Cisco ESA Collector Plugin - 5thColumn/Revolver-wiki-archive GitHub Wiki

Description

This plugin will gather log messages from your Cisco ESA appliance(s) every 5 minutes and deliver them to BOSS.

Configuration Instructions

  1. Log in to the web management interface of your Cisco ESA appliance(s).
  2. Hover over the Network dropdown, and select IP Interfaces.
  3. Select Management.
  4. In the Services section, check the FTP option then submit and commit the change.
  5. Log in to your Revolver instance and navigate to the Manage Plugins page.
  6. Select the arrow next to Cisco ESA Collector to expand the section and see the fields required to complete the configuration process.
  7. Enter the ESA Appliance Management Address, the ESA Appliance Username, the ESA Appliance Password, and the Syslog port and select Configure.
    • For the ESA Appliance Management Address, enter the IP or hostname of the management interface of your ESA appliance(s). If you have multiple appliances, separate each appliance using a comma.
    • For the Username and Password, enter the information associated with the account with administrative privileges on your ESA appliance.
    • For the Syslog port, enter the port that matches the port of your enabled Syslog plugin.
  8. You will receive a notification that the plugin is in the process of being configured. After a few moments, you will receive a second notification that the plugin has been configured and is ready for use.

Note: If the second notification indicates there was an error configuring the plugin, click Configure again. It should succeed this time. If the error persists, contact the support team.

Release Notes

Current Version: 1.3