Professional Documents
Culture Documents
S
Hello Sbehrens,
Have you configured any PatrolAgents to ³phone home´? If not, the following knowledge article
may be of some use. If you have, the diagnostic methodology at the bottom may be of some use.
I apologize for the amount of information below but there¶s a lot that needs to be considered.
Overview of the new features available with 3.8.50 PatrolAgent (phone home feature)
and BPPM 8.5 Automated Work Flow.
Some of the information below comes directly from the PatrolAgent Reference
Manual and ProactiveNet Administrator Guides. Some of the information is based
on observation.
Starting with BPPM 8.5, the PATROL Proxy is referred to as "Integration Service"
Deleting the remote BMC ProactiveNet Agent also deletes the associated adapter
instance. This is true even for PATROL Agents earlier than version 3.8.50, once they
are configured manually with the Integration Service. However, all information
pertaining to application classes (such as KPI, graph by default, and so on) may not
be synchronized.
The PatrolAgent Phone Home feature is available with 3.8.50 PatrolAgent or higher.
This feature allows you to configure the PatrolAgent to "phone home" (this is like
registering) to 8.5 or higher PATROL Proxy in 8.5 or higher ProactiveNet.
The Automated Work Flow feature is available starting with 8.5.00 ProactiveNet.
In previous versions of ProactiveNet, the procedure to configure the PATROL
Adapter was somewhat involved. The Automated Work Flow changes the work flow
so that ALL PATROL appClasses are imported automatically and do not need to
be manually selected for import. Once a PatrolAgent is registered (i.e.
PatrolAgent has "phoned home"), ALL appClasses will be automatically imported
and data will begin to flow into ProactiveNet.
As a user, you only have to configure the PATROL Agent to connect to the
Integration Service. You do not have to re-import the monitor types whenever
there is a new application class or changes to existing parameters.
Note: The version of the PATROL Agent must be 3.8.50 and later.
Note: Only numeric parameter data is imported into ProactiveNet from PATROL.
3. Initially (i.e. before any PatrolAgents are configured with Phone Home
variable, /AgentSetup/integration/integrationServices) there
will not be any Application Classes available for Auto-sync. This
can be seen by going to MB3=>Adapters=>Edit.
4. Starting with 8.5, when the PATROL Proxy is configured the staging
adapter (sadapter.exe) listens on port 3183 for PatrolAgents that
want to phone home.
PATROL_CONFIG
"/AgentSetup/integration/integrationServices" = { REPLACE = "tcp:aus-ngp-vm176:3183" }
This can be configured post-install. Applying this ruleSet will take effect
immediately.
6. Once the PatrolAgent has been configured to "phone home", it will get added to the
SADEFAULT_ profile in the Adapter and appClasses will get registered and data will
start flowing into ProactiveNet. You can see the appClasses that have been imported
by going to MB3=>Adapters=> If the Patrolagent is not available in the Integration Service, then we need
to check if the Patrolagent is configured properly
c Check and obtain the PatrolAgent .errs file (for any security errors). Additional PatrolAgent debug
log will also help in narrowing down the problem.
c In this current issue, since the windows agent has already registered itself with the Integration
Service,
there shouldn¶t be any configuration issues with the Integration Service. However, if required, the
Integration
Service configuration with respect to security may need to be checked.
c Check the .errs log for the Staging adapter (for any security related errors).
C> If the PatrolAgent is available in the Integration Service, then we need to check if there are any data
collection issues. This can be checked using CLI commands (/PATROL/query/getAgentDetails).
D> If the data collection for the PatrolAgent is correct, then further investigation needs to be carried out from
the PATROL Adapter perspective.
Enable debug on BPPM Agent to check the output of query fire on proxy.
Go to Tools>Configure>Integration Service>Configure Integration Service.
Check PNNSInterface.log for following last entry of pw:
It will list down the Patrol Agent retrived from proxy. For e.g.
Re: Failures during configuration of PATROL proxy / Integration ServiceCONTENT LENGTH = 592
Re: Failures during configuration of PATROL proxy / Integration ServiceSTATUS = OK
Re: Failures during configuration of PATROL proxy / Integration Service
Re: Failures during configuration of PATROL proxy / Integration ServiceAGENT_NAME=vm-w23-rds
Re: Failures during configuration of PATROL proxy / Integration ServiceIP_ADDRESS=
Re: Failures during configuration of PATROL proxy / Integration ServiceDEVICE_TOKEN_ID=
Re: Failures during configuration of PATROL proxy / Integration ServicePORT=3182
Re: Failures during configuration of PATROL proxy / Integration ServiceSTATUS=CONNECTED
Re: Failures during configuration of PATROL proxy / Integration ServicePROFILE_NAME=__Default
Re: Failures during configuration of PATROL proxy / Integration ServicePARENT_FQDN=
Re: Failures during configuration of PATROL proxy / Integration ServicePROVIDER_AGENT=
Re: Failures during configuration of PATROL proxy / Integration ServiceDEVICE_TYPE=
Re: Failures during configuration of PATROL proxy / Integration
ServiceLAST_COLLECTION_TIME=1290148052
Re: Failures during configuration of PATROL proxy / Integration Service
Re: Failures during configuration of PATROL proxy / Integration ServiceAGENT_NAME=w23-pcore-
m01:3181
Re: Failures during configuration of PATROL proxy / Integration ServiceIP_ADDRESS=
Re: Failures during configuration of PATROL proxy / Integration ServiceDEVICE_TOKEN_ID=
Re: Failures during configuration of PATROL proxy / Integration ServicePORT=3181
Re: Failures during configuration of PATROL proxy / Integration ServiceSTATUS=CONNECTED
Re: Failures during configuration of PATROL proxy / Integration ServicePROFILE_NAME=w23-pcore-
m01:3181
Re: Failures during configuration of PATROL proxy / Integration ServicePARENT_FQDN=
Re: Failures during configuration of PATROL proxy / Integration ServicePROVIDER_AGENT=
Re: Failures during configuration of PATROL proxy / Integration ServiceDEVICE_TYPE=
Re: Failures during configuration of PATROL proxy / Integration
ServiceLAST_COLLECTION_TIME=1290148051
Re: Failures during configuration of PATROL proxy / Integration Service
I'm having trouble getting the Phone Home feature to work for a Unix PatrolAgent:
I installed 8.5 ProactiveNet Server and a remote agent on a Windows system (same box).
I installed a 3.8.50 PatrolAgent on a Solaris 9 box (kimura.bmc.com). It's a fresh install.
Initially, I did not choose "overwrite previous security" but did another install and chose this option.
I've configured "/AgentSetup/integration/integrationServices" = { REPLACE = "tcp:aus-ngp-
vm176.bmc.com:3183" }
but the Phone Home doesn't seem to work.
I've checked all of the points below. It seems to me that all that should be required is to do the install,
do the phone home configuration, and it should work without any other changes. Please take a look at the
attached logs and let me know what additional steps are needed to get this to work.
Sat Nov 20 00:52:11 2010: ESS Error: Security policy is either missing or unreadable: SOFTWARE\BMC
Software\Patrol\SecurityPolicy_v3.0\pns\common SOFTWARE\BMC
Software\Patrol\SecurityPolicy_v3.0\pns\server SOFTWARE\BMC
Software\Patrol\SecurityPolicy_v3.0\pns\common SOFTWARE\BMC
Software\Patrol\SecurityPolicy_v3.0\pns\server >-4-4<
Mon Nov 22 17:12:00 2010: ID 10205a: I: Binding PatrolAgent to port 3181 ..."
These errors indicate a problem on the PatrolAgent side related to initialization of ESS:
This problem on the PatrolAgent side could be that the security scripts didn't get executed during the
installation. If that is the case, you should be able to rectify the problem by running the following
command as root: ./agent_configure.sh -d
A potential reason that /etc/patrol.d isn't getting updated by agent_configure.sh was that the "Overwrite
current security
configuration (keys, certificates and trusted roots)" selection was set to "No" during the installation.
Edit the ./Patrol3/agent_configure.sh script file and look for the following lines:
CUSTOMER_SECURITY_LEVEL=0
SECURITY_OVERWRITE=FALSE
If SECURITY_OVERWRITE is set to FALSE, make a backup copy of the original agent_configure.sh file,
change FALSE to TRUE,
save the file, and execute it as ROOT: ./agent_configure.sh -d