The content you are looking for has been archived. View related content below.
[root@WAREHOUSE4 arrayCfg]# ./NwArrayConfig.py --action add --service saw
Failed!: SAW appliances do not support extending storage.
In RSA Security Analytics version 10.5.X and above:
[root@WAREHOUSE4 saTools]# ./NwArrayConfig.py
Failed!: The service type mapr is not one of the services supported for external storage configuration
To add a DAC to the SAW server, follow the steps below:
However, RSA Security Analytics version 10.4.x requires that this package be installed manually.
Note: The rsa-sa-tools-10.5.0.0.44-1.el6.noarch package is attached to this article for installing on version 10.4.X. Upload it to the SAW server using WinSCP and install it using the command below:
# yum install rsa-sa-tools-10.5.0.0.44-1.el6.noarch
# cd /opt/rsa/saTools/appliance/RAID/ # vi arrayDefs.py
NwStrgSrvcs = ['decoder', 'logdecoder', 'concentrator', 'archiver', 'hybrid']to:
NwStrgSrvcs = ['decoder', 'logdecoder', 'concentrator', 'archiver', 'hybrid', 'saw']
Change the section below
from:
# Function which returns a list of DBs and a list of services for appliance type. def get_srvc(): global ApplType, MySrvcLst, theDbDir, SsnRto MySrvcLst = [] theDbDir = [] theDecoder = '' theRslt = GetResp("/bin/rpm -qa|egrep " "'(saw|mapr-emc|concentrator|(log)*decoder(10g)*|archiver|esa-server)-[0-9]'")[0].strip().split() theSrvcs = findall('(saw|mapr|(?:log)*decoder|concentrator|archiver|esa-server)',lst2str(theRslt)) debug('theSrvcs: %s' % theSrvcs) getDcdrTyp = search('((?:log)*decoder(?:10g)*)',lst2str(theSrvcs)) if getDcdrTyp: theDecoder = getDcdrTyp.group(1) if 'archiver' in theSrvcs: MySrvcLst.append('archiver') theDbDir.append('database') if 'concentrator' in theSrvcs: MySrvcLst.append('concentrator') theDbDir.append('metadb') if 'logdecoder' in theSrvcs or 'decoder' in theSrvcs: MySrvcLst.append('%s' % theDecoder) theDbDir.append('packetdb') if 'saw' in theSrvcs or 'mapr' in theSrvcs: MySrvcLst.append('saw') if len(theSrvcs) == 2 and 'concentrator' in theSrvcs and ('logdecoder' in theSrvcs or 'decoder' in theSrvcs): ApplType = 'hybrid' elif len(theSrvcs) == 1: ApplType = theSrvcs[0] else: ApplType = '' info('Service set to "%s"' % ApplType) return theSrvcs
# Function which returns a list of DBs and a list of services for appliance type.
def get_srvc():
global ApplType, MySrvcLst, theDbDir, SsnRto
MySrvcLst = []
theDbDir = []
theDecoder = ''
theRslt = GetResp("/bin/rpm -qa|egrep "
"'(saw|mapr-emc|concentrator|(log)*decoder(10g)*|archiver|esa-server)-[0-9]'")[0].strip().split()
theSrvcs = findall('(saw|mapr|(?:log)*decoder|concentrator|archiver|esa-server)',lst2str(theRslt))
debug('theSrvcs: %s' % theSrvcs)
getDcdrTyp = search('((?:log)*decoder(?:10g)*)',lst2str(theSrvcs))
if getDcdrTyp:
theDecoder = getDcdrTyp.group(1)
if 'archiver' in theSrvcs:
MySrvcLst.append('archiver')
theDbDir.append('database')
if 'concentrator' in theSrvcs:
MySrvcLst.append('concentrator')
theDbDir.append('metadb')
if 'logdecoder' in theSrvcs or 'decoder' in theSrvcs:
MySrvcLst.append('%s' % theDecoder)
theDbDir.append('packetdb')
if 'saw' in theSrvcs or 'mapr' in theSrvcs:
MySrvcLst.append('saw')
if len(theSrvcs) == 2 and 'concentrator' in theSrvcs and ('logdecoder' in theSrvcs or 'decoder' in theSrvcs):
ApplType = 'hybrid'
elif len(theSrvcs) == 1:
ApplType = theSrvcs[0]
ApplType = 'saw' if ApplType == 'mapr' else ApplType
info('Service set to "%s"' % ApplType)
return theSrvcs
./NwArrayConfig.py