In certain circumstances it may be necessary to gather diagnostic information and logs from Cryptographic Security Platform Compliance Managerthat can be sent to Entrust support for further analysis. The following procedure describes how to create a log bundle using the Cryptographic Security Platform Compliance Manager webGUI. To create the bundle with the Cryptographic Security Platform Compliance Manager System Console on the Cryptographic Security Platform Compliance Manager node, see Creating a Support Bundle for the Compliance Manager System Console.

  1. Log into the Cryptographic Security Platform Compliance Manager webGUI with with Security Admin privileges.
  2. In the top right, click the Switch to Appliance Management link.
  3. In the top menu bar, click Settings.
  4. In the Support section, click Download Logs.
  5. If a log has not yet been created for this cluster or if you want to generate a new log, click Create Bundle.

  6. In the Logs dialog box, enter the following information:

    Option

    Description

    Include Audit Log

    If Yes, Cryptographic Security Platform Compliance Manager includes the full audit log in the bundle. The default is Yes.

    Include All Cluster Logs

    If Yes, Cryptographic Security Platform Compliance Manager includes the log bundle from every Cryptographic Security Platform Compliance Manager node in the cluster. If No, Cryptographic Security Platform Compliance Manager only includes the log bundle from the current node. The default is No.

    Include Core Files

    If Yes, Cryptographic Security Platform Compliance Manager includes core files in the bundle. The default is No.

    Passphrase

    If you specify a passphrase, Cryptographic Security Platform Compliance Manager encrypts the bundle with an AES 256-bit key using the provided passphrase.

  7. When you are done, click Create. Cryptographic Security Platform Compliance Manager creates the log file and then refreshes the information about the log bundle it created.

  8. To download the bundle, click Download.

Note: If you want to decrypt the log bundle, navigate to the directory where the bundle is located and type the following command: 

gpg -d -o <output-file-name> <input-file-name>

Where <output-file-name> is the name you want to use for the decrypted log bundle and <input-file-name> is the name of the encrypted log bundle that you want to decrypt.