Current File(s): conf/logback.xml, conf/idp.properties
Format: Logback
| Table of Contents |
|---|
...
By default, the only destination for these records is the general process log. The normal use for F-TICKS is to provide the logs to another system, so the logback.xml file includes a commented out an appender for a remote syslog. You should uncomment that appender, configure the appropriate hostname, and then uncomment the <appender-ref> element in the "Shibboleth-FTICKS" <logger> element. Of course, you're free to configure any appender(s) you chooseThe hostname and port can be set via the idp.fticks.loghost and idp.fticks.logport properties.
Reference
Properties
Properties are defined in idp.properties to customize various aspects of audit logging:
| Property | Type | Default | Function |
|---|---|---|---|
| idp.fticks.federation | String | Enables F-TICKS output and specifies the value of the federation-identifier field | |
| idp.fticks.algorithm | String | SHA-2 | Digest algorithm used to obscure usernames |
| idp.fticks.salt | String | A salt to apply when digesting usernames (if not specified, the username will not be included) | |
| idp.fticks.loghost | String | localhost | The remote syslog host |
| idp.fticks.logport | String | 514 | The remote syslog port |