#$ActionFileDefaultTemplate RSYSLOG_TraditionalFileFormat
To
$ActionFileDefaultTemplate RSYSLOG_TraditionalFileFormat

1. Launch an SSH client, such as PuTTY.
2. Login to the primary Authentication Manager server as rsaadmin and enter the operating system password.

   Note that during Quick Setup another username may have been selected. Use that username to login.

3. Changes the privileges of rsaadmin with the command

sudo su – root

4. Enter the operating system password when prompted.
5. Go to /etc and make a copy of the rsyslog.conf file.
6. Edit the rsyslog.conf configuration file using an editor such as vi.
7. Uncomment the line $ActionFileDefaultTemplate RSYSLOG_TraditionalFileFormat and save.

# Use rsyslog native, rfc5424 conform log format as default
# ($ActionFileDefaultTemplate RSYSLOG_FileFormat).
#
# To change a single file to use obsolete BSD syslog format
# (rfc 3164, no high-precision timestamps), set the variable
# bellow or append ";RSYSLOG_FileFormat" to the filename.
# See
#   http://www.rsyslog.com/doc/rsyslog_conf_templates.html
# for more information.
#
$ActionFileDefaultTemplate RSYSLOG_TraditionalFileFormat
$PreserveFQDN on

7. Restart the syslog daemon and verify the status with the commands.

bharath:/etc # rcsyslog restart
redirecting to systemctl restart syslog.service
bharath:/etc # rcsyslog status
Usage: /sbin/rcsyslog {start|stop|status|try-restart|restart|force-reload|reload}
● rsyslog.service - System Logging Service
   Loaded: loaded (/usr/lib/systemd/system/rsyslog.service; enabled; vendor preset: disabled)
   Active: active (running) since Wed 2020-11-11 15:05:22 UTC; 41s ago
     Docs: man:rsyslogd(8)
           http://www.rsyslog.com/doc/
  Process: 10537 ExecReload=/bin/kill -HUP $MAINPID (code=exited, status=0/SUCCESS)
  Process: 1713 ExecStartPre=/usr/sbin/rsyslog-service-prepare (code=exited, status=0/SUCCESS)
 Main PID: 1719 (rsyslogd)
    Tasks: 6 (limit: 16384)
   CGroup: /system.slice/rsyslog.service
           └─1719 /usr/sbin/rsyslogd -n
bharath:/etc #