Help us improve your experience.

Let us know what you think.

Do you have time for a two-minute survey?

Navigation
Guide That Contains This Content
[+] Expand All
[-] Collapse All

    Adding Logging Nodes

    Use this page to configure logging nodes. You must deploy either Security Director Log Collector or Juniper Secure Analytics (JSA) as a log collector and then add it to Security Director to view the log data in the Dashboard, Events and Logs, Reports, and Alerts pages.

    Before You Begin

    Adding Logging Nodes

    To add Log Collector to Security Director:

    1. Select Administration > Logging Management > Logging Nodes.
    2. Click the + icon to add logging nodes. The Add Logging Node page appears.
    3. Choose the Log Collector type as Security Director Log Collector or Juniper Secure Analytics.

      If you select the Log Collector type as Security Director Log Collector, then select the deployment.

    4. Click Next.
    5. Complete the configuration for Add Collector/JSA Node according to the guidelines provided in Table 1.

      If the Log Collector type is Security Director Log Collector, then Add Another Node is displayed to add multiple nodes as needed.

    6. Click Next.

      The certificate details are displayed.

    7. Click Finish.
    8. Review the summary of configuration changes from the summary page and click Edit to modify the details, if required.
    9. Click OK to add the node.

    A new logging node with your configurations is added. To verify if the node is configured correctly, click Logging Management to check the status of the node.

    Note: The JSA node is added only via Security Director, so the JSA node is not displayed in Space > Administration > Fabric.

    Table 1: Logging Node Settings

    Settings

    Guidelines

    Node Name

    Enter a unique name for the node that is a string of alphanumeric characters, colons, periods, dashes, and underscores. No spaces are allowed and the maximum length is 29 characters.

    IP Address

    Enter an IPv4 or IPv6 address for the node.

    User Name

    Enter a username. Spaces are allowed and maximum length is 29 characters.

    Provide the root credentials for the Security Director Log Collector node. For JSA, provide the admin credentials that is used to login to the JSA console.

    Password

    Enter the password of the logging node.

    Note: JSA node sends many maintenance logs from its own IP to localhost (127.0.0.1). These system logs are displayed in the Event Viewer. You can disable these maintenance logs.

    To disable the maintenance logs:

    1. Log in to the JSA console.
    2. Select Admin > Routing Rules.
    3. Add a rule: Destination IP - Equals - 127.0.0.1
    4. Select the Drop routing option.
    5. Uncheck the Forward routing option.
    6. Click Save.

    Modified: 2017-04-17