This website uses cookies. By clicking Accept, you consent to the use of cookies. Click Here to learn more about how we use cookies.
Accept
Reject
Register Now
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
NetWitness Community Blog
Subscribe to the official NetWitness Community blog for information about new product features, industry insights, best practices, and more.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Proxy configuration validation for Netwitness

SravanKoneti1
Beginner
Beginner
‎2018-01-29 08:52 AM

Suppose, the proxy details configured using SA Cfg: HTTP Proxy Settings Panel  document. However, the Proxy test connection fails as CMS server was not reachable.

 Then, Please run below command in SA head server to test the connection.

 

curl -v https://<Live_User_Name>:<Live_User_Password>@cms.netwitness.com --proxy <Proxy_IP>:<PORT_NUMBER> --proxy-user <Proxy_User_Name>:<Proxy_User_Password>

 

Live User Name and Live User password details can be registered using Live: RSA Live Registration Portal 

 

Proxy IP, Port Number, Proxy User Name and Proxy User Password details will be gathered from Internal Proxy Team.

 

Sample Output for successful connection is as below.

 

* About to connect() to proxy Proxy_IP port Port_number (#0)
* Trying Proxy_IP... connected
* Connected to Proxy_IP (Proxy_IP) port Port_number (#0)
* Establish HTTP proxy tunnel to cms.netwitness.com:443
* Server auth using Basic with user 'Live_user'
> CONNECT cms.netwitness.com:443 HTTP/1.1
> Host: cms.netwitness.com:443
> User-Agent: curl/7.19.7 (x86_64-redhat-linux-gnu) libcurl/7.19.7 NSS/3.27.1 zlib/1.2.3 libidn/1.18 libssh2/1.4.2
> Proxy-Connection: Keep-Alive
>
< HTTP/1.1 200 Connection established
<
* Proxy replied OK to CONNECT request
* Initializing NSS with certpath: sql:/etc/pki/nssdb
* CAfile: /etc/pki/tls/certs/ca-bundle.crt
CApath: none
* SSL connection using TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
* Server certificate:
* subject: CN=cms.netwitness.com,OU=Domain Control Validated
* start date: Feb 05 14:22:00 2017 GMT
* expire date: Apr 06 19:37:23 2018 GMT
* common name: cms.netwitness.com
* issuer: CN=Go Daddy Secure Certificate Authority - G2,OU=http://certs.godaddy.com/repository/,O="GoDaddy.com, Inc.",L=Scottsdale,ST=Arizona,C=US
* Server auth using Basic with user 'Live_user'
> GET / HTTP/1.1
> Authorization: Basic c29jZ2VuLmFwOkFTSUxvZzRAbGw=
> User-Agent: curl/7.19.7 (x86_64-redhat-linux-gnu) libcurl/7.19.7 NSS/3.27.1 zlib/1.2.3 libidn/1.18 libssh2/1.4.2
> Host: cms.netwitness.com
> Accept: */*
>
< HTTP/1.1 302 Found
< Server: nginx
< Date: Mon, 29 Jan 2018 12:42:02 GMT
< Transfer-Encoding: chunked
< Connection: keep-alive
< X-Frame-Options: SAMEORIGIN
< Set-Cookie: JSESSIONID=kmdzrashno9t2y3sc9l1af4v;Path=/;Secure;HttpOnly
< Expires: Thu, 01-Jan-1970 00:00:00 GMT
< Content-Language: en-US
< Location: https://cms.netwitness.com/live/home;jsessionid=kmdzrashno9t2y3sc9l1af4v?defaultTitle=RSA+Security+Analytics&useCustomContextMenu=true&timeZoneOffset=GMT%2B00%3A00&notificationsEnabled=true&timeZoneOffsetInMilliSeconds=0&locale=en_US&csrfToken=14e254...
<
* Connection #0 to host Proxy_IP left intact
curl: (3) [globbing] unmatched brace at pos 30

* Closing connection #0

0 Likes
© 2022 RSA Security LLC or its affiliates. All rights reserved.