000030640 - Collecting logs in RSA Authentication Manager 8.x via SSH

Document created by RSA Customer Support Employee on Jun 14, 2016Last modified by RSA Customer Support on Dec 16, 2019
Version 3Show Document
  • View in full screen mode

Article Content

Article Number000030640
Applies ToRSA Product Set:  SecurID
RSA Product/Service Type:  Authentication Manager
RSA Version/Condition:  8.x

IssueThere is an option in the Authentication Manager 8.x Operations Console to package all logs used for troubleshooting into one zip file that can be sent to Support.  If the Operations Console is unavailable or the option to create the zip file is not working, the RSA administrator can SSH to the Authentication Manager server and manually copy the logs from the various directories where they are stored on the server.
TasksDownloading the Authentication Manager 8.x troubleshooting logs via SSH.
  1. Log on to the Authentication Manager 8.x primary server via SSH.  SSH can be enabled via the Operations Console (Administration > Operating System Access > Enable SSH).  If SSH is not enabled, the server can be accessed by connecting a keyboard and monitor to a physical Authentication Manager server or by opening a console session for a VMware server.
  2. Navigate to the directories below and collect the following logs using WinSCP or any SFTP client.
    • /opt/rsa/am/appserver/logs
    • /opt/rsa/am/config/logs
    • /opt/rsa/am/config/target/logs
    • /opt/rsa/am/install_logs
    • /opt/rsa/am/logs
    • /opt/rsa/am/radius
    • /opt/rsa/am/rsapgdata/pg_log
    • /opt/rsa/am/server/logs
    • /opt/rsa/am/server/servers/AdminServer/logs
    • /opt/rsa/am/server/servers/biztier/logs
    • /opt/rsa/am/server/servers/console/logs
    • /opt/rsa/am/server/servers/radiusoc/logs
    • /opt/rsa/am/utils/logs
    You can print a list of log files into a file named logfiles:

    find /opt/ -name *.log* -print 2>/dev/null >> /home/rsaadmin/logfiles

NotesYou may need to copy the files to /tmp and chmod the file permissions to 777 prior to moving the files to another server with WinSCP or another SFTP client.  For example,

login as: rsaadmin
Using keyboard-interactive authentication.
Password: <enter OS user password>
Last login: Thu Jul 16 16:12:29 2015 from jumphost.vcloud.local
RSA Authentication Manager Installation Directory: /opt/rsa/am
rsaadmin@am81p:> cd /opt/rsa/am/logs
rsaadmin@am81p:/opt/rsa/am/logs> ls -al
total 8
drwx------  2 rsaadmin rsaadmin 4096 Dec  6  2013 .
drwx------ 18 rsaadmin root     4096 Jun  8 15:08 ..
-rw-------  1 rsaadmin rsaadmin    0 Dec  6  2013 imsCluTrace.log
rsaadmin@am81p:/opt/rsa/am/logs> cp imsCluTrace.log /tmp
rsaadmin@am81p:/opt/rsa/am/logs> cd /tmp
rsaadmin@am81p:/tmp> chmod 777 imsCluTrace.log
rsaadmin@am81p:/tmp> ls -al imsCluTrace.log
-rwxrwxrwx 1 rsaadmin rsaadmin 0 Jul 16 16:17 imsCluTrace.log

Now login to the SFTP client and navigate to /tmp to capture the files.