Set Up Secure Audit Logging - Cisco TelePresence SX10 Quick Set Administrator's Manual

Cisco TelePresence SX10 Quick Set

Introduction

Set up secure audit logging

Sign in to the web interface, navigate to
1. Open the Security category.
2. Find the Audit > Server
settings, and enter the
Address of the audit server.
If you set PortAssignment to
Manual, you must also enter
a Port number for the audit
server.
3. Set Audit > Logging > Mode
to ExternalSecure.
4. Click Save for the change to
take effect.
D15330.14 SX10 Administrator Guide CE9.7, APRIL 2019.
Configuration Configuration
Setup > Configuration.
Peripherals Maintenance
The certificate authority (CA) that verifies the certificate
of the audit server must be in the video system's list of
trusted certificate authorities. Otherwise, logs will not be
sent to the external server.
Refer to the ► Manage the list of trusted certificate
authorities (CAs) chapter how to update the list.
48
Administrator Guide
System settings
About secure audit logging
When audit logging is enabled, all sign in
activity and configuration changes on the
video system are recorded.
Use the Security > Audit > Logging >
Mode setting to enable audit logging.
Audit logging is disabled by default.
In ExternalSecure audit logging mode
the video system sends encrypted audit
logs to an external audit server (syslog
server), which identity must be verified by
a signed certificate.
The signature of the audit server is
verified using the same CA list as other
servers/clients.
If the audit server authentication fails, no
audit logs are sent to the external server.
www.cisco.com — Copyright © 2019 Cisco Systems, Inc. All rights reserved.
Appendices