Proxy configuration validation for Netwitness

Document created by Sravan Koneti on Jan 29, 2018
Version 1Show Document
  • View in full screen mode

Suppose, the proxy details configured using SA Cfg: HTTP Proxy Settings Panel  document. However, the Proxy test connection fails as CMS server was not reachable.

 Then, Please run below command in SA head server to test the connection.

 

curl -v https://<Live_User_Name>:<Live_User_Password>@cms.netwitness.com --proxy <Proxy_IP>:<PORT_NUMBER> --proxy-user <Proxy_User_Name>:<Proxy_User_Password>

 

Live User Name and Live User password details can be registered using Live: RSA Live Registration Portal 

 

Proxy IP, Port Number, Proxy User Name and Proxy User Password details will be gathered from Internal Proxy Team.

 

Sample Output for successful connection is as below.

 

* About to connect() to proxy Proxy_IP port Port_number (#0)
* Trying Proxy_IP... connected
* Connected to Proxy_IP (Proxy_IP) port Port_number (#0)
* Establish HTTP proxy tunnel to cms.netwitness.com:443
* Server auth using Basic with user 'Live_user'
> CONNECT cms.netwitness.com:443 HTTP/1.1
> Host: cms.netwitness.com:443
> User-Agent: curl/7.19.7 (x86_64-redhat-linux-gnu) libcurl/7.19.7 NSS/3.27.1 zlib/1.2.3 libidn/1.18 libssh2/1.4.2
> Proxy-Connection: Keep-Alive
>
< HTTP/1.1 200 Connection established
<
* Proxy replied OK to CONNECT request
* Initializing NSS with certpath: sql:/etc/pki/nssdb
* CAfile: /etc/pki/tls/certs/ca-bundle.crt
CApath: none
* SSL connection using TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
* Server certificate:
* subject: CN=cms.netwitness.com,OU=Domain Control Validated
* start date: Feb 05 14:22:00 2017 GMT
* expire date: Apr 06 19:37:23 2018 GMT
* common name: cms.netwitness.com
* issuer: CN=Go Daddy Secure Certificate Authority - G2,OU=http://certs.godaddy.com/repository/,O="GoDaddy.com, Inc.",L=Scottsdale,ST=Arizona,C=US
* Server auth using Basic with user 'Live_user'
> GET / HTTP/1.1
> Authorization: Basic c29jZ2VuLmFwOkFTSUxvZzRAbGw=
> User-Agent: curl/7.19.7 (x86_64-redhat-linux-gnu) libcurl/7.19.7 NSS/3.27.1 zlib/1.2.3 libidn/1.18 libssh2/1.4.2
> Host: cms.netwitness.com
> Accept: */*
>
< HTTP/1.1 302 Found
< Server: nginx
< Date: Mon, 29 Jan 2018 12:42:02 GMT
< Transfer-Encoding: chunked
< Connection: keep-alive
< X-Frame-Options: SAMEORIGIN
< Set-Cookie: JSESSIONID=kmdzrashno9t2y3sc9l1af4v;Path=/;Secure;HttpOnly
< Expires: Thu, 01-Jan-1970 00:00:00 GMT
< Content-Language: en-US
< Location: https://cms.netwitness.com/live/home;jsessionid=kmdzrashno9t2y3sc9l1af4v?defaultTitle=RSA+Security+Analytics&useCustomContextMenu=true&timeZoneOffset=GMT%2B00%3A00&notificationsEnabled=true&timeZoneOffsetInMilliSeconds=0&locale=en_US&csrfToken=14e25457-746b-4a13-a6c7-8b1447436b07&moduleBasePath=&timeZone=UTC&isLiveCloud=true&userPermissions=viewLiveResourceDetails%2CaccessLiveModule%2CcontentManagePrivate%2CsearchLiveResources&userName=Live_user
<
* Connection #0 to host Proxy_IP left intact
curl: (3) [globbing] unmatched brace at pos 30

* Closing connection #0

Attachments

    Outcomes