Debug Logging
You can configure the components of Specops Password Policy to log their internal activity to a verbose debug log. The debug log allows you to follow the events leading up to the error.
Debug logging is enabled by changing the relevant registry key from its default value of 0 to 1. You can increase the level of detail further by using the higher debug levels 2 or 3.
Below you will find a list of the registry settings used by the components of Specops Password Policy. The settings can be changed using the Registry Editor.
Sentinel Filter
| Registry key | Description |
|---|---|
| HKEY_LOCAL_MACHINE\ |
Enables debug logging for the Sentinel Filter component. [DWORD] Debug = 1 The default log path is: %WINDIR%\Debug\SPP3FLT [LSASS].log |
Sentinel Service
| Registry key | Description |
|---|---|
| HKEY_LOCAL_MACHINE\ |
Enables debug logging for the Sentinel Service. [DWORD] Debug = 1 The default log path is: C:\Temp\SpecopsLogFiles\SpecopsPasswordSentinelService.log |
Specops Arbiter
| Registry key | Description |
|---|---|
| HKEY_LOCAL_MACHINE\ |
Enables debug logging for the Arbiter component. [DWORD] Debug = 1 The default log path is: %WINDIR%\ServiceProfiles\NetworkService\AppData\Local\Specopssoft\SpecopsPasswordArbiter.log |
Administration Tools
| Registry key | Description |
|---|---|
| HKEY_LOCAL_MACHINE\ |
Enables debug logging for the GPMC snap-in and the Domain Administration tool. [DWORD] Debug = 1 The default log paths are: %USERPROFILE%\AppData\Local\SpecopsSoft\SpecopsPasswordPolicy2GpmcSnapIn.log%USERPROFILE%\AppData\Local\SpecopsSoft\SpecopsPasswordPolicyDomainAdministration.log |