To decrypt an encrypted log file or de-anonymize a log file, use the
LogFileDecrypter tool that's shipped with the appliance.
Access the appliance using SSH. Root access isn't needed. You can manually create a user for these tasks as follows:
- Create a user with the following command: useradd name
- Create a password for this new user with the command: passwd name
Now, use the appropriate command:
- To decrypt a log file: /opt/mwg/bin/LogFileDecrypter --decrypt /opt/mwg/log/user-defined-logs/access.log/access1009291703.log
NOTE: The tool asks for the two passwords configured for the encryption.
- To de-anonymize a log file: /opt/mwg/bin/LogFileDecrypter --deanonymize /opt/mwg/log/user-defined-logs/access.log/access1009291703.log
After you run the appropriate command, SWG writes the content to the console. You can redirect it into a text file, if needed, with the following command:
/opt/mwg/bin/LogFileDecrypter --<decrypt or deanonymize> /opt/mwg/log/user-defined-logs/access.log/access1009291703.log > /root/access.log_content
You can find the result in
/root/access.log_content. You can now use the log file for troubleshooting.
LogFileDecrypter Use:
| Options |
Parameter |
Description |
| --decrypt |
path/to/log_file |
Decrypts the given log file |
| --deanonymize |
path/to/log_file |
De-anonymizes the given log file |
