I'm implementing TLS Syslog for a MobilityExpress WLC (AIR-AP1815I-E-K9/8.8.120.0).
There is amazingly few documentation on this subject.
I did setup a debian rsyslog service on Debian 10, with a self-signed PKI.
I did setup the WLC with these commands:
config logging syslog host syslog_server_ip
config logging syslog tls enable
The WLC is Indeed sending encrypted logs, over TCP 6514.
I found no additional setup on the WLC side (like TCP port, or PKI), but maybe there is a PKI support in the WLC?
By default, the Syslog server credentials are not verified by the WLC, and I found no way to enforce this scheck.
Any input/info is welcomed (like PKI settings on the WLC, or Syslog TLS options) !