.png?width=180&height=32&name=NW%20Logo%20(2).png){kind=small}
Netwitness Remote Log Collector service installation fails with node-infra-server error in 11.x
Issue
The Netwitness Remote Log Collector service installation fails with the below error./var/lib/netwitness/config-management/chef-solo.log:
[2022-10-06T11:38:06+00:00] ERROR: Running exception handlers
[2022-10-06T11:38:06+00:00] ERROR: Exception handlers complete
[2022-10-06T11:38:06+00:00] FATAL: Stacktrace dumped to /var/lib/netwitness/config-management/cache/chef-stacktrace.out
[2022-10-06T11:38:06+00:00] FATAL: Please provide the contents of the stacktrace.out file if you file a bug report
[2022-10-06T11:38:06+00:00] FATAL: Mixlib::ShellOut::ShellCommandFailed: nw_pki_bootstrap_launch[bootstrap rsa-nw-node-infra-server] (rsa-node-infra-server::bootstrap line 13) had an error: Mixlib::ShellOut::ShellCommandFailed: execute[node-infra-server-get-operational-csr] (/var/lib/netwitness/config-management/cache/cookbooks/nw-pki/resources/bootstrap_launch.rb line 242) had an error: Mixlib::ShellOut::ShellCommandFailed: Command execution failed. STDOUT/STDERR suppressed for sensitive resource
[2022-10-06T11:38:06+00:00] ERROR: Exception handlers complete
[2022-10-06T11:38:06+00:00] FATAL: Stacktrace dumped to /var/lib/netwitness/config-management/cache/chef-stacktrace.out
[2022-10-06T11:38:06+00:00] FATAL: Please provide the contents of the stacktrace.out file if you file a bug report
[2022-10-06T11:38:06+00:00] FATAL: Mixlib::ShellOut::ShellCommandFailed: nw_pki_bootstrap_launch[bootstrap rsa-nw-node-infra-server] (rsa-node-infra-server::bootstrap line 13) had an error: Mixlib::ShellOut::ShellCommandFailed: execute[node-infra-server-get-operational-csr] (/var/lib/netwitness/config-management/cache/cookbooks/nw-pki/resources/bootstrap_launch.rb line 242) had an error: Mixlib::ShellOut::ShellCommandFailed: Command execution failed. STDOUT/STDERR suppressed for sensitive resource
Cause
This issue is due to node-infra-server files being corrupt.
Resolution
Please follow the below steps to fix the node-infra-server errors.NOTE: Before performing the below steps, kindly take a backup of all the files used as part of the below mentioned steps.
Perform the following on the Remote Log Collector NodeX.
• Stop the node-infra-server using the below command: systemctl stop rsa-nw-node-infra-server
• Navigate to the location: cd /etc/netwitness/node-infra-server
• rm -rf keystore.p12 lockbox*
• rm -rf /etc/systemd/system/rsa-nw-node-infra-server.service.d/rsa-nw-node-infra-server-opts-managed.conf
• rm -rf /etc/pki/nw/service/bootstrap/node-infra-server.completed
• rm -rf /etc/pki/nw/service/rsa-nw-node-infra-server*
• systemctl daemon-reload
• systemctl start rsa-nw-node-infra-server
• chef-client -z -c /var/netwitness/config-management/client.rb -r 'recipe[rsa-node-infra-server]'
If the above steps fail on the first attempt, try re-running the steps from step 1 again. Once successful and if the chef-client command passes, can go ahead with the re-installation of the Remote Log Collection service and it will be successful.
Product Details
RSA Product Set: RSA NetWitness Logs & NetworkRSA Product/Service Type: Core Appliance
RSA Version/Condition: 11.X
Platform: CentOS
O/S Version: 7
Summary
This document outlines the procedure to install the service successfully.
Approval Reviewer Queue
Technical approval queue