Management Services Security - Send Syslog messages to more than one trusted server with enhanced timestamps

Information

Logging is critical to device security because it creates an audit trail of system activity that can assist you in identifying configuration errors, investigating intrusions, troubleshooting service disruptions, and reacting to probes and scans.

Solution

Configure syslog to send messages to more than one trusted host.

user@host# edit system syslog
user@host# set host <IP_ADDRESS> any any

See Also

http://www.juniper.net/us/en/training/jnbooks/day-one/fundamentals-series/hardening-junos-devices-checklist/

Item Details

Category: AUDIT AND ACCOUNTABILITY

References: 800-53|AU-9(2)

Plugin: Juniper

Control ID: 7c02fac0fb3d2a5d6ca06b952e7f3554dad27c4c76d35af6faac10ef92b1d67b