Configuring Subsystem Debug Log

Overview

Each PKI subsystem provides a logging service using java.util.logging (JUL) framework. The logging service which can be used to generate debug logs for troubleshooting issues in the subsystem (e.g. database access, certificate issuance, key archival).

Configuration

The JUL configuration is stored in the following files:

By default they are configured as follows:

handlers = org.apache.juli.FileHandler

org.apache.juli.FileHandler.directory = ${catalina.base}/logs/${classloader.webappName}
org.apache.juli.FileHandler.prefix = debug.
org.apache.juli.FileHandler.maxDays = 7
org.apache.juli.FileHandler.formatter = org.dogtagpki.util.logging.PKIFormatter

.level = WARNING
.handler = org.apache.juli.FileHandler

org.dogtagpki.level = WARNING
com.netscape.level = WARNING
netscape.level = WARNING

The debug.level parameter is stored in the following files:

By default they are configured as follows:

debug.level=10

Log Files

By default log messages will be stored in /var/log/pki/pki-tomcat/<subsystem>/debug.YYYY-MM-DD.log which will be rotated daily.

By default it will only keep log messages from the last 7 days.

Log Format

The messages will be formatted by org.dogtagpki.util.logging.PKIFormatter.

Log Level

The debug.level is mapped into JUL log level as follows:

PKI Log Level	SLF4J Log Level	JUL Log Level
0-1 (OBNOXIOUS)	TRACE	FINEST
2-5 (VERBOSE)	DEBUG	FINE
6-10 (INFORM)	INFO	INFO
11-15	WARN	WARNING
>15	ERROR	SEVERE

Displaying Current Debug Level

To show the current debug level, execute the following command:

$ pki-server ca-config-show debug.level
0

Changing Debug Level

To change the debug level, execute the following command:

$ pki-server ca-config-set debug.level 5

Then restart the server.

Tip	To find a page in the Wiki, enter the keywords in search field, press Enter, then click Wikis.

Provide feedback

Saved searches

Use saved searches to filter your results more quickly