(RADIATOR) Problem with AuthLog SYSLOG - ERR: Error while doing AuthLog SYSLOG: syslog: invalid level/facility: radius at Radius/AuthLogSYSLOG.pm line 110

Terry Simons galimore at mac.com
Mon Oct 2 00:36:59 CDT 2006 

Hi Hugh,

After some digging it appears defining custom log facilities in Mac  
OS X may not be allowed.  From syslog.conf(5):

The facility describes the part of the system generating the message,  
and
      is one of the following keywords: auth, authpriv, cron, daemon,  
kern,
      lpr, mail, mark, news, syslog, user, uucp and local0 through  
local7.

Testing is easily done with the 'logger' command.  Something like:   
"logger -p radius.info test" causes the failure to occur with the  
same sort of error.

It should also be mentioned that the BSD variants of syslogd do not  
like spaces in the syslog.conf file - tabs should be used instead.

I'll post a note to the darwin developer's list and see if anyone  
there knows whether this is possible or not.

- Terry

On Oct 1, 2006, at 11:26 PM, Hugh Irvine wrote:

>
> Hi Terry -
>
> Both "user" and "localx" are "special" for syslog - specifically  
> "user" is hardwired internally and is what is used as default if  
> nothing else is specified.
>
> I suspect "localx" also has some magic happening.
>
> This appears to be the case according to "man -s 3 syslog".
>
> I suggest you start with a simple Perl script that does logging to  
> syslog for debugging purposes.
>
> regards
>
> Hugh
>
>
> On 2 Oct 2006, at 14:47, Terry Simons wrote:
>
>> Ok, so I tried adding a "foo.*" and that fails in the same way  
>> that "radius.*" fails, but I also added a local1.* (which didn't  
>> exist) and that one works...
>>
>> Here are the entries in my syslog.conf for reference:
>>
>> local1.*                                                /var/log/ 
>> radiator/authlog/syslog.log
>> radius.*                                                /var/log/ 
>> radiator/authlog/syslog.log
>> user.*                                                  /var/log/ 
>> radiator/authlog/syslog.log
>> foo.*                                                   /var/log/ 
>> radiator/authlog/syslog.log
>>
>> I'm really not sure what's going on here...  I know that other  
>> programs use localX.* and user.*... I wonder if adding these  
>> facilities to /etc/syslog.conf simply isn't enough on Mac OS X...  
>> Perhaps they need to be added to the netinfo database as well...
>>
>> I'll do a bit more digging and let you know if I find a solution.
>>
>> - Terry
>>
>>
>> On Oct 1, 2006, at 9:56 PM, Terry Simons wrote:
>>
>>> Hi,
>>>
>>> I'm seeing a problem with AuthLog SYSLOG that, according to the  
>>> manual, should be legal.
>>>
>>> I'm getting the following error:
>>>
>>> Sun Oct  1 21:51:13 2006: ERR: Error while doing AuthLog SYSLOG:  
>>> syslog: invalid level/facility: radius at Radius/AuthLogSYSLOG.pm  
>>> line 110
>>>
>>> My config looks like this:
>>>
>>> <AuthLog SYSLOG>
>>>         Identifier      AuthLog-SYSLOG
>>>         Facility radius
>>>         Priority info
>>>         LogHost 127.0.0.1
>>>         LogSuccess 1
>>>         LogFailure 1
>>>         SuccessFormat           %l,%u,%{Outer-EAP-Id},%N,% 
>>> h,Success,%{Called-St\
>>> ation-Id},%{Calling-Station-Id},%{Handler:Identifier}
>>>         FailureFormat           %l,%u,%{Outer-EAP-Id},%N,% 
>>> h,Failure,%{Called-St\
>>> ation-Id},%{Calling-Station-Id},%{Handler:Identifier}
>>> </AuthLog>
>>>
>>> And the manual indicates that the "Facility radius" line should  
>>> be legal:
>>>
>>> 5.70.1 Facility
>>> The name of the syslog facility that will be logged to. The  
>>> default is ‘user’.
>>> # Log to the syslog facility called ‘radius’
>>> Facility radius
>>>
>>> Maybe I'm doing something wrong?
>>>
>>> Thanks,
>>>
>>> - Terry
>>>
>>> --
>>> Archive at http://www.open.com.au/archives/radiator/
>>> Announcements on radiator-announce at open.com.au
>>> To unsubscribe, email 'majordomo at open.com.au' with
>>> 'unsubscribe radiator' in the body of the message.
>>
>
>
>
> NB:
>
> Have you read the reference manual ("doc/ref.html")?
> Have you searched the mailing list archive (www.open.com.au/ 
> archives/radiator)?
> Have you had a quick look on Google (www.google.com)?
> Have you included a copy of your configuration file (no secrets),
> together with a trace 4 debug showing what is happening?
>
> -- 
> Radiator: the most portable, flexible and configurable RADIUS server
> anywhere. Available on *NIX, *BSD, Windows, MacOS X.
> Includes support for reliable RADIUS transport (RadSec),
> and DIAMETER translation agent.
> -
> Nets: internetwork inventory and management - graphical, extensible,
> flexible with hardware, software, platform and database independence.
> -
> CATool: Private Certificate Authority for Unix and Unix-like systems.
>
>


--
Archive at http://www.open.com.au/archives/radiator/
Announcements on radiator-announce at open.com.au
To unsubscribe, email 'majordomo at open.com.au' with
'unsubscribe radiator' in the body of the message.

More information about the radiator mailing list