Breadcrumbs

Syslog TLS and Server Setting in ESKM

  1. Click the Device tab and click the Log Configuration link under the Logs & Statistics section.

  2. Click the Edit button under the Syslog Settings table.

  3. Select the checkboxes under the Enable Syslog column for the logs that need to be displayed in Splunk.

  4. Enter the machine IP where Syslog and Splunk UF are installed in the Syslog Server #1 IP column, and enter port number 6514 in the Syslog Server #1 Port column.

  5. Click the Save button.

image-20251203-094838.png

Syslog Settings


  1. Click the Edit button in the Syslog TLS Settings section.

  2. Enable the Enable TLS checkbox.

  3. Select the uploaded client certificate name from the Certificate dropdown list.

  4. Select the uploaded CA from the Trusted Certificate Authority dropdown list.

  5. Click the Save button.

image-20251203-095943.png


Syslog TLS Settings

  1. Click on the Syslog Test button in the Syslog Settings section.

image-20251203-100209.png


Syslog server connection confirmation message

  1. Log out from the ESKM Web UI and log in again.

  2. Click the Device tab and click the Log Viewer link under the Logs & Statistics section.

  3. Click on the Audit link under the Log Viewer section and note down the latest logs displayed under Log File: Current.

image-20251203-112138.png


Audit log details