Introduction to IBM Tivoli Directory Server 6.0 – Debugging Excerpt taken from presentation given on April 10, 2007Explore methods to debug a failed IBM Tivoli Directory Server server start Introduction to IBM Tivoli Directory Server 6.0 – Debugging Excerpt taken from presentation given on April 10, 2007 Explore methods to debug a failed IBM Tivoli Directory Server server start Basic Debugging – Configuration Only Mode Basic Debugging – Configuration Only Mode If ibmslapd runs into any errors during startup it may run in a mode known as “Configuration Only Mode”. When in this mode we can only access configuration options, only the the “cn=configuration” suffix is active. We cannot access any of the data stored in the backend. To find out what exactly is failing we will typically enable a trace of the server start up. To enable tracing, issue the following commands: #ldtrc on #Idsslapd –I instname –h 65535 2>&1 |tee /tmp/srvtrc.out The output generated should help to debug what is failing. Command to determine if you are in config only mode: #idsldapsearch –p -b "" -s base objectclass=* | grep -i config This search should return: ibm-slapdisconfigurationmode=FALSE Basic Debugging – Configuration Only Mode Basic Debugging – Configuration Only Mode If the server encounters an error when starting up you will see messages similar to the following: Basic Debugging – Configuration Only Mode Basic Debugging – Configuration Only Mode Additionally you can run the following command to confirm: # idsldapsearch –p -b "" -s base objectclass=* | grep -i config ibm-slapdisconfigurationmode=TRUE confirms that the server is running in configuration mode. Basic Debugging – Configuration Only Mode Basic Debugging – Configuration Only Mode From the output messages in the failed server startup you can see that there is an issue connecting to the database. In order to find out more information we should take a trace of the server startup. If the server is still running, stop it. # ibmslapd –I ismpinst –k Then check to see if ldtrc is on. If it is off, then enable tracing and restart the server using the –h debug flag. Basic Debugging – Configuration Only Mode Basic Debugging – Configuration Only Mode Several messages will display, when the command completes view the output file and search for failure messages. This indicates that either the db2 username and / or db2 user password specified in the ibmslapd.conf file is invalid. Typically this error is encountered when users update the db2 user password on the system and forget to update the ibmslapd.conf file. If the server is running when the password was changed you will not notice a problem until the server is restarted. Basic Debugging – Configuration Only Mode Basic Debugging – Configuration Only Mode In order to fix this we need to verify the db2 username and db2 user password are correct. Then we need to update the configuration file using the idscfgdb utility with the –I and –w flags. Basic Debugging – Configuration Only Mode Basic Debugging – Configuration Only Mode Now that we have updated the configuration file with the correct db2 user password, the server will start successfully. Basic Debugging – Configuration Only Mode Basic Debugging – Configuration Only Mode We can also confirm that the server is not running in configuration only mode by running the # idsldapsearch –p -b "" -s base objectclass=* | grep -i config This search now confirms that the server is not running in configuration only mode. Problem Solved! Copyright and trademark information Copyright and trademark information © Copyright IBM Corporation 2000 - 2007. All rights reserved. U.S. Government Users Restricted Rights - Use, duplication or disclosure restricted by GSA ADP Schedule Contract with IBM Corp. IBM web site pages may contain other proprietary notices and copyright information which should be observed. IBM trademarks http://www.ibm.com/legal/copytrade.shtml#ibm Fair use guidelines for use and reference of IBM trademarks http://www.ibm.com/legal/copytrade.shtml#fairuse General rules for proper reference to IBM product names http://www.ibm.com/legal/copytrade.shtml#general Special attributions IBM, the IBM logo and DB2 are trademarks of International Business Machines Corporation in the United States, other countries, or both. MMX, Pentium, and ProShare are trademarks of Intel Corporation in the United States, other countries, or both. Microsoft and Windows NT are trademarks of Microsoft Corporation in the United States, other countries, or both. Java and all Java-based trademarks are trademarks of Sun Microsystems, Inc. in the United States, other countries, or both. UNIX is a registered trademark of The Open Group in the United States and other countries. Linux is a registered trademark of Linus Torvalds in the United States, other countries, or both. Other company, product or service names may be trademarks or service marks of others.