Configuring Audit Log Options in the Evaluated Configuration
The following section describes how to configure audit log options in the evaluated configuration.
Configuring Audit Log Options for SRX300, SRX320, SRX340, SRX345 and SRX550M Devices
To configure audit log options for SRX300, SRX320, SRX340, SRX345 and SRX550M devices:
- Specify the number of files to be archived in the system
logging facility.[edit system syslog]root@host#set archive files 2
- Specify the file in which to log data.[edit system syslog]root@host#set file syslog any any
- Specify the size of files to be archived.[edit system syslog]root@host#set file syslog archive size 10000000
- Specify the priority and facility in messages for the
system logging facility.[edit system syslog]root@host#set file syslog explicit-priority
- Log system messages in a structured format.[edit system syslog]root@host#set file syslog structured-data
- Configure security log events in the audit log buffer.[edit]root@host#set security log cache
Configuring Audit Log Options for SRX1500, SRX4100, SRX4200, SRX5400, SRX5600 and SRX5800 Devices
To configure audit log options for SRX1500, SRX4100, SRX4200, SRX5400, SRX5600 and SRX5800 devices:
- Specify the number of files to be archived in the system
logging facility.[edit system syslog]root@host#set archive files 2
- Specify the file in which to log data.[edit system syslog]root@host#set file syslog any any
- Specify the size of files to be archived.[edit system syslog]root@host#set file syslog archive size 10000000
- Specify the priority and facility in messages for the
system logging facility.[edit system syslog]root@host#set file syslog explicit-priority
- Log system messages in a structured format.[edit system syslog]root@host#set file syslog structured-data
- Specify how security logs need to be processed and exported.[edit]root@host#set security log mode event