Configure High Availability for Security Director Insights as Log Collector

1. Enable the log collector function in two nodes of Security Director Insights through Security Director Insights CLI terminal.

   1. Go to Security Director Insights CLI.

      # ssh admin@${security-director-insights_ip}

   2. Enter the application CLI menu.

      # applications

   3. Enable the log collector.

      # set log-collector enable on

   4. Set the log collector password.

      # set log-collector password

   5. Retype the new password.

      You will receive the password change success message as shown in Figure 1.

      Figure 1: Enable Log Collector

      

2. Enable the Security Director Insights HA through Security Director Insights CLI terminal.

   1. Go to Security Director Insights CLI.

      # ssh admin@${security-director-insights_ip}

   2. Enable HA.

      ha enable ${VIP_data_interface}/${VIP_data_subnet} ${VIP_monitoring_interface}/{VIP_monitoring_subet} ${secondary_node_data_interface_ip} ${secondary_node_admin_password}

   3. Provide the Security Director IP address.

      HA is enabled and a confirmation message is shown, as shown in Figure 2.

      Figure 2: Enable HA

      

3. Add the HA virtual IP address as a log collector in Security Director UI.

   1. Select Security Director > Administration > Logging Management > Logging Node.

   2. Click the + icon to add logging nodes.

      The Add Logging Node page appears.

   3. Choose the Log Collector type as Security Director Log Collector, and click Next.

   4. In the IP Address field, enter the HA virtual IP address.

   5. In the Username field, enter ’admin’.

   6. In the Password field, enter the log collector password that you have configured in Step 1d.

   7. Click Next.

      The certificate details are displayed.

   8. Click Finish.

   9. Review the summary of configuration changes from the summary page.

   10. Click OK to add the node.