Identity\Defender\Diagnostics\DefenderReports.txt.

To disable diagnostic logging for Management Portal (reports), remove these lines from the mappath.ini file:

[Diagnostics]

Enabled=1

Management Shell

To enable diagnostic logging for Management Shell

  • On a computer where Management Shell is installed, use Registry Editor to create the following value in the HKLM\SOFTWARE\PassGo Technologies\Defender registry key:

    Value type: REG_DWORD

    Value name: PSDiagnostics

    Value data: 1

The path to the log file is %ProgramData%\One Identity\Defender\Diagnostics\MgmtShell.txt.

To disable diagnostic logging for Management Shell, delete the PSDiagnostics value from the Defender registry key, or set the value data to 0.

Related Documents

The document was helpful.

Select Rating

I easily found the information I needed.

Select Rating