SignServer has many log types to provide information about your deployment of SignServer. The log events can be viewed from the Admin Web, Admin WS Interface, and application server logs.
SignServer uses the Secure Audit Log from CESeCore for system and audit logging.
The default logging implementation, org.signserver.server.log.SignServerLog4jDevice, uses Log4j and logs events to the secure audit log.
Log Levels
The log levels of SignServer deployments are specified as the standard Log4j levels (FATAL, ERROR, WARNING, INFO, DEBUG, and TRACE) and, if not set, default to the log level INFO.
In the SignServer Container deployment, the logging level is set through a parameter in the deployment. See Logging in SignServer Helm Deployment Parameters.
In the SignServer Software Stack deployment, logging level is set through the WildFly configuration. See Configure Logging in WildFly 32+ and JBoss EAP 8.
Available Log Types
Each log type provides specific information about your deployment of SignServer.
Log Type
Description
Default logging implementation from CESeCore. Provides options for signed logs, an Audit Record Data table, and an alternative integrity-protected log device.
Provides diagnostic and configuration troubleshooting.
Provides application-level and administrative events log, using Log4j.
Provides events concerning the SignServer application not related to any signing transaction.
Provides a log for SignServer applications running on the client-side.
Provides per-transaction signing events using Worker Loggers configured on Workers. Can be configured to use the CESeCore Secure Audit Log.
Status Repository Log
Provides a log entry for every update. For more information, see Deploy-time Configuration.