Hello,
For gateway, you don't have to access root shell to view the log, on gateway menu, select,
9) Display Log Viewing menu
ie. the ssgconfig user can view the logs on gateway menu
For portal, the log file permission is,
-rw-r--r-- 1 l7portal portalusers
You can create a new user in portalusers group to read-only the portal logs
Regards,
Mark