Before You Begin
You must assume the root role. For more information, see Using Your Assigned Administrative Rights in Securing Users and Processes in Oracle Solaris 11.4.
# svcs system-log STATE STIME FMRI online 13:11:55 svc:/system/system-log:rsyslog disabled 13:13:27 svc:/system/system-log:default
See the DESCRIPTION section of the rsyslog.conf(5) man page for information about the logging levels. Most PAM error reporting is done through the LOG_AUTH facility.
For example, create a file for debug output.
# touch /var/adm/pam_debuglog
Then, add the rsyslog.conf entry to send debug output to that file.
# pfedit /etc/rsyslog.conf ... *.debug /var/adm/pam_debuglog ...
# svcadm refresh system-log:rsyslog