Installing a certificate for a log source protocol

Some log source protocols require a certificate so that IBM Disconnected Log Collector can communicate with the target server. You install the certificate by running a script command.

About this task

The following protocols require a certificate:

  • Cisco Firepower eStreamer

Ensure that you set the getCerts parameter to no in the logsources.json file for these protocols.

Procedure

  1. Locate the CA (root) certificate that was used to sign the Cisco Firepower eStreamer.
  2. Copy the CA certificate to /etc/pki/ca-trust/source/anchors.
  3. Run the following command:
    update-ca-trust

    You do not have to restart Disconnected Log Collector after you have installed the certificate.