[Samba] LDAP connection logging

Jakob Lenfers lenfers at bigsss-bremen.de
Mon Jul 10 05:24:50 UTC 2023


I'm having a problem using the AD via LDAP for authentication from an 
external service. (Actually it works in version X, but not in version Y 
anymore, so probably the services fault.)

I tried increasing logging on my DCs, but I still couldn't find stuff 
like connections (" connected on port 636") and auth ("starting 
bind from cn=vpn-service,ou=..."). I tried increasing auth and 
auth_audit, but couldn't find anything regarding specifically LDAP. 
Tried to increase general logging (log level), but still couldn't find 
the connecting IP grepping my logs.

Any ideas how to get more verbose LDAP logging? And, if possible, 
similar to postfix, being able to get debug logs only from specific IPs 
to prevent the log from flooding?


More information about the samba mailing list