1
response

Authenticate macOS senders over TLS with certificates in System Keychain?

Hello,

We are deploying NXLog Enterprise on a fleet of macOS devices with the goals to collect endpoint events even remotely. Which mean Graylog GELF exposed over Internet, with TLS encryption and certificate authentication requirements.

I see that om_ssl can do the job of TLS communication and even client authentication, but the settings I see are using file path for the Private Key.

AskedAugust 5, 2022 - 11:43am
2
responses

How to figure out what event types to filter in im_maculs

I've been tasked to roll out nxlog on all of our Macs. I have it working in the sense that logs are being uploaded to our syslog server.

However I've been given a list from https://www.iansresearch.com/resources/all-blogs/post/security-blog/2021/04/29/best-practices-for-macos-logging-monitoring and told to implement it.

AskedNovember 18, 2021 - 6:21pm