Secure audit server communication with IPsec

Use case

I want to achieve that messages to and from the external audit server are secured with IPsec. Take this situation:

• Auditing messages must be protected with IPsec.

• The external audit server uses IPsec and is configured with a pre-shared key.

• IPsec is not needed to protect print jobs or to secure administration tasks.

By default, all endpoints bypass IPsec. So, there is one rule needed to secure the audit server communication.

IPsec rules

Configure IPsec

Configure IPsec.

Configure the external audit server in the Settings Editor

1. Go to: [Configuration]  → [Security] .

   [Security] tab

2. Go to the [Audit logging] options.

   [Audit logging] options

3. Configure the external audit server.

Create a rule to secure the connection to the external audit server with IPsec

Add IPsec rule

1. Click [Configuration]  → [IPsec communication]  → [Add] .

2. Enter a name in the [Name of rule] field.

3. Select [Rule applies to specified IP addresses] to create a rule for which you specify the endpoints.

4. Enter name or address of the audit server in the [Endpoint IP address] text field.

5. Select [Require IPsec].

6. Use the [Authentication method] option to select [Pre-shared key].

7. Enter the pre-shared key in the [Pre-shared key] text field.

8. Click [OK].

More information

• Learn about IPsec

• Configure IPsec

• Create an IPsec rule

• Learn about Identity certificates