記錄收集器 FTP 設定Log collector FTP configuration

適用於:Microsoft Cloud App SecurityApplies to: Microsoft Cloud App Security

本文說明如何修改 Cloud App Security Cloud Discovery Docker 設定。This article describes how to modify the configuration for the Cloud App Security Cloud Discovery docker.

Docker 部署Docker deployment

您可能需要修改 Cloud App Security Cloud Discovery Docker 設定。You might need to modify the configuration for the Cloud App Security Cloud Discovery docker.

變更 FTP 密碼Changing the FTP password

  1. 連線至記錄收集器主機。Connect to the log collector host.

  2. docker exec -it <collector name> pure-pw passwd <ftp user>執行Run docker exec -it <collector name> pure-pw passwd <ftp user>

    1. 輸入新密碼。Enter the new password.
    2. 再次輸入新密碼以便確認。Enter the new password again for confirmation.
  3. 執行 docker exec -it <collector name> pure-pw mkdb 以套用變更。Run docker exec -it <collector name> pure-pw mkdb to apply the change.

    變更 ftp 密碼

自訂憑證檔Customize certificate files

針對 Cloud Discovery Docker 的安全連線,請遵循此程序來自訂用於安全連線的憑證檔。Follow this procedure to customize the certificate files you use for secure connections to the Cloud Discovery docker.

  1. 開啟 FTP 用戶端,並連線到記錄收集器。Open an FTP client and connect to the log collector.

    連線到 ftp 用戶端

  2. 瀏覽至 ssl_update 目錄。Navigate to the ssl_update directory.

  3. 將新的憑證檔上傳至 ssl_update 目錄 (為強制名稱)。Upload new certificate files to the ssl_update directory (the names are mandatory).

    上傳憑證檔案

    • 對於 FTP: 只需要一個檔案。For FTP: Only one file is required. 該檔案依序包含金鑰與憑證資料,並命名為 pure-ftpd.pemThe file has the key and certificate data, in that order, and is named pure-ftpd.pem.
    • 對於 Syslog: 需要三個檔案:ca.pem、**server-key.pem 與 server-cert.pemFor Syslog: Three files are required: ca.pem, **server-key.pem, and server-cert.pem. 若遺漏其中任何一個檔案,就不會進行更新。If any of the files are missing, the update won't take place.
  4. 在終端機中執行:docker exec -t <collector name> update_certsIn a terminal run: docker exec -t <collector name> update_certs. 此命令應產生如下列螢幕擷取畫面所示的類似輸出。The command should produce a similar output to what's seen in the following screenshot.

    更新憑證檔案

後續步驟Next steps

若您遇到任何問題,我們隨時提供協助。If you run into any problems, we're here to help. 若要取得產品問題的協助或支援,請建立支援票證To get assistance or support for your product issue, please open a support ticket.