ACS 5.5/var logs

Similar Questions

• 5.2 Server postfix logging is more to /var/log/mail.log

  I would like to know if anyone else has this problem?

  After update macOS Sierra and Server 5.2, I get no message Postfix in /var/log/mail.log (aka SMTP Log).  I've never had a problem to see messages from postfix here before.  I defining all postfix mail log "info".

  I do not process messages greylisting Policy logging /var/log/mail.log.  Thus, the file seems to work in general.  But, no tricks postfix.

  Does anyone else have this problem?

  Same here, tried changing in debugging without result. Tried to change with the Terminal using serveradmin settings messaging or (I know you shouldn't do) editing the main.cf, also changed the com.apple.mail in the directory/etc/asl of notices info or debug nada!

  so, if anyone finds the solution? Please share

• WARNING: The system file "/ var/log ' reached out to space

  I have a DMM version 5.2.

  When entering the DMM via SSH or console shows me the following sentence:

  WARNING: The system file "/ var/log ' reached out to space

  How can I fix this error?

  I await your comments.

  Concerning

  Hi Aurelius,

  If the newspapers of cleaning did not help them (which I expect to). You can run in a known defect, this problem occurs because as the access_log does not turn properly after we reach the limit of size.

  The Cisco default is #.

  CSCti86040 - Access_log not turning or delete when erasing logs on DMM

  This default is set in point 5.2.2 release of code, but you can open a TAC case and we can remove the access_log journal and apply the workaround for the same thing.

  Thank you

  Sagar Dhanrale

• Directory to the/var/log/apache2 vRA device is not even after installing successfully

  VMware KB: Log locations for VMware vRealize Automation 7.x

  

  Installation of vRA succeeded him, but there is no ' / var/log/apache2 / * "vRA device." So I can't check if the apache is working properly. Everyone sees this directory?

  Apache is more used than the reverse proxy (we now use HAProxy), that the document should be updated.

  Thank you shouting it!

  Grant

• At all times the value/var/log/messages * mode 644

  What process constantly changes/var/log/messages * mode back to the 640? I want to disable that. Thank you.

  I'd guess logrotate.  Have you checked /etc/logrotate.d/syslog?  It does not specify a particular permission?

  If not specified, logrotate should retain the existing file permissions.

  Marc

• mpt2sas posts in /var/log/vmkernel.log?

  Hi I just noticed all four of my HP DL380 G8 ESXi hosts 5 are tons of these messages in the/var/log/vmkernel log.  All LUNS seems to be showing / work very well, but you wonder what the messages mean?  The hosts are connected to a HP P2000 G3 via direct SAS controllers.  Any ideas?  Thank you

  (2013 07-19 T 19: 08:37.218Z cpu31:10040) mpt2sas0 < 3 >: _csmisas_ssp_passthru (): 1987: device with addr 0x500003934829a3ee not found!

  (2013 07-19 T 19: 08:37.218Z cpu31:10040) mpt2sas0 < 3 >: _csmisas_ssp_passthru (): 1987: device with addr 0x500003934829a5fa not found!

  (2013 07-19 T 19: 08:37.218Z cpu31:10040) mpt2sas0 < 3 >: _csmisas_ssp_passthru (): 1987: device with addr 0x50000393482982e2 not found!

  (2013 07-19 T 19: 08:37.218Z cpu31:10040) mpt2sas0 < 3 >: _csmisas_ssp_passthru (): 1987: device with addr 0x500003935809e412 not found!

  (2013 07-19 T 19: 08:37.218Z cpu31:10040) mpt2sas0 < 3 >: _csmisas_ssp_passthru (): 1987: device with addr 0x50000393482a8822 not found!

  (2013 07-19 T 19: 08:37.218Z cpu31:10040) mpt2sas0 < 3 >: _csmisas_ssp_passthru (): 1987: device with addr 0x50000393580bc646 not found!

  (2013 07-19 T 19: 08:37.218Z cpu31:10040) mpt2sas0 < 3 >: _csmisas_ssp_passthru (): 1987: device with addr 0x500003934829965a not found!

  (2013 07-19 T 19: 08:37.218Z cpu31:10040) mpt2sas0 < 3 >: _csmisas_ssp_passthru (): 1987: device with addr 0x5000c5005a694bc5 not found!

  (2013 07-19 T 19: 08:37.218Z cpu31:10040) mpt2sas0 < 3 >: _csmisas_ssp_passthru (): 1987: device with addr 0x5000c5005a594251 not found!

  For others who may have this problem, of course, mistakes were cosmetic and have been resolved by installing the latest 'HP ESXi Offline Bundle for VMware ESXi 5.x "

• /var/log/boot.gz

  I guess that this file is created at startup and then gzip'd for archival purposes.

  So, question:

  -Is this file crashed every time you start it gets archived/moved/saved for historical reference, or is it just added/joint at each start-up phase?

  THX.

  Guardian1234 wrote:

  -Is this file crashed every time you start it gets archived/moved/saved for historical reference, or is it just added/joint at each start-up phase?

  I did two reboots of a 5.1 ESXi host and the boot.gz was that 30506 bytes in the first case and after the second reboot 30416 bytes. A large amount of new lines has been added, but the size was still a few bytes less. This strongly tells me that the file is overwritten each time you start. (Server on a persistent storage as well).

  You could read the file with zcat /var/log/boot.gz | more.

• Is it safe to delete the log file in/private/var/log/vnetlib?

  [Fusion 4.1.2 / Lion 10.7.4]

  My vnetlib log file is greater than 22 MB in size and has > K 250 lines of entries dating back to September 2011. Is it safe to delete this log file? A planning at startup, remove the file and then do a restart immediately after to restart VMWare network components - and we hope to recreate a new empty file. I tried erasing the contents of the file via the Terminal but do not have sufficient permissions, even with sudo - guess it was because the VMWare networking processes running at the time.

  Thank you

  John

  If you do not experience network problems, then it is safe to delete.

  I had no problem to remove in a Terminal (while VMware Fusion is running) by using the following command in (although I would recommend VMware Fusion of closing first and it doesn't have to be done in safe mode).

  sudo rm -f /var/log/vnetlib
  

  Just curious, what the big problem is why you want to delete, 22 MB is not that big a deal.

• / var/log - safe to delete files

  Hi all

  On 1 of my hosts ESX file/var/log has grown to the point its me cause problems creating VM etc... look at the files in this folder are large size particularly sercure.1 and secure.2 (more than 200 MB) my question is, is - it safe to delete these files? I have also a lot of vmkernel.* is also safe to empty these files?

  Thank you

  The files that you see with le.1,.2,... extensions are newspapers archived resulting from the rotation of log files. Log files are usually shot based on their size, or when a host or VM is powered. You can remove these log files rotated if you want to free up disk space. I do not recommend you delete the files '.log', because they are usually the current criteria (except for virtual machine logs).

  However, if the log files have this size, there must be a reason for this. I would recommend that you first take a peek in log files to see if there is an issue that must be resolved before you delete.

  André

• Display of warning under/var/log/vmkwarning

  Please tell me the meaning of the newspapers showing under/var/log/vmkwarning

  6 February 20:43 DPE22 vmkernel: 0:00:15:42.849 cpu11:4119) WARNING: ScsiUid: 263: path 'vmhba3:C0:T0:L113': supports ANSI version 0 x 2 and a UID could not be extracted from the details of the INVESTIGATION. To be used with ESX, a device must support the SCSI 3 Protocol.

  6 February 20:43 DPE22 vmkernel: 0:00:15:42.850 cpu11:4119) WARNING: ScsiUid: 263: path 'vmhba3:C0:T0:L115': supports ANSI version 0 x 2 and a UID could not be extracted from the details of the INVESTIGATION. To be used with ESX, a device must support the SCSI 3 Protocol.

  6 February 20:43 DPE22 vmkernel: 0:00:15:42.850 cpu12:4119) WARNING: ScsiUid: 263: path 'vmhba3:C0:T0:L116': supports ANSI version 0 x 2 and a UID could not be extracted from the details of the INVESTIGATION. To be used with ESX, a device must support the SCSI 3 Protocol.

  6 February 20:43 DPE22 vmkernel: 0:00:15:42.851 cpu12:4119) WARNING: ScsiUid: 263: path 'vmhba3:C0:T0:L117': supports ANSI version 0 x 2 and a UID could not be extracted from the details of the INVESTIGATION. To be used with ESX, a device must support the SCSI 3 Protocol.

  6 February 20:43 DPE22 vmkernel: 0:00:15:42.852 cpu12:4119) WARNING: ScsiUid: 263: path 'vmhba3:C0:T0:L118': supports ANSI version 0 x 2 and a UID could not be extracted from the details of the INVESTIGATION. To be used with ESX, a device must support the SCSI 3 Protocol.

  6 February 20:43 DPE22 vmkernel: 0:00:15:42.852 cpu12:4119) WARNING: ScsiUid: 263: path 'vmhba3:C0:T0:L119': supports ANSI version 0 x 2 and a UID could not be extracted from the details of the INVESTIGATION. To be used with ESX, a device must support the SCSI 3 Protocol.

  6 February 20:43 DPE22 vmkernel: 0:00:15:42.854 cpu12:4119) WARNING: ScsiUid: 263: path 'vmhba3:C0:T0:L120': supports ANSI version 0 x 2 and a UID could not be extracted from the details of the INVESTIGATION. To be used with ESX, a device must support the SCSI 3 Protocol.

  6 February 20:43 DPE22 vmkernel: 0:00:15:42.856 cpu12:4119) WARNING: ScsiUid: 263: path 'vmhba3:C0:T0:L121': supports ANSI version 0 x 2 and a UID could not be extracted from the details of the INVESTIGATION. To be used with ESX, a device must support the SCSI 3 Protocol.

  6 February 20:43 DPE22 vmkernel: 0:00:15:42.857 cpu12:4119) WARNING: ScsiUid: 263: path 'vmhba3:C0:T0:L122': supports ANSI version 0 x 2 and a UID could not be extracted from the details of the INVESTIGATION. To be used with ESX, a device must support the SCSI 3 Protocol.

  6 February 20:43 DPE22 vmkernel: 0:00:15:42.857 cpu12:4119) WARNING: ScsiUid: 263: path 'vmhba3:C0:T0:L24': supports ANSI version 0 x 2 and a UID could not be extracted from the details of the INVESTIGATION. To be used with ESX, a device must support the SCSI 3 proto

  http://KB.VMware.com/kb/1005885

• vmware var log base file

  Hello

  Trying to do a cleaning on our box ESX3.  There are a lot of old log files accumulate so we removed most of them.  Can someone explain the "core" file/s in/var/log/vmware /?  There are much more like core.1234, core.8793 etc and we are not really sure what they are since then, except that they were 2007 unlike the one below;

  # ls - lh, / var/log/vmware

  total of 206 M

  -rw - 1 root root 163M 13 April 2009 core

  service console core dumps unannounced? You can remove...

  Duncan

  VMware communities user moderator | VCP | VCDX

  -

• Warning in the file/var/log/vmkwarning on an ESX Server:

  I ESX3.5 U2 set up with SAN, I get a warning message in the file/var/log/vmkwarning that says the following:

  VMkernel WARNING: Scsi id: 550: supports ANSI version ' SCSI-2' (0x2).» Be used with ESX a device must support the SCSI 3 Protocol.

  Should I be concerned and action?

  see this KB article

  http://KB.VMware.com/kb/1005885

  .. .and U4 seems to solve a difficulty

  http://KB.VMware.com/kb/1007971

• / var/log is full. Best practices?

  One of the score of the newspaper of our host is 100% full. I'm not the practice administrator for this host, but manage/deploy the virtual machines it for others to use.

  I was wondering what's the best practice to deal with a more complete log partition? I found an article that mentioned editing the file /etc/logrotate.d/vmkernel/ so that files

  be compressed more often and saved for less often, but there was no real clear instructions on what to change and how.

  Is the only way to investigate on the console itself or the directory/var/log via putty? No there is no way to see VIC?

  Thank you

  Hello

  To solve the immediate problem, I would transfer to any newspaper in/var/log with a number at the end is dire.1,.2, etc. to a temporary storage outside the ESX host location. You could run something similar to the following command of the scp to do:

  scp /var/log/*.[0-9]* /var/log/*/*.[0-9]* host:TemporaryDir
  

  Or you can use winscp to transfer of the ESX host in a windows box. A you get the files from existing logs from the system for later playback, use the following to clear the space:

  cd /var/log; rm *.[0-9]* */*.[0-9]*
  

  I would therefore consist logrotation thus directed by hardening for VMware ESX.

  Best regards, Edward L. Haletky VMware communities user moderator, VMware vExpert 2009
  "Now available on Rough Cuts: url = http://www.astroarch.com/wiki/index.php/VMware_Virtual_Infrastructure_Security' VMware vSphere (TM) and Virtual Infrastructure Security: ESX security and virtual environment ' [url]
  Also available url = http://www.astroarch.com/wiki/index.php/VMWare_ESX_Server_in_the_Enterprise"VMWare ESX Server in the enterprise" [url]
  [url =http://www.astroarch.com/wiki/index.php/Blog_Roll] SearchVMware Pro [url] | URL = http://www.astroarch.com/blog Blue Gears [url] | URL = http://www.astroarch.com/wiki/index.php/Top_Virtualization_Security_Links Top security virtualization [url] links | URL = http://www.astroarch.com/wiki/index.php/Virtualization_Security_Round_Table_Podcast Virtualization Security Table round Podcast [url]

• Cisco ACS 3.1 and Logging of Nortel Passport CLI commands

  Good afternoon

  We try to log commands CLI Cisco ACS version 3.1 of Nortel Passport 8600. The version of the code that runs on the Passport does not support Ganymede +.

  Passports authenticate OK but don't sign any order information. I "think" the problem is maybe that the VSA Radius of Nortel for cli-commands-attribute, 195, is not collected by ACS.

  Does anyone know how I would go to get this added to the existing list of Radius (Nortel) VSA?

  Thank you very much

  Kind regards

  Flett.

  Foisy,

  You must add the attribute Nortel 193-195 to activate the posting of the order.

  Unfortunately you can't download on code 3.x, you will need to upgrade acs to the 4.x code.

  Kind regards

  ~ JG

  Note the useful messages

• Version of Cisco ACS 1121 5.3 - logging

  Hello

  I am new to Cisco ACS 5.X. What I've read, the Cisco ACS can act as a logging server. Does this mean, all messages from syslog to all other network and ACS devices can be stored by ACS? I'm a little confused on that part.

  Finally, I understand that Cisco ACS has many or perhaps 2 instances? When we use these instance? What is this instance?

  Kind regards

  RAM

  In the deployment, you must specify an acs as the Logcollector server. All other servers send the logs to the Logcollecter.

  http://www.Cisco.com/en/us/docs/net_mgmt/cisco_secure_access_control_sys...

  In a distributed deployment, each acs server is an instance. If you have a main instance and multiple secondary instances.

  http://www.Cisco.com/en/us/docs/net_mgmt/cisco_secure_access_control_sys...

  Sent by Cisco Support technique iPad App