I’m using a customized logging.cfg configuration with my PI 3.2 server. After authenticating with AD credentials in ADFS and being prompted to enter PrivacyIDEA MFA token, the authentication attempt does not get logged. The integration works, I can log into the ADFS related service with my MFA token, the attempt just isn’t logged. Digging through the ADFSProvider code on GitHub, it appears to make an http call to the /validate/check endpoint, so I would assume it should show up in the audit log or server log, but it does not. Do I have my logger.cfg configured improperly?
[handlers] keys=audit [handler_audit] class=logging.handlers.RotatingFileHandler backupCount=7 maxBytes=100000000 formatter=detail level=INFO args=('/var/log/privacyidea/audit.log',) [loggers] keys=root,audit [logger_root] level=NOTSET handlers=audit [logger_audit] handlers=audit qualname=pi-audit level=INFO [formatters] keys=detail [formatter_detail] class=privacyidea.lib.log.SecureFormatter format=[%(asctime)s][%(levelname)s][%(name)s]%(message)s