This website uses cookies. By clicking Accept, you consent to the use of cookies. Click Here to learn more about how we use cookies.
Accept
Reject
Register Now
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
NetWitness Knowledge Base Archive
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

File Collection logs are not coming to RSA Security Analytics post upgrade to 10.5.1.2 or 10.6.0.0

Article Number

000033100

Applies To

RSA Product Set: Security Analytics
RSA Product/Service Type: SA Security Analytics Server (AIO), SA Log Collector, SA Log Decoder, SA Log Hybrid, SA Virtual Log Collector
RSA Version/Condition: 10.6.0.0,10.5.1.2
 

Issue

Post upgrade to 10.5.1.2/10.6.0.0 versions, the File collection logs are not coming into Security Analytics.

Cause

This issue is due to SELINUX settings in /etc/sysconfig/selinux file.

Resolution

Please follow below steps for getting File collection logs.

1. Login to putty session of Logcollector service.
2. Please edit /etc/sysconfig/selinux file to change SELINUX value as below.

SELINUX=disabled

3. Reboot the appliance.
4. Verify the Filecollection logs using Investigation page.
0 Likes
Was this article helpful? Yes No
No ratings

In this article

Version history
Last update:
‎2020-12-13 12:41 AM
Updated by:
Administrator Administrator

Related Content

© 2022 RSA Security LLC or its affiliates. All rights reserved.