Highlighted
antonio.j.rosar Absent Member.
Absent Member.
514 views

Active Directory integration ESM 6.5 patch 2, RHEL 6.6

Hi All,

We are trying to integrate AD Authentication with ArcSight, but we get an error that is not very descriptive.

The ArcSight server is able to reach the AD server via ping, and OpenSSL, so the server is reachable. (We don't have ldapsearch installed, it should not be an issue. I think? ). The configuration is being done via Command Center. 

  1. Would running the managersetupwizard be any different? also for this client it has to be run on console mode because they don't have x11 forwarding, will console mode populate the information just like the GUI version?
  2. Has anybody seen this error below?

Thank you

Antonio

***

com.arcsight.coma.client.gwt.RemoteServiceException:

com.arcsight.tools.coma.service.ServiceException: Failed to test the setup.

   Unknown.yb(StackTraceCreator.java:501)

   Unknown.Db(RemoteServiceException_FieldSerializer.java:36)

   Unknown.Cih(SerializerBase.java:55)

   Unknown.vL(SerializerBase.java:112)

   Unknown.Fgh(AbstractSerializationStreamReader.java:119)

   Unknown.shh(RequestCallbackAdapter.java:216)

   Unknown.Myf(Request.java:287)

   Unknown.gzf(RequestBuilder.java:395)

   Unknown.anonymous(XMLHttpRequest.java:351)

   Unknown.Uhf(Impl.java:189)

   Unknown.Xhf(Impl.java:242)

   Unknown.anonymous(Impl.java:70)

[Service] com.arcsight.tools.coma.service.ServiceException: Failed to test the setup.

com.arcsight.product.management.service.v1.impl.ConfigurationManagementServiceImpl.setAuthenticationInfo

(ConfigurationManagementServiceImpl.java:494)

com.arcsight.product.management.service.v1.impl.AccessControlledConfigurationManagementServiceImpl.setAuthenticationInfo

(AccessControlledConfigurationManagementServiceImpl.java:926)

com.arcsight.product.management.service.v1.gwt.server.ConfigurationManagementServiceImpl.setAuthenticationInfo

(ConfigurationManagementServiceImpl.java:249)

    sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)

    sun.reflect.NativeMethodAccessorImpl.invoke

(NativeMethodAccessorImpl.java:39)

    sun.reflect.DelegatingMethodAccessorImpl.invoke

(DelegatingMethodAccessorImpl.java:25)

    java.lang.reflect.Method.invoke(Method.java:597)

    com.google.gwt.user.server.rpc.RPC.invokeAndEncodeResponse

(RPC.java:561)

    com.google.gwt.user.server.rpc.RemoteServiceServlet.processCall

(RemoteServiceServlet.java:208)

    com.google.gwt.user.server.rpc.RemoteServiceServlet.processPost

(RemoteServiceServlet.java:248)

    com.google.gwt.user.server.rpc.AbstractRemoteServiceServlet.doPost

(AbstractRemoteServiceServlet.java:62)

    javax.servlet.http.HttpServlet.service(HttpServlet.java:641)

    javax.servlet.http.HttpServlet.service(HttpServlet.java:722)

    org.apache.catalina.core.ApplicationFilterChain.internalDoFilter

(ApplicationFilterChain.java:304)

    org.apache.catalina.core.ApplicationFilterChain.doFilter

(ApplicationFilterChain.java:210)

    com.arcsight.coma.servlet.ServerContextFilter.doFilter

(ServerContextFilter.java:56)

    org.apache.catalina.core.ApplicationFilterChain.internalDoFilter

(ApplicationFilterChain.java:243)

    org.apache.catalina.core.ApplicationFilterChain.doFilter

(ApplicationFilterChain.java:210)

    org.apache.catalina.core.StandardWrapperValve.invoke

(StandardWrapperValve.java:224)

    org.apache.catalina.core.StandardContextValve.invoke

(StandardContextValve.java:185)

    org.apache.catalina.authenticator.AuthenticatorBase.invoke

(AuthenticatorBase.java:472)

    org.apache.catalina.core.StandardHostValve.invoke

(StandardHostValve.java:151)

    org.apache.catalina.valves.ErrorReportValve.invoke

(ErrorReportValve.java:100)

    org.apache.catalina.core.StandardEngineValve.invoke

(StandardEngineValve.java:118)

    org.apache.catalina.connector.CoyoteAdapter.service

(CoyoteAdapter.java:405)

    org.apache.coyote.http11.Http11Processor.process

(Http11Processor.java:269)

    org.apache.coyote.AbstractProtocol$AbstractConnectionHandler.process

(AbstractProtocol.java:515)

    org.apache.tomcat.util.net.JIoEndpoint$SocketProcessor.run

(JIoEndpoint.java:302)

    java.util.concurrent.ThreadPoolExecutor$Worker.runTask

(ThreadPoolExecutor.java:895)

    java.util.concurrent.ThreadPoolExecutor$Worker.run

(ThreadPoolExecutor.java:918)

    java.lang.Thread.run(Thread.java:662)

[Service] Failed to test the setup.

com.arcsight.product.management.service.v1.impl.ConfigurationManagementServiceImpl.setAuthenticationInfo

(ConfigurationManagementServiceImpl.java:479)

com.arcsight.product.management.service.v1.impl.AccessControlledConfigurationManagementServiceImpl.setAuthenticationInfo

(AccessControlledConfigurationManagementServiceImpl.java:926)

com.arcsight.product.management.service.v1.gwt.server.ConfigurationManagementServiceImpl.setAuthenticationInfo

(ConfigurationManagementServiceImpl.java:249)

    sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)

    sun.reflect.NativeMethodAccessorImpl.invoke

(NativeMethodAccessorImpl.java:39)

    sun.reflect.DelegatingMethodAccessorImpl.invoke

(DelegatingMethodAccessorImpl.java:25)

    java.lang.reflect.Method.invoke(Method.java:597)

    com.google.gwt.user.server.rpc.RPC.invokeAndEncodeResponse

(RPC.java:561)

    com.google.gwt.user.server.rpc.RemoteServiceServlet.processCall

(RemoteServiceServlet.java:208)

    com.google.gwt.user.server.rpc.RemoteServiceServlet.processPost

(RemoteServiceServlet.java:248)

    com.google.gwt.user.server.rpc.AbstractRemoteServiceServlet.doPost

(AbstractRemoteServiceServlet.java:62)

    javax.servlet.http.HttpServlet.service(HttpServlet.java:641)

    javax.servlet.http.HttpServlet.service(HttpServlet.java:722)

    org.apache.catalina.core.ApplicationFilterChain.internalDoFilter

(ApplicationFilterChain.java:304)

    org.apache.catalina.core.ApplicationFilterChain.doFilter

(ApplicationFilterChain.java:210)

    com.arcsight.coma.servlet.ServerContextFilter.doFilter

(ServerContextFilter.java:56)

    org.apache.catalina.core.ApplicationFilterChain.internalDoFilter

(ApplicationFilterChain.java:243)

    org.apache.catalina.core.ApplicationFilterChain.doFilter

(ApplicationFilterChain.java:210)

    org.apache.catalina.core.StandardWrapperValve.invoke

(StandardWrapperValve.java:224)

    org.apache.catalina.core.StandardContextValve.invoke

(StandardContextValve.java:185)

    org.apache.catalina.authenticator.AuthenticatorBase.invoke

(AuthenticatorBase.java:472)

    org.apache.catalina.core.StandardHostValve.invoke

(StandardHostValve.java:151)

    org.apache.catalina.valves.ErrorReportValve.invoke

(ErrorReportValve.java:100)

    org.apache.catalina.core.StandardEngineValve.invoke

(StandardEngineValve.java:118)

    org.apache.catalina.connector.CoyoteAdapter.service

(CoyoteAdapter.java:405)

    org.apache.coyote.http11.Http11Processor.process

(Http11Processor.java:269)

    org.apache.coyote.AbstractProtocol$AbstractConnectionHandler.process

(AbstractProtocol.java:515)

    org.apache.tomcat.util.net.JIoEndpoint$SocketProcessor.run

(JIoEndpoint.java:302)

    java.util.concurrent.ThreadPoolExecutor$Worker.runTask

(ThreadPoolExecutor.java:895)

    java.util.concurrent.ThreadPoolExecutor$Worker.run

(ThreadPoolExecutor.java:918)

    java.lang.Thread.run(Thread.java:662)

Labels (5)
0 Likes
3 Replies
acappelli Contributor.
Contributor.

Re: Active Directory integration ESM 6.5 patch 2, RHEL 6.6

To authenticate AD and Arcsight you will have to run the managersetup.  You must select AD for authentication when you are prompted and then enter the parameters such as the ad Hostname, the correct port for SSL or not. It can get tricky when entering the DC and the USER DN.  Also make sure that the people who will be using your set up are in a special group on the AD, i.e Arcsight_Users, you will be prompted for which groups to allow.

Once you get to the  enter the username password for the test of AD, in the managerrsetup, you will know if you enter the parameters correctly.  Then restart the manager

0 Likes
antonio.j.rosar Absent Member.
Absent Member.

Re: Active Directory integration ESM 6.5 patch 2, RHEL 6.6

Hi Angelo, thanks for the reply.

Do you know if managersetup pre-populates the information in console mode (non GUI)?

Thanks

Antonio

0 Likes
acappelli Contributor.
Contributor.

Re: Active Directory integration ESM 6.5 patch 2, RHEL 6.6

Antonio,

The manager setup will retain the information that you have entered previously in the setup.  Your previous answers  should show up as the default for each question in the managersetup within brackets[ ].

Hope this helps


0 Likes
The opinions expressed above are the personal opinions of the authors, not of Micro Focus. By using this site, you accept the Terms of Use and Rules of Participation. Certain versions of content ("Material") accessible here may contain branding from Hewlett-Packard Company (now HP Inc.) and Hewlett Packard Enterprise Company. As of September 1, 2017, the Material is now offered by Micro Focus, a separately owned and operated company. Any reference to the HP and Hewlett Packard Enterprise/HPE marks is historical in nature, and the HP and Hewlett Packard Enterprise/HPE marks are the property of their respective owners.