On Aug 28, 2024, at 1:45 PM, White, Daniel E. (GSFC-764.0)[AEGIS] via Freeradius-Users <freeradius-users@lists.freeradius.org> wrote:
I need to allow our network engineers to see the logs without giving them sudo access to the entire server. I can tinker a bit in /etc/logrotate.d/radius, but that will not guarantee the directory permissions under /var/log/radius/radacct ?
See mods-enabled/detail. There's a permissions configuration item.
A side question: There was a comment in /etc/logrotate.d/radius about setting "detailfile" in radius.conf, but then /etc/raddb/README.rst says it was deprecated. Is there any way to change the name of the files and directories under /var/log/radius/radacct ?
See mods-enabled/detail I've updated the default "logrotate" scripts to point to the correct location. Alan DeKok.