This procedure describes the steps to enable the system logs (syslogs) to capture the SEG logs on the UAG platform.

Starting with UAG version 3.7, by default, the SEG is configured to follow the syslog configurations done as part of the UAG system settings. To enable the syslog for UAG, see the Configure Unified Access Gateway System Settings topic in the Deploying and Configuring VMware Unified Access Gateway guide.

When SEG is deployed on UAG version 3.6, enable the syslog on SEG in addition to the UAG system settings. For more information about enabling syslog for SEG on UAG version 3.6 see the following steps.


  1. Open your SSH client and initiate an SSH connection.
  2. Edit the SEG java arguments for SEG using the vi /opt/vmware/docker/seg/container/config/seg-jvm-args.conf command.
  3. Search for the syslog properties, update the values as shown in the example and save the file.
    -Dsyslog.enabled=true,, -Dsyslog.port=514, and -Dsyslog.facility=USER.
  4. Save the SEG edge service on the UAG admin UI to apply the changes.
  5. Enable the syslog for UAG under the System Settings.
    Note: To configure SEG on UAG to log individually any remote syslog server over UDP, update the following properties listed in the seg-jvm-args.conf file:
    • Update the value to the remote syslog server host.
    • Update the -Dsyslog.port value to the syslog server listener port.
    • Save the SEG edge service on the UAG Admin UI to apply the changes.
    Note: For SEG version 2.17.0 or later, with the Workspace ONE UEM console version 20.10 and later, perform the SEG configuration using the custom gateway settings. To understand the SEG custom gateway settings, see the SEG Custom Gateway Settings topic.

    For SEG version before 2.17.0, SEG continues to use the default configuration (pre-defined configuration). If the custom settings feature is not available, manually update the respective files at the individual node and modify the SEG configuration.