SA 10.5 - Multiple entries in Index-Concentrator-Custom File causes Initialization Error: "Cannot have more than one root element, trying to add 'key' when 'key' already exists"
Originally Published: 2015-06-22
Article Number
Applies To
Issue
When trying to add more than one entry in the index-concentrator-custom.xml file, the following errors appear in /var/log/messages :
NWAPPLIANCE18030 nw[4636]: [Engine] [warning] Module concentrator failed to load: /etc/netwitness/ng/index-concentrator-custom.xml - Cannot have more than one root element, trying to add 'key' when 'key' already exists
NWAPPLIANCE18030 nw[4636]: [Engine] [warning] Module concentrator failed to load: Diagnostic information: Throw in function static void nw::LanguageManager::loadLanguageExtensions(const string&, nw::LanguagePtr)Dynamic exception type: N5boost16exception_detail10clone_implIN2nw8XmlErrorEEEstd::exception::what: /etc/netwitness/ng/index-concentrator-custom.xml - Cannot have more than one root element, trying to add 'key' when 'key' already exists[PN5boost16errinfo_at_line_E] = 388
Cause
Resolution
- Back up the existing index-concentrator-custom.xml file
- Replace the contents of the file with the provided template
- Append contents of backup to provided template
- Restart concentrator service
Workaround
- Go to Administration>Services
- Select the concentrator then go to view>config and select files
- From the left drop-down menu select index-concentrator-custom.xml
- **Select everything in this file and copy it to a safe location (like a .txt file on your local desktop)**
- After you have safely backed-up your file, you will now need to overwrite it with the following template:
<?xml version="1.0" encoding="utf-8"?>
<language level="IndexValues" defaultAction="Auto">
<!-- *** Please insert your custom keys or modifications below this line *** -->
</language>
<language level="IndexValues" defaultAction="Auto">
<!-- *** Please insert your custom keys or modifications below this line *** -->
</language>
- Add the XML code lines that you backed up below the line noted in the template above. Your finished product should look similar to the following example:
<?xml version="1.0" encoding="utf-8"?>
<language level="IndexValues" defaultAction="Auto">
<!-- *** Please insert your custom keys or modifications below this line *** -->
<key description="Bytes" format="UInt64" level="IndexValues" name="bytes" valueMax="250000" defaultAction="Open"/>
<key description="Business Network" format="Text" level="IndexValues" name="business" valueMax="1000" defaultAction="Open"/>
</language>
<language level="IndexValues" defaultAction="Auto">
<!-- *** Please insert your custom keys or modifications below this line *** -->
<key description="Bytes" format="UInt64" level="IndexValues" name="bytes" valueMax="250000" defaultAction="Open"/>
<key description="Business Network" format="Text" level="IndexValues" name="business" valueMax="1000" defaultAction="Open"/>
</language>
- Stop the concentrator capture by going to Administration>Services, selecting the concentrator view>system and then selecting Stop Aggregation. This process may take a few minutes. You will know when it is completed when the Start Aggregation button is not longer grayed out.
- Restart the concentrator service by going to Administration>Services, selecting the concentrator view>system and then selecting Shutdown Service. Selecting Shutdown Service will stop the concentrator service and then automatically restart it.
Related Articles
The source file name(s) are larger than is supported by file system error while trying to delete RSA Authentication Manage… Number of Views Error message "Error: java.lang.IllegalArgumentException: Window boundary must be positive" in the RSA SecurID Authenticat… Number of Views Errors 'Server Timeout' and 'User TIME's access is denied' with RSA Access Manager and RSA SecurID Number of Views Error message "can't connect to ace server" with the RSA Apache Web Agent 8.0 Number of Views Listing the contents of the RSA Authentication Manager Java KeyStore (JKS) files Number of Views
Trending Articles
Quick Setup Guide - Passwordless Authentication in Windows MFA Agent for Active Directory RSA Authentication Manager 8.9 Release Notes (January 2026) Artifacts to gather in RSA Identity Governance & Lifecycle RSA Governance & Lifecycle 8.0.0 Administrators Guide RSA Governance & Lifecycle 8.0.0 Installation Guide
Don't see what you're looking for?
