[8.160][QUESTION][ANSWERED] Can't Access Log Management Service

Per KBR, posting this in a new thread:

I still can't get the Log Management service to work... it just sits there and spins. I have disabled the HTTP Proxy as another poster recommended, still never "gets there: ...

For the eval, do we use the default lm subscription and joing key that is listed in the log management activation screen, or do we select the "This is the first ASG I enable Log Management On" option? What am I missing?

Parents

0 kbr over 14 years ago
Regarding the problem where the Webadmin is spinning endlessly on activation of the Log Management feature:
This is a problem that we're currently working on. I think we've identified the root cause, which is that one part of the log management software (the one that is connecting to "the cloud") is doing this through an SSL encrypted connection. If this connection goes through the HTTP-Proxy (which is the case if you enable transparent mode and HTTPS scanning), the HTTP-Proxy rejects the connection, because it does not know about the Certificate of the Logmanagement Server "in the cloud".

There are actually two aspects to this problem:

some code is missing that handles the case of not being able to connect to "the cloud"
some certificate boilerplate is missing to inform the HTTP-Proxy about the servers "in the cloud".

The guys are still discussing various aspects of this issue, but i'm sure i have this filed in Mantis tomorrow, and hopefully fixed in the next version next week.

For the subscription question: i took the "This is the first ASG ..." option for my tests, but i'll hand this topic over to a coworker from the log management team, as soon as he is back from the Cebit.
Cancel
Vote Up 0 Vote Down

Sign in to reply

Verify Answer

Cancel

Reply

0 kbr over 14 years ago
Regarding the problem where the Webadmin is spinning endlessly on activation of the Log Management feature:
This is a problem that we're currently working on. I think we've identified the root cause, which is that one part of the log management software (the one that is connecting to "the cloud") is doing this through an SSL encrypted connection. If this connection goes through the HTTP-Proxy (which is the case if you enable transparent mode and HTTPS scanning), the HTTP-Proxy rejects the connection, because it does not know about the Certificate of the Logmanagement Server "in the cloud".

There are actually two aspects to this problem:

some code is missing that handles the case of not being able to connect to "the cloud"
some certificate boilerplate is missing to inform the HTTP-Proxy about the servers "in the cloud".

The guys are still discussing various aspects of this issue, but i'm sure i have this filed in Mantis tomorrow, and hopefully fixed in the next version next week.

For the subscription question: i took the "This is the first ASG ..." option for my tests, but i'll hand this topic over to a coworker from the log management team, as soon as he is back from the Cebit.
Cancel
Vote Up 0 Vote Down

Sign in to reply

Verify Answer

Cancel

Children

0 BrucekConvergent over 14 years ago in reply to kbr

Just to clarify---it fails for me even if the HTTP proxy is disabled.

CTO, Convergent Information Security Solutions, LLC

https://www.convergesecurity.com

Advice given as posted on this forum does not construe a support relationship or other relationship with Convergent Information Security Solutions, LLC or its subsidiaries. Use the advice given at your own risk.
Cancel
Vote Up 0 Vote Down

Sign in to reply

Verify Answer

Cancel