Help us improve your experience.

Let us know what you think.

Do you have time for a two-minute survey?

Navigation
Guide That Contains This Content
[+] Expand All
[-] Collapse All

    Configuring SSH for External Audit Log Connections

    This topic describes how to set up a secure connection to a remote log server. On an external syslog server, use the ssh syslog-mon@ -s netconf command to indicate that syslog messages are encrypted.

    • Before you begin, log in with your root account to an SRX Series device running Junos OS Release 12.1X44-D15.

    Note: You can enter the configuration commands in any order and commit all the commands at once.

    To configure SSH for external audit log connections:

    1. Specify the set of permitted operations for the login class.
      [edit system login]root@host#set class monitor permissions trace
    2. Specify the username of the login class.
      [edit system login]root@host#set user syslog-mon class monitor
    3. Specify the authentication method for the login class.
      [edit system login]root@host#set user syslog-mon authentication encrypted-password audiTAdmin@jnpr
    4. Specify the file in which to log the system logs data.
      [edit system]root@host#set syslog file syslog any any
    5. Configure the device to allow NETCONF connections over SSH.
      [edit]root@host#set system services netconf ssh

    Published: 2013-12-10