Setting The Syslog Server Options - Novell SENTINEL LOG MANAGER 1.0.0.5 - ADMINISTRATION GUIDE 03-31-2010 Administration Manual

Hide thumbs Also See for SENTINEL LOG MANAGER 1.0.0.5 - ADMINISTRATION GUIDE 03-31-2010:

Installation manual (38 pages)

Table Of Contents

100

101

102

103

104

105

106

107

108

109

110

111

112

113

114

115

116

117

118

119

120

121

122

123

124

125

126

127

128

129

130

131

132

133

134

135

136

137

138

139

140

141

142

143

144

145

146

147

148

149

150

151

152

153

154

155

156

157

158

159

160

161

162

163

164

165

166

167

168

page of 168

/ 168
Contents
Table of Contents
Bookmarks

Table of Contents

The default ports for TCP, UDP, and SSL are 1468, 1514, and 1443 respectively.

5 To start or stop the data collection for each of the syslog server, select the on or off options next

to them.

6 To change the port values, specify a valid port value. The following table shows the description

of the status messages you get after entering the valid or non-valid port values.

Status Icon

Green Check Mark Icon

Red Cross Icon

7 Set the appropriate client authentication and server key pairs settings for the SSL Syslog server.

For more information on setting the client authentication, see

Authentication for the SSL Syslog Server" on page

8 Click Reset to change the specified settings to previous settings before saving it

9 Click Save to save the new settings.

The Save button is disabled until a valid port is specified for all the servers.

4.1.2 Setting the Syslog Server Options

This section describes how to configure the type of client and sever authentication for syslog servers

that uses SSL.

"Configuring Client Authentication for the SSL Syslog Server" on page 50

"Listening on Ports Below 1024" on page 52

Configuring Client Authentication for the SSL Syslog Server

The client authentication settings determine how strictly the SSL syslog server verifies the identity

of syslog event sources attempting to send their data. Use a strict client authentication policy that is

applicable in your environment to prevent rogue syslog event sources from sending undesired data

into the Sentinel Log Manager.

Open: No authentication is required. Sentinel Log Manager does not request, require, or validate a

certificate from the event source.

Loose: A valid X.509 certificate is required from the event source, but the certificate is not

validated. It does not need to be signed by a certificate authority.

Strict: A valid X.509 certificate is required from the event source, and it must be signed by a trusted

certificate authority. If the event source does not present a valid certificate, Sentinel Log Manager

does not accept its event data.

"Creating a Truststore" on page 51

Sentinel Log Manager 1.0.0.4 Administration Guide

Message

If the specified port is valid and is not in use, a

and open

message is displayed.

If the specified port is not valid (non-numeric or not between 1 to

65535), a

port is not valid

If the specified port is valid but it is already in use, or if the syslog

server does not have permission to use it, a

message is displayed.

not open

50.

port is valid

message is displayed.

port is valid but

"Configuring Client

Table of Contents

This manual is also suitable for:

Sentinel log manager 1.0.0.5

Setting The Syslog Server Options - Novell SENTINEL LOG MANAGER 1.0.0.5 - ADMINISTRATION GUIDE 03-31-2010 Administration Manual

4.1.2 Setting the Syslog Server Options

Related Manuals for Novell SENTINEL LOG MANAGER 1.0.0.5 - ADMINISTRATION GUIDE 03-31-2010

Related Content for Novell SENTINEL LOG MANAGER 1.0.0.5 - ADMINISTRATION GUIDE 03-31-2010

This manual is also suitable for:

Table of Contents