asc log

Use this command to manage system logging.

Syntax

asc log [options]

Option

Description

-a, --accept

A required argument for --troubleshoot to acknowledge data sensitivity concerns.

-f, --full

An optional argument to include all log data, not just recent log data.

Only works with --troubleshoot.

-h, --help

Display usage text.

-l, --level <level>

Specifies which messages to export to the remote logging servers. Valid values are:

  • 0 or emerg

  • 1 or alert

  • 2 or crit

  • 3 or err

  • 4 or warning

  • 5 or notice

  • 6 or info

  • 7 or debug

Either the number or the text can be used.

-m, --message <message>

Specify the message to use in log files and configuration file change journals for logging related activities.

-p, --purge

Delete all system and audit logs.

This action cannot be undone.

-r, --reset

Stop remote logging and return to local logging.

-s, --syslog <target>

Set the remote syslog logging server(s). Either hostname or IP address can be specified. You can configure multiple syslog servers at the same time.

--targetPort <port_number>

Specify a target port for TCP-TLS transport. By default, encrypted syslog uses port 6514.

Note: You can only specify one port number even if you set multiple encrypted syslog servers.

-t, --troubleshoot

Generates a troubleshooting archive of recent log data for diagnostic purposes.

Requires the --accept option to acknowledge data sensitivity concerns.

Include the --full option to include all log data, not just recent log data.

-x, --crypto

Use TLS encryption for outbound logging connections.

The remote syslog server(s) must support TLS.

TLS certificates for this service are managed using the htCerts.pl utility.

Examples

Permanently delete all system and audit logs:

asc log -p

Set a remote syslog server and use TLS encryption:

asc log -s logger.company.com -x

Set two remote syslog servers, the log level, and no encryption:

asc log -s log1.company.com -s log2.company.com -l warning

Stop remote logging:

asc log -r

Set the logging level to notice:

asc log -l 5

or

asc log -l notice

Create a troubleshooting file for HyTrust Support diagnostics and include all log data:

asc log -t -f --accept

Create a small troubleshooting file with recent log data only:

asc log -t --accept

Create an encrypted syslog with a specific TCP port number: 

asc log -s syslog.company.com --targetport 10514 -x

 

HyTrust CloudControl v 5.6

Copyright © 2019 HyTrust, Inc. All Rights Reserved.

Follow us: