|Applies To||RSA Product Set: RSA Security Analytics|
RSA Product/Service Type: RSA Security Analytics Log Decoder
RabbitMQ Message Broker
|Issue||Error message "NWLogdecoder AMQP channel: Connection refused" is displayed in RSA Security Analytics.|
If the log collector is unable to reach the message broker, errors similar to the following will be reported:
|Cause||This issue is caused when the Message Broker is not running, or when the Message Broker connection settings are incorrect.|
In order to resolve the issue, reset the Message Broker configuration manually by following the steps below.
NOTE: The Message Broker reset procedure can also be done via the Security Analytics UI via the Explore interface on the Log Collector device.
If the problem persists, delete the queues and restart RabbitMQ by issuing the commands below.
If you are unsure of any of the steps above or experience any issues, contact RSA Support and quote this article ID for further assistance.
Users can manually test the connection to event broker using OpenSSL by issuing the following commands:
|Legacy Article ID||a64663|