Stop and Remove Syslog Forwarding and Certificate
Question
There is a syslog forwarding configured Azure Stack Hub integrated system.Your manager has assigned you a task to stop and remove the Syslog forwarding as well as the associated certificate.
For this purpose, you have connected to the privileged Endpoint (PEP) and run Set-SyslogServer -Remove cmdlet.
Which of the following is the right step to perform next?
Answers
Explanations
Click on the arrows to vote for the correct answer
A. B. C. D. E.Correct Answer: C
The three steps that should be performed for the said purpose are: Connect to the privileged Endpoint (PEP)
Run Set-SyslogServer -Remove cmdlet.
Run Set-SyslogClient -RemoveCertificate.
Here, Set-SyslogServer -Remove will remove the syslog server configuration from the client and Set-SyslogClient -RemoveCertificate will remove the client certificate from the client.
Option A is incorrect.
Exporting the client certificate is not a step to be performed to stop and remove the Syslog forwarding as well as the associated certificate.
Option B is incorrect.
Running Set-SysLogClientCertificate-Remove is not the right command.
Option C is correct.
The next step needed to perform is Running Set-SyslogClient -RemoveCertificate.
Option D is incorrect.
Connect to the user portal is not a step to be performed to stop and remove the Syslog forwarding as well as the associated certificate.
Option E is incorrect.
The next step needed to perform is Running Set-SyslogClient -RemoveCertificate.
To know more about Syslog forwarding, please visit the below-given link:
The task assigned to you is to stop and remove the Syslog forwarding as well as the associated certificate from an Azure Stack Hub integrated system. You have connected to the privileged Endpoint (PEP) and run the Set-SyslogServer -Remove cmdlet to remove the Syslog forwarding.
Now, you need to remove the associated certificate. The certificate that needs to be removed is the client certificate used for authentication with the Syslog server. The removal of this certificate ensures that the client cannot communicate with the Syslog server anymore.
The correct step to perform next is to run the Set-SysLogClientCertificate-Remove cmdlet. This cmdlet removes the client certificate used for authentication with the Syslog server. The certificate needs to be removed to ensure that no client can communicate with the Syslog server using the certificate after the Syslog forwarding has been stopped.
Option A, i.e., Exporting the client certificate, is not the correct step as you need to remove the certificate and not export it. Option B, i.e., Running Set-SysLogClientCertificate-Remove, is the correct step as it removes the client certificate used for authentication with the Syslog server. Option C, i.e., Running Set-SyslogClient -RemoveCertificate, is not the correct step as this cmdlet is used to remove the Syslog client configuration and not the certificate. Option D, i.e., Connect to the user portal, is not required to remove the Syslog forwarding and associated certificate.
Therefore, the correct answer is B, i.e., Running Set-SysLogClientCertificate-Remove.
