000035451 - Data Collector for RSA Authentication Manager 8.x

Document created by RSA Customer Support Employee on Nov 30, 2017
Version 1Show Document
  • View in full screen mode

Article Content

Article Number000035451
Applies ToRSA Product Set: SecurID
RSA Product/Service Type: RSA Authentication Manager
RSA Version/Condition: 8.1 Service Pack 1
Platform: SUSE Enterprise Linux
O/S Version: 11 Service Pack 3
Product Description: SecurID Appliance
IssueAn RSA technical support engineer may require more than just the Troubleshooting Files generated in the Operations Console to troubleshoot an RSA Authentication Manager 8.x instance.
ResolutionThe shell script (RSAAMdata_collect.sh attachment) attached to this RSA knowledge article can create three files (listed below) and collects the following information:
  • Obtains hardware information
    • dmidecode data
    • disk usage
    • top for root processes
    • top for rsaadmin processes
    • CPU data
    • memory data
  • Obtains software information
    • listing of software packages installed in the operating system
    • NTP configuration
    • SNMP configuration
    • SYSCTL information
    • GRUB data
  • Obtains network information
    • hostname information
    • resolv conf data
    • netstat ouput
    • nsswitch conf data
    • defined network routes
    • contents of services file
    • contents of the local hosts' file
    • a list of firewall rules
  • Locates all *.log files in /opt/rsa/am & sub-folders and places them in a tar archive file in the /tmp folder
  • Runs SQL statements to query data in the authentication manager database
    • lists authentication manager instances in the deployment
    • lists RADIUS servers
    • lists all Authentication Agents
    • lists RADIUS clients
    • token statistics
    • generators an authentication bit flag report
    • list all Security Console administrator
    • lists registered users (& all users in the internal database)
    • all global parameters
  • License information, authentication bit flag report, authentication manager instance version and a configuration settings report
NOTE: Configuration settings report will only work on authentication manager instances running 8.2 service pack 1 patch 1 or later software. 

The shell script can generate up to three files in the /tmp folder based on the user's choices:
  • datacollector_YYYYmmdd.log
  • RSAAM_logfoles_YYYYmmdd.tar
  • RSAAM_config_YYYYmmdd.csv
  1. Download and copy the RSAAMdata_collect.sh shell script into the /tmp folder on the authentication manager instance.
NOTE: Where SSH has been enabled (URL https://community.rsa.com/docs/DOC-77019) a secure FTP client (e.g. WinSCP) can be used to copy the shell script into the /tmp folder.

  1. Change the permissions of RSAAMdata_collect.sh so it can be executed at the command line e.g. chmod 755 /tmp/RSAAMdata_collect.sh
  1. Logon to the Authentication Manager instance with the rsaadmin account, either in an SSH session or at the local console
  2. Change the privileges of the rsaadmin account using the command sudo su -
If you do not change the privileges of the rsaadmin account the following message appears:

You must be the root user to use this program; exiting...

  1. The shell script can be executed in one of two ways, as Operations Console user credentials are required.
Usage: RSAAMdata_collect.sh {OCAdminUserName} {OCAdminPassword}

/tmp/RSAAMdata_collect.sh ocadmin password
Checking OC credentails..
OC credentials validated... redirecting to menu..


Checking OC credentails....missing OC credentials!
Please enter OC Administrator username: ocadmin
Please enter OC Administrator password: password

OC credentials validated... redirecting to menu..

the shell script menu:

RSA Customer Support (Asia Pacific)
Collecting Data on your Authentication Manager (AM) Instance..
1) Hardware Information
2) Software Information
3) Network Information
4) AM Log Data into a tar file
5) Running SQL Statements on the AM Database
6) License & AM Config Information (where AM is or later)
7) All of the above
8) Display filenames
9) Exit
Please select an option

NOTE: (Option 7 will generate all three mentioned files and these filenames are displayed using option 8)
NotesDisclaimer: The RSAAMdata_collect.sh shell script will only create three files on the authentication manager instance in the /tmp/ folder and will not change any production data. This is a tool for gathering information from the operating system hosting the authentication manager instance and using SQL statements to read data from the authentication manager database.