I posted this on Lawson Community as well, but thought I'd try here too.
Has anyone found a way to capture LDAP changes made via the loadusers utility. We have a nightly scheduled job running under the lawson userid that uses loaduser utility to add new employees to the LDAP for ESS. I am not seeing any of these changes when I look in the Lawson Security Admin Audit Report even though I include lawson user in my report list. I do see all changes made by a given individual via the LS Administrator Tool. I have Auditing set to Critical. I believe the changes are captured if you change the setting to debug, but I don't want it to run in debug mode all the time. We are LSF 9 running under LAUA security on UNIX.
There is a flag on one of the ios properties or security cfg files which writes a SSO*.log file to $LAWDIR\system. Sorry I can't remember what it is, but there is a KB article on support which describes it.