syslog "logging device-id" in FTD 6.2.3

NeerajS · ‎11-25-2018

Hello, We have an ASA running FTD 6.2.3 managed via FDM web UI. Upon configuing syslogging in FDM, we noticed that syslog messages in our syslog server do not have the hostname of the ASA in them. So the Syslog server either shows hostname as "ip-address of interface" or the Month from the timestamp of the messages.

I remember in old ASA we had an option of "logging device-id". How do i enable "logging device-id" either via firepower cli or FDM ? Currently there is no such option in FDM web UI.

Thanks

Neeraj

Marvin Rhoads · ‎11-26-2018

You can try adding it via FlexConfig. I don't have my lab handy right now but it's not a blacklisted command. So it's worth a try to add:

logging device-id hostname

https://www.cisco.com/c/en/us/td/docs/security/firepower/623/fdm/fptd-fdm-config-guide-623/fptd-fdm-advanced.html

NeerajS · ‎11-26-2018

Hi Marvin, Thanks as always. Unfortunately "logging" is in that list of black listed commands. Let me check with cisco TAC on this.

Abheesh Kumar · ‎11-26-2018

Hi Neeraj,
Did you get any solution from TAC.

NeerajS · ‎11-26-2018

Not yet, i will keep you posted.

NeerajS · ‎11-27-2018

As per cisco TAC, this is not supported via FDM. However, FMC has that option available in the GUI itself.

Abheesh Kumar · ‎11-27-2018

In platform policy option is there to send syslog device id.

HTH

Abheesh