Generating a new trust store for SSMC remote Syslog appender

Procedure
  1. Generate a new trust store for your SSMC remote Syslog appender using one of the following Java keytool commands from the ssmcbase/resources directory of the SSMC host system.

    Non-FIPS mode

    keytool -import -trustcacerts -file ca-cert.pem -alias syslog-CA -keystore syslog-truststore

    FIPS mode

    keytool -import -trustcacerts -file ca-cert.pem -alias syslog-CA -keystore syslog-truststore -deststoretype BCFKS -providerpath ../bcFipsJars/bc-fips-1.0.0.jar -provider org.bouncycastle.jcajce.provider.BouncyCastleFipsProvider
  2. Leave the resulting trust store file in the ssmcbase/resources directory.
  3. Use the password you chose for this trust store as the password value for SSL in the Syslog appender entry (see, Configuring remote syslog auditing in SSMC).