Description

If you're using Syslog, you have the option to integrate that with ConcealBrowse. This allows metrics and data collected by Conceal to be seamlessly transferred into Syslog. This article will guide you through setting up the Syslog integration with ConcealBrowse.

Procedure

1. Navigate to the Conceal dashboard at https://dashboard.conceal.io/ and login if necessary.
2. Click on the section labeled Integrations on the left hand menu.
   
3. Select the SIEM / SOAR tab, locate the Syslog tile and click the button labeled Configure.
4. You will need to get your Syslog Server Address from your Syslog instance and enter that here. You will also need to get your Syslog Tag and enter that in the appropriate field. Syslog Connection mode is on TLS by default and is the only option, so no action is needed there. 
   
5. In your Syslog instance you will need to create a TLS Private Key. Paste that in the appropriate area in the Conceal dashboard.
   
6. In your Syslog instance you will need to create a TLS Public Certificate. Paste that in the appropriate area in the Conceal dashboard.
   
7. Check the Enabled checkbox, click Save Settings, then Close. You should now have Syslog enabled and integration with ConcealBrowse and will see traffic flowing there shortly. 
   

If you run into issues, your firewall could be blocking certain IP addresses needed to send the data. Whitelist the following IP addresses if necessary:

18.214.63.36, 44.214.127.25, 44.209.215.8, 3.233.223.50, 34.232.55.106, 52.86.27.48, 3.216.48.116

*Never hesitate to contact your Customer Success Manager for any questions or concerns. You may also open a support ticket at support.conceal.io by scrolling to the bottom and clicking Submit a request.