Logging

RadSec supports logging mechanism, which shows information about successful and failed authentications and critical errors. By default (as per the configuration), logs are written to /var/log/radsecproxy.log.

LogDestination option in the configuration file (radsecproxy.conf) specifies where the log messages should go. Using this option, you may specify that logs must be written in a particular file. The value must be a file path. LogLevel option specifies the debug level. You can set it to 1, 2, 3, 4 or 5, where 1 logs only serious errors, and 5 logs everything. A logging level of 3 is the default and recommended log level.

Example log snippets showing successful and failed authentications,

Wed Apr 16 17:21:36 2025: Access-Reject for user userZ from apache-radius-test to 127.0.0.1 (127.0.0.1)
Wed Apr 16 17:21:48 2025: Access-Accept for user userZ from apache-radius-test to 127.0.0.1 (127.0.0.1)