|Applies To||RSA Product Set: Web Threat Detection|
RSA Product/Service Type: Mitigator
RSA Version/Condition: 5.1, 6.x
|Issue||Previously configured email alerts in RSA Web Threat Detection were working but now are never triggering.|
Here are some good diagnostics --
1. Configure Action Server in DEBUG Mode
2. Start Action Server on the console with ActionServer service stopped in Scout.
3. Look through var/log/messages for ActionServer and UIServer messages.
4. Make sure email is working. Although this is a basic OS level functionality, it is crucial that email can be sent from the WTD server to the intended mailbox.
a. Determine the method of email used in the system -- This is usually PostFix or Sendmail. Examples will be shown for these two applications.
If mail does not send from the console, the Customer should be asked to do an internal investigation to determine what changes
might have occurred which are now preventing email alerrts from being sent.