Checking name resolution and port connectivity for Web Tier instance on a supported Red Hat platform - RSA Authentication Manager 8.1 SP1 or later
Originally Published: 2018-02-02
Article Number
Applies To
RSA Product/Service Type: Authentication Manager Web Tier
RSA Version/Condition: 8.4 or later
Issue
Resolution
The shell script attached to this article will attempt to find the Web Tier installation directory, as well as look up the Authentication Manager, Web Tier and Virtual Host fully qualified host names from the Web Tier configuration.
Next, the shell script will perform name resolution of the fully qualified host names and check the status of ports 7022/TCP and the virtual host port, which by default is 443/TCP.
Installation
- Download the attached wtcheck.sh shell script into the /tmp folder on a Web Tier instance that is running on a supported Red Hat platform.
- Change the permissions of wtcheck.sh so it can be executed at the command line:
chmod 755 /tmp/wtcheck.sh
Usage
- Logon to the Red Hat platform with a local account, either in an SSH session or at the local console.
- Change the privileges of the local account using the command sudo su -.
rsaadmin@am82p:/opt/rsa/am> sudo su - rsaadmin's password: <enter operating system password> am82p:~ #
If you do not change the privileges of the local account, then the following message appears: You must be the root user to use this program; exiting...
- Navigate to the /tmp directory:
cd /tmp
- Use the wtcheck.sh shell script to check name resolution and port accessibility:
./wtcheck.sh
Example output where the web tier is not in the default folder:
[root@webtier01-csau-ap-rsa-net tmp]# ./wtcheck.sh RSA Customer Support - Asia Pacific Web Tier Check Program Report Filename is /tmp/wtcheck-report_202107190927.log >>>>> Locating the Web Tier Home Directory ------------------------------------ - did not find the default web tier home directory - please enter the web tier home directory : /opt/webtier - /opt/webtier folder does not exist - do you wish to search for the web tier home directory (y/n)? y - starting a search for the web tier home directory, please be patient... - search completed! - using web tier home directory /RSA/Webtier/ -------------------------------- Hostname Lookup Testing ----------------------- Authentication Manager Instance : am84p.csau.ap.rsa.net [1] Server: 192.168.7.35 Address: 192.168.7.35#53 Name: am84p.csau.ap.rsa.net Address: 192.168.7.46 - lookup worked! Web Tier Instance : webtier01.csau.ap.rsa.net [1] Server: 192.168.7.35 Address: 192.168.7.35#53 Name: webtier01.csau.ap.rsa.net Address: 192.168.7.26 - lookup worked! Virtual Host Instance : tokenserver.csau.ap.rsa.net [1] Server: 192.168.7.35 Address: 192.168.7.35#53 Name: tokenserver.csau.ap.rsa.net Address: 192.168.7.26 Name: tokenserver.csau.ap.rsa.net Address: 192.168.7.48 - lookup worked! -------------------------- Hostname Lookup Completed! Checking Ports -------------- ..(8 second timeout for each check).. Current hostname : webtier01.csau.ap.rsa.net Determining the Virtual Host port as : 443 - Port 7022/TCP is reachable on am84p.csau.ap.rsa.net - Port 443/TCP is reachable on webtier01.csau.ap.rsa.net - Port 443/TCP is reachable on tokenserver.csau.ap.rsa.net ------------------------- Checking Ports Completed! [root@webtier01-csau-ap-rsa-net tmp]#
In this example, a report called /tmp/wtcheck-report_202107190927.log was created.
A copy of /tmp/wtcheck-report_202107190927.log:
RSA Customer Support - Asia Pacific Web Tier Check Program - using web tier home directory /RSA/Webtier/ ** Hostname Lookup Testing** Server: 192.168.7.35 Address: 192.168.7.35#53 Name: am84p.csau.ap.rsa.net Address: 192.168.7.46 Server: 192.168.7.35 Address: 192.168.7.35#53 Name: svcs-amprimekit.csau.ap.rsa.net Address: 192.168.7.26 Server: 192.168.7.35 Address: 192.168.7.35#53 Name: tokenserver.csau.ap.rsa.net Address: 192.168.7.26 Name: tokenserver.csau.ap.rsa.net Address: 192.168.7.48 ** Hostname Lookup Completed! ** ** Checking Ports ** Determining the Virtual Host port as : 443 - Port 7022/TCP is reachable on am84p.csau.ap.rsa.net - Port 443/TCP is reachable on svcs-amprimekit.csau.ap.rsa.net - Port 443/TCP is reachable on tokenserver.csau.ap.rsa.net ** Checking Ports Completed! **
Notes
Page 75 of the RSA Authentication Manager 8.5 Setup and Configuration Guide | RSA Community provides information about supported Red Hat Enterprise Linux operating systems.
Red Hat Enterprise Linux version 8.3 (64-bit) is now supported with RSA Authentication Manager 8.5 Patch 4 Web Tier software. Refer to page 7 of the RSA Authentication Manager 8.5 Patch 4 Web-Tier Readme | RSA Community
Attachments
If the attachment does not open when clicked, please refresh the page and try again. You must be logged into view the file(s).
Related Articles
RSA Authentication Manager 8.x Web Tier is not listening on TCP port 443 Number of Views Troubleshooting Web Tier deployments on Red Hat Enterprise Linux for RSA Authentication Manager 8.1 Number of Views Online, Reinstall Required message on Web Tier after reinstalling with the new RSA Authentication Manager 8.x Web-Tier pac… Number of Views Web Tier installation fails on Red Hat server - RSA Authentication Manager 8.1 Number of Views RSA Authentication Manager 8.x - Weak Ciphers Vulnerabilities found with Qualys Scan - Updated Number of Views
Trending Articles
Troubleshooting RSA SecurID Access Identity Router to RSA Authentication Manager test connection failures RSA SecurID Software Token 5.0.2 Downloads for Microsoft Windows RSA Authentication Manager 8.9 Release Notes (January 2026) Quick Setup Guide - Passwordless Authentication in Windows MFA Agent for Active Directory RSA Authentication Manager 8.8 Setup and Configuration Guide
Don't see what you're looking for?
