Logging

Access Gateway enables you to monitor the events in your Access Gateway environment using event data that it stores in logs. You can specify the level of log events emitted by system components in the Access Gateway Management console. These components include the Access Gateway Admin UI console, the Access Gateway Management console, NGINX engine, Kerberos, underlying shell scripts, and similar components.

The Access Gateway maximum size for log files is 20 gigabytes.

Configure log events: You can configure the mode, level, and components of Access Gateway logs. See Management Console command-line reference.
Log verbosity: Log verbosity lets you specify the level of granularity for the events in your log. See Manage log verbosity.
App-level debug: You can set individual apps to debug logging. This option ignores the log verbosity setting for log events specific to the app. See Troubleshoot applications.
Log forwarding: Log forwarding allows Access Gateway to relay or export logs to third-party log analysis software. See Configure log forwarders.
Download logs: This allows admins to download log information for an Access Gateway cluster. See Download log files.
Log rotation and archiving: Access Gateway rotates logs daily and stores log files for a month. To change your log rotation and archiving schedule, contact Okta Support.