One of the requests we often get is how to securely forward logs to the USM sensor. To forward logs securely, the one component that is required is an SSL certificate. By default, USM has a self-signed certificate that will allow sending secure logs over port 6514. Some platforms, such as Palo Alto Networks, require publicly signed certificates by default. In this blog, we will walk through the process of generating a publicly signed certificate for use with USM.
Generating a certificate – step by step process
To begin, the first thing that is required is a certificate signing request (CSR). Normally, this will be generated on the machine which the certificate will be installed. In our case, we are looking to install the certificate on a USM sensor which we do not have shell access. So, from a machine with openssl, the first thing we will do is generate a…
 |
Posted by: Chris Johnson |
The post How to secure Syslog with USM Anywhere appeared first on Cybersecurity Insiders.
August 06, 2020 at 09:10PM
0 comments:
Post a Comment