You can run “event log show” and you can filter with -messagename. Also “security audit show” for node based command history. Also you can view from the system shell in /mroot/etc/log (vldb.log, mgwd.log) and /mroot/etc/mlog for command-history.log, but I prefer web access to logs since read only and keeps you from getting in the systemshell.

Also Web access to logs is set by default now but may need to be enabled then oint to the cluster management ip and the nodename with the syntax below. See documentation to enable web access if not enabled or I can paste from my run book if you need them.

log files (http:// or https://) https://cluster-mgmt-ip/spi/node-name/etc/log/

core dump files (http:// or https://) https://cluster-mgmt-ip/spi/node-name/etc/crash/

Thanks for the above information

In my Admin vserver I can see Service Name portal is enabled and SPI is disabled. With Portal can't I see log file in web GUI?

  (vserver services web show)

Vserver        Type     Service Name     Description                   Enabled

-------------- -------- ---------------- ----------------------------- -------

gdc-nc1        admin    cem              Cluster Element Manager       true

gdc-nc1        admin    ontapi           Remote Administrative API     true

                                         Support

gdc-nc1        admin    portal           Data ONTAP Web Services       true

                                         Portal

gdc-nc1        admin    spi              Service Processor             false

                                         Infrastructure

Here are 9 commands (8 on the cluster then 1 per node in the Service Processor) to enable both RSA (remote support agent) and web logs. Similar commands between them so a good idea to enable both at the same time. The example below uses "rsauser" as the username for rsa.

::> security login role create -vserver rsa setup # runs rsa test at end

Test Web Browser Access to Logs

• log files (http:// or https://) https://cluster-mgmt-ip/spi/node-name/etc/log/

• core dump files (http:// or https://) https://cluster-mgmt-ip/spi/node-name/etc/crash/

Reply by email lost a lot of the text... bug in the parsing of the email so re-posting.

::> security login role create -vserver <cluster_vserver> -role rsa -cmddirname DEFAULT -access all

::> security login create -vserver <cluster_vserver> -username rsauser -application http -authmethod password -role rsa

::> security login create -vserver <cluster_vserver> -username rsauser -application ontapi -authmethod password -role rsa

::> vserver services web modify -vserver * -enabled true -name spi|ontapi|compat

::> vserver services web access create -name spi -role rsa -vserver <cluster_vserver>

::> vserver services web access create -name ontapi -role rsa -vserver <cluster_vserver>

::> vserver services web access create -name compat -role rsa -vserver <cluster_vserver>

::> vserver services web access create -name spi -role admin -vserver <cluster_vserver>

SP on each controller> rsa setup    # runs rsa test at end

Test Web Browser Access to Logs

•    log files (http:// or https://)         https://cluster-mgmt-ip/spi/node-name/etc/log/

•    core dump files (http:// or https://)     https://cluster-mgmt-ip/spi/node-name/etc/crash/

Hey anyone,

Could we able to see apache_access.log in 7mode.? I have checked /mroot/etc/log/mlog and /var/log but couldn't find it in either of the two places.

Information would be very useful.

Thanks

7-Mode - apache error logs found at /mroot/etc/log/mlog on Free BSD shell on 8.2.x 7-Mode.

% ls -l /mroot/etc/log/mlog/apache_error.log*

Apache access logs were not found.

/mroot/etc/log/httpd.log contains details of web access to mroot