I was trying to enable fail2ban on my OOD 2.0.18 instance using Dex and LDAP.
It looks like apache or httpd24 do not even log login failures , because these are now handled by Dex. The only place a failure gets logged is /var/log/messages :
Nov 2 09:04:30 Myserver ondemand-dex: time=“2021-11-02T14:04:30Z” level=error msg=“ldap: invalid password for us
This log entry does not provide any IP info to ban, even if I somehow make a working filter for Dex LDAP issues.
Is there any way to make Dex more verbose, to record and display IPs? Or may be I am looking in a wrong direction and login errors with IPs can be found somewhere else?
University of Manitoba