Configure Decryption Logging (Strata Cloud Manager)

Table of Contents

Configure Decryption Logging (Strata Cloud Manager)

The Log Viewer enables you to view and interact with decryption logs and other log types for NGFW and Prisma Access deployments managed by Strata Cloud Manager.

Logs are forwarded to the Strata Logging Service only with a valid license; otherwise, logs are saved locally.

Log in to Strata Cloud Manager.
Create or modify a decryption policy rule to specify which traffic to log.
Configure Log Settings in the decryption policy rule.
1. For Logging, select Log Successful TLS handshakes.
  
  By default, Strata Cloud Manager logs unsuccessful handshakes.
  
  Log successful handshakes as well as unsuccessful handshakes to gain visibility into as much decrypted traffic as your device’s available resources permit (don’t decrypt private or sensitive traffic; follow decryption best practices and decrypt as much traffic as you can).
2. (Optional) Forward decryption logs to Dedicated Log Collectors, other storage devices, or specific administrators.
  If you forward decryption logs, be sure that the logs are stored securely as they contain sensitive information.
  
  Create a Log Forwarding profile to specify the decryption Log Type and the method of forwarding the logs.
  For External Log Forwarding, select the profile you created.
Save your rule.
Commit your changes.

Select Push ConfigPush.

Network Security Docs

Configure Decryption Logging (Strata Cloud Manager)

Network Security Docs

Configure Decryption Logging (Strata Cloud Manager)

Activation & Onboarding

Next-Generation Firewalls

SASE

Cloud-Delivered Security Services

Network Security

Visibility & Monitoring

Best Practices

Experts Corner