It is Vulnerability V-4443
It says that "If an application requires these entries to function properly and is documented with the IAO, this would not be a finding. Documentation should contain supporting information from the vendor's instructions"
So..if I can get something emailed to me from Solarwinds stating that it is a requirement for Syslog, then I think we would be good. I'd still like to know if it's required and how to remove if possible.
Thanks again..