The Secure Syslog feature enables you to select between a secure and non-secure modes for syslog messages transportation. When you select the secure syslog mode, the phone carries out all syslog events reporting over a secure TLS channel. When you select the non-secure mode, the phone uses a UDP channel.
When in the secure syslog mode, the phone maintains the connection to the TLS server indefinitely. If the connection is lost, it begins to reconnect immediately until the connection is established.
If the phone receives a log message during a connection timeout, it discards the messages. The number of log messages lost due to the absence of connection is recorded in a separate local log entry.
You need to configure the following settings for the secure syslog TLS connection:
-
ENABLE_PUBLIC_CA_CERTS: specifies whether embedded certificated are trusted or verified against the list defined by TRUSTCERTS.
-
TRUSTCERTS: specifies a list of well-known public certificates.
-
TLSSRVRID: specifies if the phone performs identity matching for trusted certificates.
-
TLS_VERSION: specifies the version of the TLS protocol the phone uses.
-
KEYUSAGE_REQUIRED: specifies if key usage extension is checked for.
-
LOGSRVR: the value for this parameter must be an FQDN address when you select the secure syslog mode.
You can configure this feature using the 46xxsettings.txt file, the web user interface and the phone Administrator menu.
