Your suggested change has been received. Thank you.

close

Suggest A Change

https://thales.na.market.dpondemand.io/docs/dpod/services/kmo….

Thales Logo

All

  • All
back

CTE-U Health Manager Utility

Troubleshooting/ Debugging CTE-U

search

Troubleshooting/ Debugging CTE-U

This topic is for collecting information for the Support team so that they can help you resolve your issues as efficiently as possible. When you talk to a Support Engineer, they will request this information. Thales recommends gathering this information before calling them.

Warning

Before enabling logs, configure syslog settings to disable rate limiting.

Application level logs for VMD
  • By default, VMD stores its logs in /var/log/vormetric/vorvmd_root.log

To enable the logs:

  1. Go to the appropriate CipherTrust Manager client profile.

  2. Click CLIENT LOGGING CONFIGURATION.

  3. Change log level to debug.

Filesystem level logs

The filesystem information defaults to the syslog file which defaults to:

RHEL, SLES, Oracle Linux, Amazon Linux

    /var/log/messages

Debian

    /var/log/syslog

To enable the FS logs through either secfsd or voradmin:

  1. For persistent logs (persist even after service restart) enable with voradmin:

    voradmin secfs config debug_all {4-8} <GuardPoint>

  2. Restart CTE-U:

    /etc/cte/secfs restart

To set the logs for the current life cycle of the SecFS service, use secfsd: 

    secfsd -log_level {4-8} <GuardPoint>

Note

  • Use the option to enable the logs for a specific GuardPoint. Otherwise, it is not needed.

  • Four is the default value. It indicates that logging is off.

  • Eight is the max value. It indicates the highest debug logging.

Collecting System Information

The debugging steps for CTE-U require collecting system information about the system/OS that is running.

To automatically collect all of the information and create a log file at /var/log/vormetric/cte-xxxxx:

  • Type:

    /usr/bin/cte_u_manager techdump

Collecting CipherTrust Manager Information

  1. Collect the policy information like key name and key type.

  2. In Policies > Policy Elements, collect the resource set name and corresponding definition.

  3. In Policies > Policy Elements, collect the user set name and corresponding definition.

  4. Capture the Settings > Profiles details.

  5. Click on the appropriate Client and collect the GuardPoint status information.

On this page