Article Number
000030761
Applies To
RSA Product Set: Security Analytics
RSA Product/Service Type: Security Analytics UI, Security Analytics Server
RSA Version/Condition: 10.5.0.0
Platform: CentOS
O/S Version: EL6
RSA Product/Service Type: Security Analytics UI, Security Analytics Server
RSA Version/Condition: 10.5.0.0
Platform: CentOS
O/S Version: EL6
Issue
After upgrading from Security Analytics 10.4.x to 10.5, the permissions of roles created prior to the upgrade are missing.
Pre-upgrade:
Image description
Post-upgrade:
Image description
Pre-upgrade:
Image descriptionPost-upgrade:
Image descriptionCause
Security Analytics reads role permissions from the security-policy folder. This issue occurs because in version 10.5, the security-policy folder path is incorrectly set to /opt/rsa/jetty9/target/rsa/ when it should be /var/lib/netwintess/uax/. Due to this wrong path, the 10.4 custom permissions are not shown in the Security Analytics UI.
Resolution
This issue is permanently resolved in Security Analytics 10.5.0.1.
Workaround
To resolve the issue, we would need to copy the security-policy folder from /var/lib/netwintess/uax/ to /opt/rsa/jetty9/target/rsa/.
The steps are:
If you are unsure of any of the steps above or experience any issues, contact RSA Support and quote this article number for further assistance.
The steps are:
- Stop the puppet and jettysrv services.
service puppet stop stop jettysrv
- Go to the /opt/rsa/jetty9/target/rsa/ directory.
cd /opt/rsa/jetty9/target/rsa/
- Rename security-policy folder.
mv security-policy security-policy.old
- Copy the security-policy folder from /var/lib/netwintess/uax/ to the /opt/rsa/jetty9/target/rsa/ directory.
cp -pR /var/lib/netwitness/uax/security-policy/ security-policy/
- Start the puppet and jettysrv services.
service puppet start start jettysrv
If you are unsure of any of the steps above or experience any issues, contact RSA Support and quote this article number for further assistance.
In this article
