Logging utilities
The RADIUS server uses SYSLOG to log activity and error information.
There are three levels of log information:
- 0
- Only problems or errors and the starting of daemons are logged.
- 3
- Logs an audit trail of
access_accept,access_reject*,discard, anderrormessages.Note:discardmessages are logged when an incoming packet is invalid and a response packet is not generated. - 9
- Includes 0 and 3 level logging information and much more. Only run level 9 logging to debug.
The default level of logging is level 3. Logging at level 3 is used to improve the level of auditing of the RADIUS server. Depending on what level the server is logging, you can use the activities stored in the log to check for suspicious patterns of activity. If security is violated, the SYSLOG output can be used to determine how and when the violation occurred and perhaps the amount of access gained. This information is useful in the development of better security measures to prevent future problems.