--Task--
              name: Configure_ds-cts
           enabled: True
        class_name: DsConfigTask
       source_name: ds-cts
  source_namespace: >default<
       target_name: ds-cts
  target_namespace: >default<
             start: 0
              stop: None
           timeout: no timeout
              loop: False
          interval: None
      dependencies: []
          wait_for: []
           options: {}
        group_name: None
       Current dir: /mnt/disks/data/xslou/lodestar-fork/pyrock

________________________________________________________________________________

[20/Sep/2022 01:58:55] Configure_ds-cts pre : Checking task config
________________________________________________________________________________

________________________________________________________________________________

[20/Sep/2022 01:58:55] Configure_ds-cts step1 : Enable trust transaction-id
________________________________________________________________________________


[loop_until]: kubectl --namespace=xlou exec ds-cts-0 -c ds -- dsconfig set-global-configuration-prop --set trust-transaction-ids:true --hostname ds-cts-0 --port 4444 --bindDN uid=admin --bindPassword x7P88geZkPyMduSTUD32ntX8YYsW7y0e --no-prompt 
[loop_until]: (max_time=180, interval=5, expected_rc=[0]
[loop_until]: OK (rc = 0)
--- stdout ---

--- stderr ---


[loop_until]: kubectl --namespace=xlou exec ds-cts-1 -c ds -- dsconfig set-global-configuration-prop --set trust-transaction-ids:true --hostname ds-cts-1 --port 4444 --bindDN uid=admin --bindPassword x7P88geZkPyMduSTUD32ntX8YYsW7y0e --no-prompt 
[loop_until]: (max_time=180, interval=5, expected_rc=[0]
[loop_until]: OK (rc = 0)
--- stdout ---

--- stderr ---


[loop_until]: kubectl --namespace=xlou exec ds-cts-2 -c ds -- dsconfig set-global-configuration-prop --set trust-transaction-ids:true --hostname ds-cts-2 --port 4444 --bindDN uid=admin --bindPassword x7P88geZkPyMduSTUD32ntX8YYsW7y0e --no-prompt 
[loop_until]: (max_time=180, interval=5, expected_rc=[0]
[loop_until]: OK (rc = 0)
--- stdout ---

--- stderr ---

________________________________________________________________________________

[20/Sep/2022 01:59:02] Configure_ds-cts step2 : List log filtering policies
________________________________________________________________________________


[run_command]: kubectl --namespace=xlou exec ds-cts-0 -c ds -- ldapsearch --noPropertiesFile -p 1389 --useStartTls --trustAll -D "uid=admin" -w "x7P88geZkPyMduSTUD32ntX8YYsW7y0e" -b "cn=Filtering Criteria,cn=Console LDAP Access Logger,cn=Loggers,cn=config" "objectclass=*"
[run_command]: OK (rc = 0 - expected to be in [0])
--- stdout ---
dn: cn=Filtering Criteria,cn=Console LDAP Access Logger,cn=Loggers,cn=config
objectClass: top
objectClass: ds-cfg-branch
cn: Filtering Criteria

dn: cn=Administrative Requests,cn=Filtering Criteria,cn=Console LDAP Access Logger,cn=Loggers,cn=config
objectClass: top
objectClass: ds-cfg-access-log-filtering-criteria
cn: Administrative Requests
ds-cfg-log-record-type: add
ds-cfg-log-record-type: bind
ds-cfg-log-record-type: compare
ds-cfg-log-record-type: delete
ds-cfg-log-record-type: extended
ds-cfg-log-record-type: modify
ds-cfg-log-record-type: rename
ds-cfg-log-record-type: search
ds-cfg-request-target-dn-equal-to: cn=config
ds-cfg-request-target-dn-equal-to: **,cn=config
ds-cfg-request-target-dn-equal-to: cn=tasks
ds-cfg-request-target-dn-equal-to: **,cn=tasks

dn: cn=Auth Failures,cn=Filtering Criteria,cn=Console LDAP Access Logger,cn=Loggers,cn=config
objectClass: top
objectClass: ds-cfg-access-log-filtering-criteria
cn: Auth Failures
ds-cfg-log-record-type: add
ds-cfg-log-record-type: bind
ds-cfg-log-record-type: compare
ds-cfg-log-record-type: delete
ds-cfg-log-record-type: extended
ds-cfg-log-record-type: modify
ds-cfg-log-record-type: rename
ds-cfg-log-record-type: search
ds-cfg-response-result-code-equal-to: 7
ds-cfg-response-result-code-equal-to: 8
ds-cfg-response-result-code-equal-to: 13
ds-cfg-response-result-code-equal-to: 48
ds-cfg-response-result-code-equal-to: 49
ds-cfg-response-result-code-equal-to: 50
ds-cfg-response-result-code-equal-to: 123

dn: cn=Long Requests,cn=Filtering Criteria,cn=Console LDAP Access Logger,cn=Loggers,cn=config
objectClass: top
objectClass: ds-cfg-access-log-filtering-criteria
cn: Long Requests
ds-cfg-log-record-type: add
ds-cfg-log-record-type: bind
ds-cfg-log-record-type: compare
ds-cfg-log-record-type: delete
ds-cfg-log-record-type: extended
ds-cfg-log-record-type: modify
ds-cfg-log-record-type: rename
ds-cfg-log-record-type: search
ds-cfg-response-etime-greater-than: 1000

dn: cn=Misbehaving Clients,cn=Filtering Criteria,cn=Console LDAP Access Logger,cn=Loggers,cn=config
objectClass: top
objectClass: ds-cfg-access-log-filtering-criteria
cn: Misbehaving Clients
ds-cfg-log-record-type: add
ds-cfg-log-record-type: bind
ds-cfg-log-record-type: compare
ds-cfg-log-record-type: delete
ds-cfg-log-record-type: extended
ds-cfg-log-record-type: modify
ds-cfg-log-record-type: rename
ds-cfg-log-record-type: search
ds-cfg-response-result-code-equal-to: 1
ds-cfg-response-result-code-equal-to: 2
ds-cfg-response-result-code-equal-to: 17
ds-cfg-response-result-code-equal-to: 18
ds-cfg-response-result-code-equal-to: 19
ds-cfg-response-result-code-equal-to: 21
ds-cfg-response-result-code-equal-to: 34
ds-cfg-response-result-code-equal-to: 60
ds-cfg-response-result-code-equal-to: 61
ds-cfg-response-result-code-equal-to: 64
ds-cfg-response-result-code-equal-to: 65
ds-cfg-response-result-code-equal-to: 66
ds-cfg-response-result-code-equal-to: 67
ds-cfg-response-result-code-equal-to: 69

dn: cn=Searches Returning 1000\+ Entries,cn=Filtering Criteria,cn=Console LDAP Access Logger,cn=Loggers,cn=config
objectClass: top
objectClass: ds-cfg-access-log-filtering-criteria
cn: Searches Returning 1000+ Entries
ds-cfg-log-record-type: search
ds-cfg-search-response-nentries-greater-than: 1000

dn: cn=Unindexed Searches,cn=Filtering Criteria,cn=Console LDAP Access Logger,cn=Loggers,cn=config
objectClass: top
objectClass: ds-cfg-access-log-filtering-criteria
cn: Unindexed Searches
ds-cfg-log-record-type: search
ds-cfg-search-response-is-indexed: false
--- stderr ---



[run_command]: kubectl --namespace=xlou exec ds-cts-1 -c ds -- ldapsearch --noPropertiesFile -p 1389 --useStartTls --trustAll -D "uid=admin" -w "x7P88geZkPyMduSTUD32ntX8YYsW7y0e" -b "cn=Filtering Criteria,cn=Console LDAP Access Logger,cn=Loggers,cn=config" "objectclass=*"
[run_command]: OK (rc = 0 - expected to be in [0])
--- stdout ---
dn: cn=Filtering Criteria,cn=Console LDAP Access Logger,cn=Loggers,cn=config
objectClass: top
objectClass: ds-cfg-branch
cn: Filtering Criteria

dn: cn=Administrative Requests,cn=Filtering Criteria,cn=Console LDAP Access Logger,cn=Loggers,cn=config
objectClass: top
objectClass: ds-cfg-access-log-filtering-criteria
cn: Administrative Requests
ds-cfg-log-record-type: add
ds-cfg-log-record-type: bind
ds-cfg-log-record-type: compare
ds-cfg-log-record-type: delete
ds-cfg-log-record-type: extended
ds-cfg-log-record-type: modify
ds-cfg-log-record-type: rename
ds-cfg-log-record-type: search
ds-cfg-request-target-dn-equal-to: cn=config
ds-cfg-request-target-dn-equal-to: **,cn=config
ds-cfg-request-target-dn-equal-to: cn=tasks
ds-cfg-request-target-dn-equal-to: **,cn=tasks

dn: cn=Auth Failures,cn=Filtering Criteria,cn=Console LDAP Access Logger,cn=Loggers,cn=config
objectClass: top
objectClass: ds-cfg-access-log-filtering-criteria
cn: Auth Failures
ds-cfg-log-record-type: add
ds-cfg-log-record-type: bind
ds-cfg-log-record-type: compare
ds-cfg-log-record-type: delete
ds-cfg-log-record-type: extended
ds-cfg-log-record-type: modify
ds-cfg-log-record-type: rename
ds-cfg-log-record-type: search
ds-cfg-response-result-code-equal-to: 7
ds-cfg-response-result-code-equal-to: 8
ds-cfg-response-result-code-equal-to: 13
ds-cfg-response-result-code-equal-to: 48
ds-cfg-response-result-code-equal-to: 49
ds-cfg-response-result-code-equal-to: 50
ds-cfg-response-result-code-equal-to: 123

dn: cn=Long Requests,cn=Filtering Criteria,cn=Console LDAP Access Logger,cn=Loggers,cn=config
objectClass: top
objectClass: ds-cfg-access-log-filtering-criteria
cn: Long Requests
ds-cfg-log-record-type: add
ds-cfg-log-record-type: bind
ds-cfg-log-record-type: compare
ds-cfg-log-record-type: delete
ds-cfg-log-record-type: extended
ds-cfg-log-record-type: modify
ds-cfg-log-record-type: rename
ds-cfg-log-record-type: search
ds-cfg-response-etime-greater-than: 1000

dn: cn=Misbehaving Clients,cn=Filtering Criteria,cn=Console LDAP Access Logger,cn=Loggers,cn=config
objectClass: top
objectClass: ds-cfg-access-log-filtering-criteria
cn: Misbehaving Clients
ds-cfg-log-record-type: add
ds-cfg-log-record-type: bind
ds-cfg-log-record-type: compare
ds-cfg-log-record-type: delete
ds-cfg-log-record-type: extended
ds-cfg-log-record-type: modify
ds-cfg-log-record-type: rename
ds-cfg-log-record-type: search
ds-cfg-response-result-code-equal-to: 1
ds-cfg-response-result-code-equal-to: 2
ds-cfg-response-result-code-equal-to: 17
ds-cfg-response-result-code-equal-to: 18
ds-cfg-response-result-code-equal-to: 19
ds-cfg-response-result-code-equal-to: 21
ds-cfg-response-result-code-equal-to: 34
ds-cfg-response-result-code-equal-to: 60
ds-cfg-response-result-code-equal-to: 61
ds-cfg-response-result-code-equal-to: 64
ds-cfg-response-result-code-equal-to: 65
ds-cfg-response-result-code-equal-to: 66
ds-cfg-response-result-code-equal-to: 67
ds-cfg-response-result-code-equal-to: 69

dn: cn=Searches Returning 1000\+ Entries,cn=Filtering Criteria,cn=Console LDAP Access Logger,cn=Loggers,cn=config
objectClass: top
objectClass: ds-cfg-access-log-filtering-criteria
cn: Searches Returning 1000+ Entries
ds-cfg-log-record-type: search
ds-cfg-search-response-nentries-greater-than: 1000

dn: cn=Unindexed Searches,cn=Filtering Criteria,cn=Console LDAP Access Logger,cn=Loggers,cn=config
objectClass: top
objectClass: ds-cfg-access-log-filtering-criteria
cn: Unindexed Searches
ds-cfg-log-record-type: search
ds-cfg-search-response-is-indexed: false
--- stderr ---



[run_command]: kubectl --namespace=xlou exec ds-cts-2 -c ds -- ldapsearch --noPropertiesFile -p 1389 --useStartTls --trustAll -D "uid=admin" -w "x7P88geZkPyMduSTUD32ntX8YYsW7y0e" -b "cn=Filtering Criteria,cn=Console LDAP Access Logger,cn=Loggers,cn=config" "objectclass=*"
[run_command]: OK (rc = 0 - expected to be in [0])
--- stdout ---
dn: cn=Filtering Criteria,cn=Console LDAP Access Logger,cn=Loggers,cn=config
objectClass: top
objectClass: ds-cfg-branch
cn: Filtering Criteria

dn: cn=Administrative Requests,cn=Filtering Criteria,cn=Console LDAP Access Logger,cn=Loggers,cn=config
objectClass: top
objectClass: ds-cfg-access-log-filtering-criteria
cn: Administrative Requests
ds-cfg-log-record-type: add
ds-cfg-log-record-type: bind
ds-cfg-log-record-type: compare
ds-cfg-log-record-type: delete
ds-cfg-log-record-type: extended
ds-cfg-log-record-type: modify
ds-cfg-log-record-type: rename
ds-cfg-log-record-type: search
ds-cfg-request-target-dn-equal-to: cn=config
ds-cfg-request-target-dn-equal-to: **,cn=config
ds-cfg-request-target-dn-equal-to: cn=tasks
ds-cfg-request-target-dn-equal-to: **,cn=tasks

dn: cn=Auth Failures,cn=Filtering Criteria,cn=Console LDAP Access Logger,cn=Loggers,cn=config
objectClass: top
objectClass: ds-cfg-access-log-filtering-criteria
cn: Auth Failures
ds-cfg-log-record-type: add
ds-cfg-log-record-type: bind
ds-cfg-log-record-type: compare
ds-cfg-log-record-type: delete
ds-cfg-log-record-type: extended
ds-cfg-log-record-type: modify
ds-cfg-log-record-type: rename
ds-cfg-log-record-type: search
ds-cfg-response-result-code-equal-to: 7
ds-cfg-response-result-code-equal-to: 8
ds-cfg-response-result-code-equal-to: 13
ds-cfg-response-result-code-equal-to: 48
ds-cfg-response-result-code-equal-to: 49
ds-cfg-response-result-code-equal-to: 50
ds-cfg-response-result-code-equal-to: 123

dn: cn=Long Requests,cn=Filtering Criteria,cn=Console LDAP Access Logger,cn=Loggers,cn=config
objectClass: top
objectClass: ds-cfg-access-log-filtering-criteria
cn: Long Requests
ds-cfg-log-record-type: add
ds-cfg-log-record-type: bind
ds-cfg-log-record-type: compare
ds-cfg-log-record-type: delete
ds-cfg-log-record-type: extended
ds-cfg-log-record-type: modify
ds-cfg-log-record-type: rename
ds-cfg-log-record-type: search
ds-cfg-response-etime-greater-than: 1000

dn: cn=Misbehaving Clients,cn=Filtering Criteria,cn=Console LDAP Access Logger,cn=Loggers,cn=config
objectClass: top
objectClass: ds-cfg-access-log-filtering-criteria
cn: Misbehaving Clients
ds-cfg-log-record-type: add
ds-cfg-log-record-type: bind
ds-cfg-log-record-type: compare
ds-cfg-log-record-type: delete
ds-cfg-log-record-type: extended
ds-cfg-log-record-type: modify
ds-cfg-log-record-type: rename
ds-cfg-log-record-type: search
ds-cfg-response-result-code-equal-to: 1
ds-cfg-response-result-code-equal-to: 2
ds-cfg-response-result-code-equal-to: 17
ds-cfg-response-result-code-equal-to: 18
ds-cfg-response-result-code-equal-to: 19
ds-cfg-response-result-code-equal-to: 21
ds-cfg-response-result-code-equal-to: 34
ds-cfg-response-result-code-equal-to: 60
ds-cfg-response-result-code-equal-to: 61
ds-cfg-response-result-code-equal-to: 64
ds-cfg-response-result-code-equal-to: 65
ds-cfg-response-result-code-equal-to: 66
ds-cfg-response-result-code-equal-to: 67
ds-cfg-response-result-code-equal-to: 69

dn: cn=Searches Returning 1000\+ Entries,cn=Filtering Criteria,cn=Console LDAP Access Logger,cn=Loggers,cn=config
objectClass: top
objectClass: ds-cfg-access-log-filtering-criteria
cn: Searches Returning 1000+ Entries
ds-cfg-log-record-type: search
ds-cfg-search-response-nentries-greater-than: 1000

dn: cn=Unindexed Searches,cn=Filtering Criteria,cn=Console LDAP Access Logger,cn=Loggers,cn=config
objectClass: top
objectClass: ds-cfg-access-log-filtering-criteria
cn: Unindexed Searches
ds-cfg-log-record-type: search
ds-cfg-search-response-is-indexed: false
--- stderr ---


________________________________________________________________________________

[20/Sep/2022 01:59:07] Configure_ds-cts post : Post method
________________________________________________________________________________

Setting result to PASS
Task has been successfully stopped