Is there a way to generate a test message within the ise platform to see if my syslog is setup correctly to my external device. I created a remote logging target pointing to the IP address of my SEIM device where I want specific syslogs sent to: basically have every logging category targeted. Everything is still in testing mode with not much implemented: 5 different switch models all linked together with only one IP phone and camera attached. I don't know if generates a log if for say I try logging in with the wrong password or if a device is plugged into the network and not recognized etc.
Solved! Go to Solution.
Yes that is what I did, I don't think I missed anything. Logging>Remote Logging Targets:
IP address to host is correct, status enabled, using port 6514, facility code local 6, default self signed server cert (Does this need applied anywhere else? I checked off Ignore Server Certificate Validation for testing).
Logging Categories> Enabled my Target for each category.
ISE Version: 2.4.0.357
Max length was at 1024 and I just changed it to 8192
Attached is cert I am using.
Also, I wasn't sure if it has anything to do with the product not fully licensed yet and in a test environment until purchasing or if that would not even matter.
Yes one of my other team members is looking at this as well and is going to take a pcap.
A TCP Dump was preformed and the specific IP assigned for the syslog server I setup was not anywhere listed.