Configuring Syslog Server Settings

  1. Log into the KeyControl Compliance Manager webGUI with your standard account credentials.
  2. In the top right, click the Switch to Appliance Management link.
  3. In the top menu bar, click Settings.
  4. In the General Settings section, click Syslog Server and specify the options you want to use:

  5. Option

    Description

    State

    		 Select ENABLED to use a syslog server.

    Protocol

    		 Select the protocol that you want to use. You can use TCP or UDP for syslog.

    TLS Authentication List

    Select one of the following: 

    • No validation
    • x509/certvalid—Requires server certificate validation.
    • x509/name—Requires server certificate validation and hostname validation.
    • x509/fingerprint—Requires server certificate fingerprint. The fingerprint is a SHA1 hash of the server certificate, for example:  "SHA1:00:11:22:33:44:55:66:77:88:99:00:11:22:33:44:55:66:77:88:99".

    Server List

    		 Enter the list of syslog servers and their corresponding ports. For the port, enter an outbound port between 25 and 65535.

    CA Certificate

    		 Upload a CA certificate if you are using x509/certvalid or x509/name.

    Client Certificate

    		 Upload a client certificate if you are using x509/certvalid, x509/name, or x509/fingerprint.

    Log Format

    Select one of the following:

    • RFC

    • CEF
  6. Click Apply.