Use https://seceonhelp.freshdesk.com/support/login to access updated Knowledge Base Articles, Submit Technical Support Tickets and Review Status of submitted support tickets.

Configuring LDAP directory logs to CCE

In order to configure LDAP directory logs, one needs to:

  • Configure syslog onremote server (LDAP)
  • Configure syslog on the CCE host

The steps to do the things listed above has been explained in the table below:

StepsProcedure

Steps to configure syslog on remote server (LDAP)

  • Login at remote server
  • Add rule in /etc/rsyslog.conf file to send log on host machine.
    • Open /etc/rsyslog.conf file
    • Go to

          # ### begin forwarding rule ### and add

          *. * @IP-Address:514

          # ### end of the forwarding rule ###

Example: - *. * @192.168.19.48:514 to send log by UDP

  • Restart rsyslog daemon using command “service rsyslog restart”

Steps to configure syslog on the CCE host

  • Open /etc/rsyslog.conf file on host machine(the machine on which the CCE is installed)

  • Add rule to receive syslog from remote server as:

      Go to line at # Provides UDP syslog reception and uncomment these two line as

      $ModLoad imudp

      $UDPServerRun 514

  • Restart rsyslog daemon using command “service rsyslog restart”.

To verify that the CCE is getting logs,Run the following command on the CCE host:

“tail -f /var/log/messages”

The output of this command should show the IP of the LDAP server.

Seceon Inc. All rights reserved. https://www.seceon.com