Alan DeKok wrote:
Are there any thoughts about adding the patch from the 8/16 email to the FreeRADIUS baseline?
Sorry for not responding earlier. A variant of the patch has been added. See the v2.1.x branch on http://git.freeradius.org
The patch creates client/server attributes from the certificate fields. These attributes can be used for anything: policies, *or* logging.
This makes it slightly more complex to set up logging like it was in your patch. But IMHO, it's a more correct approach. The TLS module should do minimal logging, but it should enable you to do any logging you want. The code in git does that.
Thank you. I downloaded the updates, but wasn't able to figure out how to enable the logging. Is there an example that someone could point me to? Thanks Mike Ross