|Applies To||RSA Security Analytics|
RSA Security Analytics Reporting Engine
|Issue||Reporting engine appears down in the RSA Security Analytics UI or is returning no results in Rules.|
The Reporting Engine is displayed in red under Administration -> Devices in Security Analytics.
Connect to the SA server appliance via SSH and issue the commands below to resolve the issue. Warning! These steps will delete the Reporting Engine rules, reports, charts and alerts. Therefore, a backup should be made via the Security Analytics UI before performing this process.
After you have issued the commands above, wait several minutes and then attempt to access the Security Analytics UI login page. Once you are able to do so, return to the SSH session and issue the two commands below to complete the process.
If you are unsure of any of the steps above or encounter any issues, contact RSA Support and quote this article ID for assistance.
|Legacy Article ID||a65407|