(RADIATOR) Problem with AuthLog SYSLOG - ERR: Error while doing AuthLog SYSLOG: syslog: invalid level/facility: radius at Radius/AuthLogSYSLOG.pm line 110
Terry Simons
galimore at mac.com
Sun Oct 1 23:39:58 CDT 2006
Hi Hugh,
I actually do - I should have mentioned that originally. ;)
The following is in my /etc/syslog.conf, and I have restarted my
syslog server:
radius.* /var/log/
radiator/authlog/syslog.log
Also, the default "user.*" does work. I had to add both radius.* and
user.* to my syslog.conf and restart syslogd, so I'm sure that's all
set up properly.
Additionally, I don't get any error messages from Radiator if I
remove user.* from syslog.conf and restart syslogd, so I'm not sure
what's going on here, but the problems I'm seeing with radius.*
definitely do not exist with user.*, even when user.* is missing from
the syslog.conf.
I should probably also mention that I am testing this on Mac OS X
10.4.8. I had to install Sys::Syslog, as it is not included in the
Mac OS X perl distribution.
I also had to add the "-r" flag to my syslog server by editing /
System/Library/LaunchDaemons/com.apple.syslogd.plist. Here is the
correct incantation for reference:
<key>ProgramArguments</key>
<array>
<string>/usr/sbin/syslogd</string>
<string>-r</string>
</array>
If you try to add the -r to the /usr/sbin/syslogd line, your syslog
won't start up. Also, I'm not sure how to restart syslogd through
launchd, so I rebooted my system instead.
Any idea why user.* works, but radius.* doesn't?
I'll try a couple of other services that area already defined as well
and let you know what the outcome is.
- Terry
On Oct 1, 2006, at 10:15 PM, Hugh Irvine wrote:
>
> Hello Terry -
>
> You will first of all need to have a "radius" facility defined for
> your system syslog before you can log to it.
>
> regards
>
> Hugh
>
>
> On 2 Oct 2006, at 13:56, Terry Simons wrote:
>
>> Hi,
>>
>> I'm seeing a problem with AuthLog SYSLOG that, according to the
>> manual, should be legal.
>>
>> I'm getting the following error:
>>
>> Sun Oct 1 21:51:13 2006: ERR: Error while doing AuthLog SYSLOG:
>> syslog: invalid level/facility: radius at Radius/AuthLogSYSLOG.pm
>> line 110
>>
>> My config looks like this:
>>
>> <AuthLog SYSLOG>
>> Identifier AuthLog-SYSLOG
>> Facility radius
>> Priority info
>> LogHost 127.0.0.1
>> LogSuccess 1
>> LogFailure 1
>> SuccessFormat %l,%u,%{Outer-EAP-Id},%N,%
>> h,Success,%{Called-St\
>> ation-Id},%{Calling-Station-Id},%{Handler:Identifier}
>> FailureFormat %l,%u,%{Outer-EAP-Id},%N,%
>> h,Failure,%{Called-St\
>> ation-Id},%{Calling-Station-Id},%{Handler:Identifier}
>> </AuthLog>
>>
>> And the manual indicates that the "Facility radius" line should be
>> legal:
>>
>> 5.70.1 Facility
>> The name of the syslog facility that will be logged to. The
>> default is ‘user’.
>> # Log to the syslog facility called ‘radius’
>> Facility radius
>>
>> Maybe I'm doing something wrong?
>>
>> Thanks,
>>
>> - Terry
>>
>> --
>> Archive at http://www.open.com.au/archives/radiator/
>> Announcements on radiator-announce at open.com.au
>> To unsubscribe, email 'majordomo at open.com.au' with
>> 'unsubscribe radiator' in the body of the message.
>
>
>
> NB:
>
> Have you read the reference manual ("doc/ref.html")?
> Have you searched the mailing list archive (www.open.com.au/
> archives/radiator)?
> Have you had a quick look on Google (www.google.com)?
> Have you included a copy of your configuration file (no secrets),
> together with a trace 4 debug showing what is happening?
>
> --
> Radiator: the most portable, flexible and configurable RADIUS server
> anywhere. Available on *NIX, *BSD, Windows, MacOS X.
> Includes support for reliable RADIUS transport (RadSec),
> and DIAMETER translation agent.
> -
> Nets: internetwork inventory and management - graphical, extensible,
> flexible with hardware, software, platform and database independence.
> -
> CATool: Private Certificate Authority for Unix and Unix-like systems.
>
>
--
Archive at http://www.open.com.au/archives/radiator/
Announcements on radiator-announce at open.com.au
To unsubscribe, email 'majordomo at open.com.au' with
'unsubscribe radiator' in the body of the message.
More information about the radiator
mailing list