|Applies To||RSA Product Set: SecurID |
RSA Product/Service Type: Authentication Manager
RSA Version/Condition: 7.1 SP4/3.0, 8.x
procs -----------memory---------- ---swap-- -----io---- -system-- ----cpu----
|Cause||There is a false positive on memory utilization error when using top or vmstat with Authentication Manager and the RSA SecurID Appliance.|
The RSA SecuriD Appliance 3.0 is an rPath Linux kernel. This particular version of Linux uses a memory management known as "lazy man" memory mapping.
In such a memory management/kernel approach, (scroll to the second to the last paragraph of the page on this link):
To make the most efficient use of real memory, Linux automatically uses all free RAM for buffer cache, but also automatically makes the cache smaller when programs need more memory.
|Resolution||For memory management, trap against the -/+ buffer/cache value using the free command, as below:|
[root@cs-appliance3-05 ~]# free
Reading the -/+ buffers/cache field indicate in this instance of the older RSA SecuriD Appliance 3.0, that approximately 1.5 GB are free for re-allocation when system load increases; more than enough free memory.
On the same model Dell appliance updated to Authentication Manager 8.1 with SUSE Linux, we still see almost .7G available.
On the model with 8G of RAM, we see 3.6 GB of RAM available for reallocation when needed.
You can also use an SNMP OID for the trap vs free output. For more information on SNMP traps on Linux, reference this article on Linux SNMP OIDs for CPU,Memory and Disk Statistics.
You should consider the use of the UCD OID .220.127.116.11.4.1.2021 for CPU and memory usage versus using HOST MIBs, noting all reported available thresholds report in kilobytes.
Authentication Manager 8.1 SNMP OIDs
Complete list of UCD MIB OIDS for older RSA SecurID Appliance 3.0
|Workaround||Use free -m instead of vmstat or top.|
|Notes||For additional information on hardware SNMP traps for Authentication Manager 8.1 or the RSA SecurID Appliance 3.0, see the RSA Authentication Manager 8.1 SNMP Reference Guide, Revision 1 or the RSA SecurID Appliance 3.0 SNMP Reference Guide.|
|Legacy Article ID||a50297|