Policy Server Guides › Policy Server Management Guide › Policy Server Management Console Reference › Policy Server Management Console › Policy Server Management Console Fields and Controls › Management Console--Logs Tab

Management Console--Logs Tab

The Logs tab is where you configure Policy Server logging.

Policy Server Log Group Box

The Policy Server Log group box is where you specify settings for the Policy Server log. This log records information about the status of the Policy Server and its processes.

Logfile field

Specifies the name and location of the log file. Enter a file name, or use the Browse button to specify a file.

(Logfile Rollover) When the server is restarted check box

If set, the Policy Server log will reset each time the server restarts. This option takes precedence over the size and time-based options.

(Logfile Rollover) When logfile reaches # MB check box

If set, the Policy Server log will create a new log file whenever the maximum log size (in megabytes) specified in the associated field is reached.

(Logfile Rollover) Time Based check box

If set, the Policy Server log will reset:

• hourly, based on the hour you select from the drop-down menu. The number must be a factor of 24 so you can select either 1, 2, 3, 4, 6, 8 or 12 as the hour. Further, the rollover time is calculated from 12:00 AM, so, if you specify 8, then log files will rollover at 8:00 AM, 4:00 PM, and 12:00 AM. The time zone is local to the machine where the Policy Server is installed.

  OR

• daily, based on a number that you specify between 1 and 100 days and at a time that follows the format (hh:mm) of a 24-hour clock. For example, you should enter 5:10 pm as 17:10. The exact time of next rollover is calculated from last time that the Policy Server had to perform a time-based log file rollover.

Retain up to # old logfile(s) field

Specifies the number of old log files that will be saved by the Policy Server. The old log files are saved in the directory you specified in the Logfile field.

Note: For Windows Policy Servers, it is generally better to write log files to local storage rather than to a network drive. If log files are written on a network drive, you must start and stop Policy Server manually from a command prompt, instead of using the Management Console Status tab. If you use the Management Console to stop and restart services, the Policy Server cannot write to a log file on a network drive.

Policy Server Audit Log Group Box

The Policy Server Audit Log group box is where you specify the types of auditing events that should be included in the Policy Server log.

Authentication Events drop down list

Specifies which client authentication events the Policy Server should log (Log All Events, Log Rejection Events only, or Log No Events).

Authorization Events drop down list

Specifies which client authorization events the Policy Server should log (Log All Events, Log Rejection Events only, or Log No Events).

Affiliate Events drop down list

Specifies which affiliate events the Policy Server should log (Log All Events, or Log No Events).

Administrator Access Events drop down list

Specifies which administrator access events the Policy Server should log (Log All Events, Log Rejection Events only, or Log No Events).

Note: For more information about auditing administrator changes to the policy store, see the Policy Server Administration Guide.

RADIUS Log Group Box

The RADIUS Log group box is where you specify log settings for RADIUS activity (only available if your Policy Server is configured as a RADIUS server).

Log to File check box

Select this option to enable RADIUS logging. If you select this check box, enter a path and file name for the log file in the field below the check box. You can click the Browse button to search for a location or file.

Append File check box

Select this option to append logging information to the log file you specified after a Policy Server restart. If you do not select this check box, when you restart the Policy Server, existing log file information is deleted, and the log begins recording activity from the point of the restart.

More information:

Configure the Policy Server Logs

Use the Policy Server as a Radius Server