Thycotic – Secure Syslog/CEF Logging in Secret Server

Welcome Forums Integrations Thycotic – Secure Syslog/CEF Logging in Secret Server

Viewing 1 post (of 1 total)
  • Author
  • #2126
    Mike RiforgiateMike Riforgiate

    Thycotic Console

    1. Navigate to Admin > Configuration.
    2. Click the General tab.
    3. Click the Edit button at the bottom of the page.
    4. Go to the Application Settings section.
    5. Click to select the Enable Syslog/CEF Logging check box. A syslog/CEF section appears:image-20200602120849610

      Note: syslog/CEF may require an additional license key. To install licenses, navigate to Admin > Licenses > Install New License. Once installed, the license requires activation. Contact your Thycotic Sales Representative with any questions.

    6. Type IP address or name of the Precinct Streamer or All-In-One applinace in the Syslog/CEF Server text box.
    7. Type the port number where the logging information will be passed (6514 is the default port for secure TCP syslog) in the Syslog/CEF Port text box.

      Note: SS requires outbound access to this server and port so communication can pass freely.

    8. Click the Syslog/CEF Protocol dropdown list and select Secure TCP. Secure TCP means either TLS v1.2 or v1.1 because other versions of SSL, such as SSL v3 and TLS v1.0, have known weaknesses.
    9. Click to select Syslog/CEF Time Zone list box to UTC Time or Server Time, depending on your preference.
    10. Click the Save button.



Viewing 1 post (of 1 total)
  • You must be logged in to reply to this topic.