Currently, Veeam Data Cloud for Microsoft 365 supports Syslog over UDP and TCP only. However, many organizations enforce secure transmission of logs by requiring Syslog over TLS (RFC 5425), especially when forwarding logs to collectors across untrusted networks or public infrastructures.
Business Need / Use Case:
- Our security policy requires all log transmissions over the internet to be encrypted.
- The Syslog server we operate is exposed only through a secure TLS channel on port 5140.
- Without TLS support, we cannot integrate Veeam Data Cloud logs into our central SIEM infrastructure without either breaking our compliance requirements or deploying complex workarounds.
Adding support for Syslog over TLS would:
- Ensure confidentiality and integrity of log data in transit.
- Align with industry best practices and compliance frameworks (ISO 27001, NIST, ANSSI, etc.).
- Facilitate easier and more secure integration with enterprise SIEM and log management platforms.
Please consider adding support for Syslog over TLS (RFC 5425) in Veeam Data Cloud, ideally with configurable options such as:
- TLS version selection (e.g., TLS 1.2 / TLS 1.3)
- Certificate validation (CA trust, mutual authentication if possible)