000030640 - Collecting logs in Authentication Manager 8.1 via SSH

Document created by RSA Customer Support Employee on Jun 14, 2016Last modified by RSA Customer Support Employee on Apr 21, 2017
Version 2Show Document
  • View in full screen mode

Article Content

Article Number000030640
Applies ToRSA Product Set:  SecurID
RSA Product/Service Type:  Authentication Manager
RSA Version/Condition:  8.1

 
IssueThere is an option in the Authentication Manager 8.1 Operations Console to package all logs used for troubleshooting into one zip file that can be sent to Support.  If the Operations Console is unavailable or the option to create the zip file is not working, the RSA administrator can SSH to the Authentication Manager server and manually copy the logs from the various directories where they are stored on the server.
 
TasksDownloading the Authentication Manager 8.1 troubleshooting logs via SSH.
Resolution1.  Log on to the Authentication Manager 8.1 primary server via SSH.  SSH can be enabled via the Operations Console (Administration > Operating System Access > Enable SSH).  If SSH is not enabled, the server can be accessed by connecting a keyboard and monitor to a physical Authentication Manager server or by opening a console session for a VMware server.
2.  Navigate to the directories below and collect the following logs using WinSCP or any SFTP client.
  • /opt/rsa/am/appserver/logs
  • /opt/rsa/am/config/logs
  • /opt/rsa/am/config/target/logs
  • /opt/rsa/am/install_logs
  • /opt/rsa/am/logs
  • /opt/rsa/am/radius
  • /opt/rsa/am/rsapgdata/pg_log
  • /opt/rsa/am/server/logs
  • /opt/rsa/am/server/servers/AdminServer/logs
  • /opt/rsa/am/server/servers/biztier/logs
  • /opt/rsa/am/server/servers/console/logs
  • /opt/rsa/am/server/servers/radiusoc/logs
  • /opt/rsa/am/utils/logs
You can print a list of log files into a file named logfiles:
find /opt/ -name *.log* -print 2>/dev/null >> /home/rsaadmin/logfiles


 
NotesYou may need to copy the files to /tmp and chmod the file permissions to 777 prior to moving the files to another server with WinSCP or another SFTP client.  For example,
 
login as: rsaadmin
Using keyboard-interactive authentication.
Password: <enter OS user password>
Last login: Thu Jul 16 16:12:29 2015 from jumphost.vcloud.local
RSA Authentication Manager Installation Directory: /opt/rsa/am
rsaadmin@am81p:> cd /opt/rsa/am/logs
rsaadmin@am81p:/opt/rsa/am/logs> ls -al
total 8
drwx------  2 rsaadmin rsaadmin 4096 Dec  6  2013 .
drwx------ 18 rsaadmin root     4096 Jun  8 15:08 ..
-rw-------  1 rsaadmin rsaadmin    0 Dec  6  2013 imsCluTrace.log
rsaadmin@am81p:/opt/rsa/am/logs> cp imsCluTrace.log /tmp
rsaadmin@am81p:/opt/rsa/am/logs> cd /tmp
rsaadmin@am81p:/tmp> chmod 777 imsCluTrace.log
rsaadmin@am81p:/tmp> ls -al imsCluTrace.log
-rwxrwxrwx 1 rsaadmin rsaadmin 0 Jul 16 16:17 imsCluTrace.log

Now login to the SFTP client and navigate to /tmp to capture the files.

 

Attachments

    Outcomes