Configuring Secure Remote Syslog; Enabling/Disabling Secure Remote Syslog - Siemens RUGGEDCOM ROX II User Manual

Hide thumbs Also See for RUGGEDCOM ROX II:

Table of Contents

RUGGEDCOM ROX II

CLI User Guide

Section 3.9.5

Configuring Secure Remote Syslog

Secure remote syslog encrypts all system logs sent to syslog servers using an Secure Sockets Layer (SSL)

certificate signed by a Certified Authority (CA).

The client (RUGGEDCOM ROX II) and server certificates must by signed by the same CA.

The following sections describe how to enable and configure secure remote syslog:

Section 3.9.5.1, "Enabling/Disabling Secure Remote Syslog"

Section 3.9.5.2, "Viewing a List of Permitted Peers"

Section 3.9.5.3, "Adding a Permitted Peer"

Section 3.9.5.4, "Deleting a Permitted Peer"

Section 3.9.5.1

To configure a specific source IP address for all remote syslog messages, do the following:

Make sure the CLI is in Configuration mode.

Once secure remote system logging is enabled and a remote syslog server is configured, TCP

port 6514 is automatically opened.

Enable or disable secure remote syslog by typing either:

admin logging secure-remote-syslog enable

no admin logging secure-remote-syslog enable

All certificates must meet the following requirements:

• X.509 v3 digital certificate format

• PEM format

• RSA key pair, 512 to 2048 bits in length

If secure remote syslog is enabled, specify a certificate to use for authentication with remote syslog server by

certificate certificate

• certificate is the name of the certificate

If the desired certificate is not listed, add it. For more information, refer to

Certificate".

Configuring Secure Remote Syslog

Device Management

Section 4.7.4.3, "Adding a

Rx1500 Rx1512 Rx1501 Rx1510 Rx1511