DB2 10.5 for Linux, UNIX, and Windows
DB2 10.5 for Linux, UNIX, and Windows
If you encounter problems authenticating LDAP users or retrieving their groups, the db2diag log files and administration log are a good source of information to aid in troubleshooting.
The LDAP plug-in modules typically log LDAP return codes, search filters, and other useful data when a failure occurs. If you enable the DEBUG option in the LDAP plug-in configuration file, the plug-in modules will log even more information in the db2diag log files. While this might be an aid in troubleshooting, it is not recommended for extended use on production systems due to the overhead associated with writing all of the extra data to a single file.
Ensure that the diaglevel configuration parameter in the database manager is set to 4 so that all messages from the LDAP plug-in modules will be captured.