ComplianceAsCode · ericeberry · Jan 17, 2025 · Jan 21, 2025 · Jan 22, 2025 · mpurg
@@ -2288,8 +2288,10 @@ controls:
     levels:
       - l1_server
       - l1_workstation
-    status: planned
-    notes: TODO. Rule does not seem to be implemented. Analogous to ubuntu2204/4.2.1.1.2.
+    rules:
+      - systemd_journal_upload_server_tls
+      - systemd_journal_upload_url
+    status: automated
 
   - id: 6.1.2.1.3
     title: Ensure systemd-journal-upload is enabled and active (Automated)

diff --git a/linux_os/guide/system/logging/journald/systemd_journal_upload_server_tls/bash/shared.sh b/linux_os/guide/system/logging/journald/systemd_journal_upload_server_tls/bash/shared.sh
@@ -1,10 +1,11 @@
-# platform = multi_platform_slmicro
+# platform = multi_platform_slmicro,multi_platform_ubuntu
 
+{{{ bash_instantiate_variables("var_journal_upload_conf_file") }}}
 {{{ bash_instantiate_variables("var_journal_upload_server_key_file") }}}
-{{{ bash_replace_or_append('/etc/systemd/journal-upload.conf', '^ServerKeyFile', "$var_journal_upload_server_key_file", '%s=%s') }}}
+{{{ bash_replace_or_append('$var_journal_upload_conf_file', '^ServerKeyFile', "$var_journal_upload_server_key_file", '%s=%s') }}}
 
 {{{ bash_instantiate_variables("var_journal_upload_server_certificate_file") }}}
-{{{ bash_replace_or_append('/etc/systemd/journal-upload.conf', '^ServerCertificateFile', "$var_journal_upload_server_certificate_file", '%s=%s') }}}
+{{{ bash_replace_or_append('$var_journal_upload_conf_file', '^ServerCertificateFile', "$var_journal_upload_server_certificate_file", '%s=%s') }}}
 
 {{{ bash_instantiate_variables("var_journal_upload_server_trusted_certificate_file") }}}
-{{{ bash_replace_or_append('/etc/systemd/journal-upload.conf', '^TrustedCertificateFile', "$var_journal_upload_server_trusted_certificate_file", '%s=%s') }}}
+{{{ bash_replace_or_append('$var_journal_upload_conf_file', '^TrustedCertificateFile', "$var_journal_upload_server_trusted_certificate_file", '%s=%s') }}}
diff --git a/linux_os/guide/system/logging/journald/systemd_journal_upload_server_tls/oval/shared.xml b/linux_os/guide/system/logging/journald/systemd_journal_upload_server_tls/oval/shared.xml
@@ -20,7 +20,7 @@
   </ind:textfilecontent54_test>
 
   <ind:textfilecontent54_object id="object_systemd_journal_upload_server_key_file" version="2">
-    <ind:filepath>/etc/systemd/journal-upload.conf</ind:filepath>
+    <ind:filepath operation="pattern match">^/etc/systemd/journal-upload.conf(\.d/[^/]+\.conf)?$</ind:filepath>
     <ind:pattern operation="pattern match">^\s*ServerKeyFile\s*=\s*(.*)\s*$</ind:pattern>
     <ind:instance datatype="int">1</ind:instance>
   </ind:textfilecontent54_object>
@@ -39,7 +39,7 @@
   </ind:textfilecontent54_test>
 
   <ind:textfilecontent54_object id="object_systemd_journal_upload_server_certificate_file" version="2">
-    <ind:filepath>/etc/systemd/journal-upload.conf</ind:filepath>
+    <ind:filepath operation="pattern match">^/etc/systemd/journal-upload.conf(\.d/[^/]+\.conf)?$</ind:filepath>
     <ind:pattern operation="pattern match">^\s*ServerCertificateFile\s*=\s*(.*)\s*$</ind:pattern>
     <ind:instance datatype="int">1</ind:instance>
   </ind:textfilecontent54_object>
@@ -58,7 +58,7 @@
   </ind:textfilecontent54_test>
 
   <ind:textfilecontent54_object id="object_systemd_journal_upload_server_trusted_certificate_file" version="2">
-    <ind:filepath>/etc/systemd/journal-upload.conf</ind:filepath>
+    <ind:filepath operation="pattern match">^/etc/systemd/journal-upload.conf(\.d/[^/]+\.conf)?$</ind:filepath>
     <ind:pattern operation="pattern match">^\s*TrustedCertificateFile\s*=\s*(.*)\s*$</ind:pattern>
     <ind:instance datatype="int">1</ind:instance>
   </ind:textfilecontent54_object>

diff --git a/linux_os/guide/system/logging/journald/systemd_journal_upload_server_tls/rule.yml b/linux_os/guide/system/logging/journald/systemd_journal_upload_server_tls/rule.yml
@@ -1,6 +1,6 @@
 documentation_complete: true
 
-title: 'Configure systemd-journal-upload TLS parameters: ServerKeyFile,ServerCertificateFile and TrustedCertificateFile'
+title: 'Configure systemd-journal-upload TLS parameters: ServerKeyFile, ServerCertificateFile and TrustedCertificateFile'
 
 description: |-
     {{{ full_name }}} must offload rsyslog messages for networked systems in real time and
@@ -22,7 +22,7 @@ ocil_clause: 'systemd-journal-upload TLS configuration is missing or commented i
 
 ocil: |-
     To ensure logs are sent securely to a remote host, examine the file
-    <tt>/etc/systemd/journal-upload.conf</tt>.
+    <tt>{{{ xccdf_value("var_journal_upload_conf_file") }}}</tt>.
     ServerKeyFile should be present:
     <pre>ServerKeyFile={{{ xccdf_value("var_journal_upload_server_key_file") }}}</pre>
     ServerCertificateFile should be present:
@@ -31,6 +31,7 @@ ocil: |-
     <pre>TrustedCertificateFile={{{ xccdf_value("var_journal_upload_server_trusted_certificate_file") }}}</pre>
 
 fixtext: |-
+    Configure systemd-journal-upload config file to {{{ xccdf_value("var_journal_upload_conf_file") }}}.
     Configure systemd-journal-upload ServerKeyFile to {{{ xccdf_value("var_journal_upload_server_key_file") }}}
     Configure systemd-journal-upload ServerCertificateFile to {{{ xccdf_value("var_journal_upload_server_certificate_file") }}}
     Configure systemd-journal-upload TrustedCertificateFile to {{{ xccdf_value("var_journal_upload_server_trusted_certificate_file") }}}
diff --git a/...e/system/logging/journald/systemd_journal_upload_server_tls/tests/journald-conf-d.pass.sh b/...e/system/logging/journald/systemd_journal_upload_server_tls/tests/journald-conf-d.pass.sh
@@ -0,0 +1,12 @@
+#!/bin/bash
+# packages = systemd-journal-remote
+# variables = var_journal_upload_conf_file=/etc/systemd/journal-upload.conf.d/60-journald_upload.conf,var_journal_upload_server_key_file=/etc/ssl/private/journal-upload.pem,var_journal_upload_server_certificate_file=/etc/ssl/certs/journal-upload.pem,var_journal_upload_server_trusted_certificate_file=/etc/ssl/ca/trusted.pem
+
+a_settings=("URL=192.168.50.42" "ServerKeyFile=/etc/ssl/private/journal-upload.pem" \
+    "ServerCertificateFile=/etc/ssl/certs/journal-upload.pem" "TrustedCertificateFile=/etc/ssl/ca/trusted.pem")
+[ ! -d /etc/systemd/journal-upload.conf.d/ ] && mkdir /etc/systemd/journal-upload.conf.d/
+if grep -Psq -- '^\h*\[Upload\]' /etc/systemd/journal-upload.conf.d/60-journald_upload.conf; then
+    printf '%s\n' "" "${a_settings[@]}" >> /etc/systemd/journal-upload.conf.d/60-journald_upload.conf
+else
+    printf '%s\n' "" "[Upload]" "${a_settings[@]}" >> /etc/systemd/journal-upload.conf.d/60-journald_upload.conf
+fi
diff --git a/...journald/systemd_journal_upload_server_tls/tests/journald-conf-servercert-missing.fail.sh b/...journald/systemd_journal_upload_server_tls/tests/journald-conf-servercert-missing.fail.sh
@@ -0,0 +1,12 @@
+#!/bin/bash
+# packages = systemd-journal-remote
+# variables = var_journal_upload_conf_file=/etc/systemd/journal-upload.conf.d/60-journald_upload.conf,var_journal_upload_server_key_file=/etc/ssl/private/journal-upload.pem,var_journal_upload_server_certificate_file=/etc/ssl/certs/journal-upload.pem,var_journal_upload_server_trusted_certificate_file=/etc/ssl/ca/trusted.pem
+
+a_settings=("URL=192.168.50.42" "ServerKeyFile=/etc/ssl/private/journal-upload.pem" \
+     "TrustedCertificateFile=/etc/ssl/ca/trusted.pem")
+[ ! -d /etc/systemd/journal-upload.conf.d/ ] && mkdir /etc/systemd/journal-upload.conf.d/
+if grep -Psq -- '^\h*\[Upload\]' /etc/systemd/journal-upload.conf.d/60-journald_upload.conf; then
+    printf '%s\n' "" "${a_settings[@]}" >> /etc/systemd/journal-upload.conf.d/60-journald_upload.conf
+else
+    printf '%s\n' "" "[Upload]" "${a_settings[@]}" >> /etc/systemd/journal-upload.conf.d/60-journald_upload.conf
+fi
diff --git a/...logging/journald/systemd_journal_upload_server_tls/tests/journald-conf-servercert.fail.sh b/...logging/journald/systemd_journal_upload_server_tls/tests/journald-conf-servercert.fail.sh
@@ -0,0 +1,12 @@
+#!/bin/bash
+# packages = systemd-journal-remote
+# variables = var_journal_upload_conf_file=/etc/systemd/journal-upload.conf.d/60-journald_upload.conf,var_journal_upload_server_key_file=/etc/ssl/private/journal-upload.pem,var_journal_upload_server_certificate_file=/etc/ssl/certs/journal-upload.pem,var_journal_upload_server_trusted_certificate_file=/etc/ssl/ca/trusted.pem
+
+a_settings=("URL=192.168.50.42" "ServerKeyFile=/etc/ssl/private/journal-upload.pem" \
+    "ServerCertificateFile=/etc/ssl/certs/journal-upload1.pem" "TrustedCertificateFile=/etc/ssl/ca/trusted.pem")
+[ ! -d /etc/systemd/journal-upload.conf.d/ ] && mkdir /etc/systemd/journal-upload.conf.d/
+if grep -Psq -- '^\h*\[Upload\]' /etc/systemd/journal-upload.conf.d/60-journald_upload.conf; then
+    printf '%s\n' "" "${a_settings[@]}" >> /etc/systemd/journal-upload.conf.d/60-journald_upload.conf
+else
+    printf '%s\n' "" "[Upload]" "${a_settings[@]}" >> /etc/systemd/journal-upload.conf.d/60-journald_upload.conf
+fi
diff --git a/.../journald/systemd_journal_upload_server_tls/tests/journald-conf-serverkey-missing.fail sh b/.../journald/systemd_journal_upload_server_tls/tests/journald-conf-serverkey-missing.fail sh
@@ -0,0 +1,12 @@
+#!/bin/bash
+# packages = systemd-journal-remote
+# variables = var_journal_upload_conf_file=/etc/systemd/journal-upload.conf.d/60-journald_upload.conf,var_journal_upload_server_key_file=/etc/ssl/private/journal-upload.pem,var_journal_upload_server_certificate_file=/etc/ssl/certs/journal-upload.pem,var_journal_upload_server_trusted_certificate_file=/etc/ssl/ca/trusted.pem
+
+a_settings=("URL=192.168.50.42"  \
+    "ServerCertificateFile=/etc/ssl/certs/journal-upload.pem" "TrustedCertificateFile=/etc/ssl/ca/trusted.pem")
+[ ! -d /etc/systemd/journal-upload.conf.d/ ] && mkdir /etc/systemd/journal-upload.conf.d/
+if grep -Psq -- '^\h*\[Upload\]' /etc/systemd/journal-upload.conf.d/60-journald_upload.conf; then
+    printf '%s\n' "" "${a_settings[@]}" >> /etc/systemd/journal-upload.conf.d/60-journald_upload.conf
+else
+    printf '%s\n' "" "[Upload]" "${a_settings[@]}" >> /etc/systemd/journal-upload.conf.d/60-journald_upload.conf
+fi
diff --git a/.../logging/journald/systemd_journal_upload_server_tls/tests/journald-conf-serverkey.fail sh b/.../logging/journald/systemd_journal_upload_server_tls/tests/journald-conf-serverkey.fail sh
@@ -0,0 +1,12 @@
+#!/bin/bash
+# packages = systemd-journal-remote
+# variables = var_journal_upload_conf_file=/etc/systemd/journal-upload.conf.d/60-journald_upload.conf,var_journal_upload_server_key_file=/etc/ssl/private/journal-upload.pem,var_journal_upload_server_certificate_file=/etc/ssl/certs/journal-upload.pem,var_journal_upload_server_trusted_certificate_file=/etc/ssl/ca/trusted.pem
+
+a_settings=("URL=192.168.50.42" "ServerKeyFile=/etc/ssl/private/journal-upload1.pem" \
+    "ServerCertificateFile=/etc/ssl/certs/journal-upload.pem" "TrustedCertificateFile=/etc/ssl/ca/trusted.pem")
+[ ! -d /etc/systemd/journal-upload.conf.d/ ] && mkdir /etc/systemd/journal-upload.conf.d/
+if grep -Psq -- '^\h*\[Upload\]' /etc/systemd/journal-upload.conf.d/60-journald_upload.conf; then
+    printf '%s\n' "" "${a_settings[@]}" >> /etc/systemd/journal-upload.conf.d/60-journald_upload.conf
+else
+    printf '%s\n' "" "[Upload]" "${a_settings[@]}" >> /etc/systemd/journal-upload.conf.d/60-journald_upload.conf
+fi
diff --git a/...ournald/systemd_journal_upload_server_tls/tests/journald-conf-trustedcert-missing.fail.sh b/...ournald/systemd_journal_upload_server_tls/tests/journald-conf-trustedcert-missing.fail.sh
@@ -0,0 +1,12 @@
+#!/bin/bash
+# packages = systemd-journal-remote
+# variables = var_journal_upload_conf_file=/etc/systemd/journal-upload.conf.d/60-journald_upload.conf,var_journal_upload_server_key_file=/etc/ssl/private/journal-upload.pem,var_journal_upload_server_certificate_file=/etc/ssl/certs/journal-upload.pem,var_journal_upload_server_trusted_certificate_file=/etc/ssl/ca/trusted.pem
+
+a_settings=("URL=192.168.50.42" "ServerKeyFile=/etc/ssl/private/journal-upload.pem" \
+    "ServerCertificateFile=/etc/ssl/certs/journal-upload.pem")
+[ ! -d /etc/systemd/journal-upload.conf.d/ ] && mkdir /etc/systemd/journal-upload.conf.d/
+if grep -Psq -- '^\h*\[Upload\]' /etc/systemd/journal-upload.conf.d/60-journald_upload.conf; then
+    printf '%s\n' "" "${a_settings[@]}" >> /etc/systemd/journal-upload.conf.d/60-journald_upload.conf
+else
+    printf '%s\n' "" "[Upload]" "${a_settings[@]}" >> /etc/systemd/journal-upload.conf.d/60-journald_upload.conf
+fi
diff --git a/...ogging/journald/systemd_journal_upload_server_tls/tests/journald-conf-trustedcert.fail.sh b/...ogging/journald/systemd_journal_upload_server_tls/tests/journald-conf-trustedcert.fail.sh
@@ -0,0 +1,12 @@
+#!/bin/bash
+# packages = systemd-journal-remote
+# variables = var_journal_upload_conf_file=/etc/systemd/journal-upload.conf.d/60-journald_upload.conf,var_journal_upload_server_key_file=/etc/ssl/private/journal-upload.pem,var_journal_upload_server_certificate_file=/etc/ssl/certs/journal-upload.pem,var_journal_upload_server_trusted_certificate_file=/etc/ssl/ca/trusted.pem
+
+a_settings=("URL=192.168.50.42" "ServerKeyFile=/etc/ssl/private/journal-upload.pem" \
+    "ServerCertificateFile=/etc/ssl/certs/journal-upload.pem" "TrustedCertificateFile=/etc/ssl/ca/trusted1.pem")
+[ ! -d /etc/systemd/journal-upload.conf.d/ ] && mkdir /etc/systemd/journal-upload.conf.d/
+if grep -Psq -- '^\h*\[Upload\]' /etc/systemd/journal-upload.conf.d/60-journald_upload.conf; then
+    printf '%s\n' "" "${a_settings[@]}" >> /etc/systemd/journal-upload.conf.d/60-journald_upload.conf
+else
+    printf '%s\n' "" "[Upload]" "${a_settings[@]}" >> /etc/systemd/journal-upload.conf.d/60-journald_upload.conf
+fi
diff --git a/...ide/system/logging/journald/systemd_journal_upload_server_tls/tests/journald-conf.pass.sh b/...ide/system/logging/journald/systemd_journal_upload_server_tls/tests/journald-conf.pass.sh
@@ -0,0 +1,12 @@
+#!/bin/bash
+# packages = systemd-journal-remote
+# variables = var_journal_upload_conf_file=/etc/systemd/journal-upload.conf,var_journal_upload_server_key_file=/etc/ssl/private/journal-upload.pem,var_journal_upload_server_certificate_file=/etc/ssl/certs/journal-upload.pem,var_journal_upload_server_trusted_certificate_file=/etc/ssl/ca/trusted.pem
+
+a_settings=("URL=192.168.50.42" "ServerKeyFile=/etc/ssl/private/journal-upload.pem" \
+    "ServerCertificateFile=/etc/ssl/certs/journal-upload.pem" "TrustedCertificateFile=/etc/ssl/ca/trusted.pem")
+[ ! -f /etc/systemd/journal-upload.conf/ ] && touch /etc/systemd/journal-upload.conf
+if grep -Psq -- '^\h*\[Upload\]' /etc/systemd/journal-upload.conf; then
+    printf '%s\n' "" "${a_settings[@]}" >> /etc/systemd/journal-upload.conf
+else
+    printf '%s\n' "" "[Upload]" "${a_settings[@]}" >> /etc/systemd/journal-upload.conf
+fi
diff --git a/linux_os/guide/system/logging/journald/systemd_journal_upload_url/bash/shared.sh b/linux_os/guide/system/logging/journald/systemd_journal_upload_url/bash/shared.sh
@@ -1,4 +1,6 @@
-# platform = multi_platform_slmicro
+# platform = multi_platform_slmicro,multi_platform_ubuntu
 
+{{{ bash_instantiate_variables("var_journal_upload_conf_file") }}}
 {{{ bash_instantiate_variables("var_journal_upload_url") }}}
-{{{ bash_replace_or_append('/etc/systemd/journal-upload.conf', '^URL', "$var_journal_upload_url", '%s=%s') }}}
+{{{ bash_replace_or_append('$var_journal_upload_conf_file', '^URL', "$var_journal_upload_url", '%s=%s') }}}
+
diff --git a/linux_os/guide/system/logging/journald/systemd_journal_upload_url/oval/shared.xml b/linux_os/guide/system/logging/journald/systemd_journal_upload_url/oval/shared.xml
@@ -13,7 +13,7 @@
   </ind:textfilecontent54_test>
 
   <ind:textfilecontent54_object id="object_test_systemd_journal_upload_url" version="2">
-    <ind:filepath>/etc/systemd/journal-upload.conf</ind:filepath>
+    <ind:filepath operation="pattern match">^/etc/systemd/journal-upload.conf(\.d/[^/]+\.conf)?$</ind:filepath>
     <ind:pattern operation="pattern match">^\s*URL\s*=\s*(.*)\s*$</ind:pattern>
     <ind:instance datatype="int">1</ind:instance>
   </ind:textfilecontent54_object>

diff --git a/linux_os/guide/system/logging/journald/systemd_journal_upload_url/rule.yml b/linux_os/guide/system/logging/journald/systemd_journal_upload_url/rule.yml
@@ -23,9 +23,10 @@ ocil_clause: 'systemd-journal-upload URL is missing or commented in /etc/systemd
 
 ocil: |-
     To ensure logs are sent to a remote host, examine the file
-    <tt>/etc/systemd/journal-upload.conf</tt>.
+    <tt>{{{ xccdf_value("var_journal_upload_conf_file") }}}</tt>.
     URL should be present:
     <pre>URL={{{ xccdf_value("var_journal_upload_url") }}}</pre>
 
 fixtext: |-
-    Configure systemd-journal-upload URL to {{{ xccdf_value("var_journal_upload_url") }}}
+   Configure systemd-journal-upload config file to {{{ xccdf_value("var_journal_upload_conf_file") }}}.
+   Configure systemd-journal-upload URL to {{{ xccdf_value("var_journal_upload_url") }}}
diff --git a/...uide/system/logging/journald/systemd_journal_upload_url/tests/journald-conf-d-url.pass.sh b/...uide/system/logging/journald/systemd_journal_upload_url/tests/journald-conf-d-url.pass.sh
@@ -0,0 +1,12 @@
+#!/bin/bash
+# packages = systemd-journal-remote
+# variables = var_journal_upload_conf_file=/etc/systemd/journal-upload.conf.d/60-journald_upload.conf,var_journal_upload_url=192.168.50.42
+
+a_settings=("URL=192.168.50.42" "ServerKeyFile=/etc/ssl/private/journal-upload.pem" \
+    "ServerCertificateFile=/etc/ssl/certs/journal-upload.pem" "TrustedCertificateFile=/etc/ssl/ca/trusted.pem")
+[ ! -d /etc/systemd/journal-upload.conf.d/ ] && mkdir /etc/systemd/journal-upload.conf.d/
+if grep -Psq -- '^\h*\[Upload\]' /etc/systemd/journal-upload.conf.d/60-journald_upload.conf; then
+    printf '%s\n' "" "${a_settings[@]}" >> /etc/systemd/journal-upload.conf.d/60-journald_upload.conf
+else
+    printf '%s\n' "" "[Upload]" "${a_settings[@]}" >> /etc/systemd/journal-upload.conf.d/60-journald_upload.conf
+fi
diff --git a/...ystem/logging/journald/systemd_journal_upload_url/tests/journald-conf-url-missing.fail.sh b/...ystem/logging/journald/systemd_journal_upload_url/tests/journald-conf-url-missing.fail.sh
@@ -0,0 +1,12 @@
+#!/bin/bash
+# packages = systemd-journal-remote
+# variables = var_journal_upload_conf_file=/etc/systemd/journal-upload.conf.d/60-journald_upload.conf,var_journal_upload_url=192.168.50.42
+
+a_settings=("ServerKeyFile=/etc/ssl/private/journal-upload.pem" \
+     "ServerCertificateFile=/etc/ssl/certs/journal-upload.pem" "TrustedCertificateFile=/etc/ssl/ca/trusted.pem")
+[ ! -d /etc/systemd/journal-upload.conf.d/ ] && mkdir /etc/systemd/journal-upload.conf.d/
+if grep -Psq -- '^\h*\[Upload\]' /etc/systemd/journal-upload.conf.d/60-journald_upload.conf; then
+    printf '%s\n' "" "${a_settings[@]}" >> /etc/systemd/journal-upload.conf.d/60-journald_upload.conf
+else
+    printf '%s\n' "" "[Upload]" "${a_settings[@]}" >> /etc/systemd/journal-upload.conf.d/60-journald_upload.conf
+fi
diff --git a/.../guide/system/logging/journald/systemd_journal_upload_url/tests/journald-conf-url.fail.sh b/.../guide/system/logging/journald/systemd_journal_upload_url/tests/journald-conf-url.fail.sh
@@ -0,0 +1,12 @@
+#!/bin/bash
+# packages = systemd-journal-remote
+# variables = var_journal_upload_conf_file=/etc/systemd/journal-upload.conf.d/60-journald_upload.conf,var_journal_upload_url=192.168.50.42
+
+a_settings=("URL=192.168.50.41" "ServerKeyFile=/etc/ssl/private/journal-upload.pem" \
+    "ServerCertificateFile=/etc/ssl/certs/journal-upload.pem" "TrustedCertificateFile=/etc/ssl/ca/trusted.pem")
+[ ! -d /etc/systemd/journal-upload.conf.d/ ] && mkdir /etc/systemd/journal-upload.conf.d/
+if grep -Psq -- '^\h*\[Upload\]' /etc/systemd/journal-upload.conf.d/60-journald_upload.conf; then
+    printf '%s\n' "" "${a_settings[@]}" >> /etc/systemd/journal-upload.conf.d/60-journald_upload.conf
+else
+    printf '%s\n' "" "[Upload]" "${a_settings[@]}" >> /etc/systemd/journal-upload.conf.d/60-journald_upload.conf
+fi
diff --git a/.../guide/system/logging/journald/systemd_journal_upload_url/tests/journald-conf-url.pass.sh b/.../guide/system/logging/journald/systemd_journal_upload_url/tests/journald-conf-url.pass.sh
@@ -0,0 +1,12 @@
+#!/bin/bash
+# packages = systemd-journal-remote
+# variables = var_journal_upload_conf_file=/etc/systemd/journal-upload.conf,var_journal_upload_url=192.168.50.42
+
+a_settings=("URL=192.168.50.42" "ServerKeyFile=/etc/ssl/private/journal-upload.pem" \
+    "ServerCertificateFile=/etc/ssl/certs/journal-upload.pem" "TrustedCertificateFile=/etc/ssl/ca/trusted.pem")
+[ ! -f /etc/systemd/journal-upload.conf ] && mkdir /etc/systemd/journal-upload.conf
+if grep -Psq -- '^\h*\[Upload\]' /etc/systemd/journal-upload.conf; then
+    printf '%s\n' "" "${a_settings[@]}" >> /etc/systemd/journal-upload.conf
+else
+    printf '%s\n' "" "[Upload]" "${a_settings[@]}" >> /etc/systemd/journal-upload.conf
+fi
diff --git a/linux_os/guide/system/logging/journald/var_journal_upload_conf_file.var b/linux_os/guide/system/logging/journald/var_journal_upload_conf_file.var
@@ -0,0 +1,14 @@
+documentation_complete: true
+
+title: 'Remote server for systemd-journal-upload service'
+
+description: |-
+    The filepath of the journal-upload config file. Options are /etc/systemd/journal-upload.conf or a 
+    file in the /etc/systemd/journal-upload.conf.d directory.
+
+type: string
+
+interactive: true
+
+options:
+    default: /etc/systemd/journal-upload.conf
diff --git a/linux_os/guide/system/logging/journald/var_journal_upload_server_certificate_file.var b/linux_os/guide/system/logging/journald/var_journal_upload_server_certificate_file.var
@@ -3,7 +3,7 @@ documentation_complete: true
 title: 'Remote server SSL CA certificate in PEM format for systemd-journal-upload service'
 
 description: |-
-    The setting for ServerCertificateFile in /etc/systemd/journal-upload.conf
+    The setting for ServerCertificateFile in the journal-upload config file.
 
 type: string
 

diff --git a/linux_os/guide/system/logging/journald/var_journal_upload_server_key_file.var b/linux_os/guide/system/logging/journald/var_journal_upload_server_key_file.var
@@ -3,7 +3,7 @@ documentation_complete: true
 title: 'Remote server SSL key in PEM format for systemd-journal-upload service'
 
 description: |-
-    The setting for ServerKeyFile in /etc/systemd/journal-upload.conf
+    The setting for ServerKeyFile in the journal-upload config file.
 
 type: string
 

diff --git a/...x_os/guide/system/logging/journald/var_journal_upload_server_trusted_certificate_file.var b/...x_os/guide/system/logging/journald/var_journal_upload_server_trusted_certificate_file.var
@@ -3,7 +3,7 @@ documentation_complete: true
 title: 'Remote server SSL CA certificate for systemd-journal-upload service'
 
 description: |-
-    The setting for TrustedCertificateFile in /etc/systemd/journal-upload.conf
+    The setting for TrustedCertificateFile in the journal-upload config file.
 
 type: string
 

diff --git a/linux_os/guide/system/logging/journald/var_journal_upload_url.var b/linux_os/guide/system/logging/journald/var_journal_upload_url.var
@@ -3,7 +3,7 @@ documentation_complete: true
 title: 'Remote server for systemd-journal-upload service'
 
 description: |-
-    The setting for URL in /etc/systemd/journal-upload.conf
+    The setting for URL in the journal-upload config file.
 
 type: string