000035674 - How to manually re-add a host that has been removed from the RSA NetWitness GUI Hosts page

Document created by RSA Customer Support Employee on Oct 31, 2017
Version 1Show Document
  • View in full screen mode

Article Content

Article Number000035674
Applies ToRSA Product Set: NetWitness Log and Packets
RSA Version/Condition: 11.0
IssueAfter removing a Host from the Host page in the UI it won't discover again.
ResolutionOn the client Host run the following command from a SSH window to retrieve the host_id.

# cat /etc/salt/minion


Sample output...
# cat /etc/salt/minion
master: 192.168.2.101
hash_type: sha256
log_level: info
id: 44f0b8ad-55cb-440f-8e42-95caa049b4a1

On the NW Admin Server verify that the client host_id is in the list.
Run the following command from a SSH window on the SA Server

# salt-key


Sample output...
# salt-key
ERROR:root:code for hash md5 was not found.
Traceback (most recent call last):
  File "/usr/lib64/python2.7/hashlib.py", line 129, in <module>
    globals()[__func_name] = __get_hash(__func_name)
  File "/usr/lib64/python2.7/hashlib.py", line 98, in __get_openssl_constructor
    f(usedforsecurity=False)
ValueError: error:3207A06D:lib(50):B_HASH_init:cr new
Accepted Keys:
32c5b77d-309d-45ea-9134-9cd5c04791d8
44f0b8ad-55cb-440f-8e42-95caa049b4a1
.
.
a9e37c64-8331-47c9-ae97-eb365c4f293f
Denied Keys:
Unaccepted Keys:
Rejected Keys:

On the NW Admin Server delete the host_id for the client host node.

# salt-key -d 44f0b8ad-55cb-440f-8e42-95caa049b4a1


Sample Output....
ERROR:root:code for hash md5 was not found.
Traceback (most recent call last):
  File "/usr/lib64/python2.7/hashlib.py", line 129, in <module>
    globals()[__func_name] = __get_hash(__func_name)
  File "/usr/lib64/python2.7/hashlib.py", line 98, in __get_openssl_constructor
    f(usedforsecurity=False)
ValueError: error:3207A06D:lib(50):B_HASH_init:cr new
The following keys are going to be deleted:
Accepted Keys:
44f0b8ad-55cb-440f-8e42-95caa049b4a1
Proceed? [N/y] y
Key for minion 44f0b8ad-55cb-440f-8e42-95caa049b4a1 deleted.

On the client Host appliance re-run the nwsetup-tui command...

# nwsetup-tui

... answer the questions
... once nwsetup-tui finishes go to the UI and discover the Host again
... once host is discovered click the "Install" button to select the node type (i.e. Packet Decoder, LogDecoder etc...)
 

Attachments

    Outcomes