match replay log with the request and log rejected request
Alan DeKok
aland at deployingradius.com
Wed Mar 19 07:58:11 UTC 2025
On Mar 19, 2025, at 2:47 PM, Peter Hudec via Freeradius-Users <freeradius-users at lists.freeradius.org> wrote:
> As there is no username or some knd of session id in the reoply, the default reply_log configuration just logs the reply attributes.
> In this scenario I'm not able to pair it with the original request ;(
The lazy way is that you can just add an attribute to the reply. Edit raddb/dictionary to add a string attribute like "Copy-Of-User-Name". Then, do:
update reply {
&Copy-Of-User-Name := &User-Name
}
reply_log
And that will include the User-Name from the request.
> By default, the Rejected request are not logged, what should be changed to add logging for them?
Edit the "Post-Auth-Type Reject" section, and add logging there.
Alan DeKok.
More information about the Freeradius-Users
mailing list