OOD 1.8 + Dex + Fail2Ban

I’m testing the upgrade from OOD 1.6 to 1.8. All seems to be going fine. I was able to implement Dex after a little troubleshooting.

My question now is if Dex generates logs anywhere, either for just failed logins or both failed+successful logins. We currently use fail2ban to watch for failed Apache basic auth logins to lock out IPs after a certain number of failed attempts. Bonus points if someone has a fail2ban filter config for Dex.

The logging is to stdout or stderr of the daemon which is captured by journald and if you have journald setup to talk to rsyslog then you will have ondemand-dex logs in a place like /var/log/messages. I believe there are logs for successful login attempts but I honestly do not recall if there are log entries for failed attempts. Let me know if you need pointers on getting systemd into syslog, it’s not as straight forward as it should be though most RHEL/CentOS systems ship with the necessary configs if you leave stock configs in place.