.png?width=180&height=32&name=NW%20Logo%20(2).png){kind=small}
RabbitMQ has a corrupted truststore after a SecOps integration with RSA Security Analytics
Issue
The RabbitMQ service is showing the following error in /var/log/messages:
Nov 27 15:57:59 RSA-VLC nw[1807]: [BufferedChannel] [failure] An error occurred publishing to an AMQP channel: Error in setting CA certificate for socket
Cause
This issue occurs because the RabbitMQ truststore.pem file was corrupted due to a SecOps integration and must be replaced with a previous,working version.Resolution
To resolve the issue, follow the steps below.- SSH to the SA server as the root user.
- Change directory to /etc/puppet/modules/rabbitmq/files
- Backup current truststore.pem file:
cp truststore.pem truststore.pem.old
- Replace the current truststore.pem with a good one.
- SSH to each appliance
- Change directory to /etc/rabbitmq/ssl
- Backup the current truststore.pem:
mv truststore.pem truststore.pem.old
- Run puppet agent -t on every appliance
- Restart the rabbitmq service:
service rabbitmq-server restart
If you are unsure of any of the steps above or experience any issues, contact RSA Support and quote this article number for further assistance.
Product Details
RSA Product Set: Security Analytics, Security Operations Management (SecOps)RSA Version/Condition: 10.5.x, 10.4.x
Platform: CentOS
Platform (Other): RabbitMQ
O/S Version: EL6
Approval Reviewer Queue
Technical approval queue