Log Server Error Reference for Web Protection Solutions

Similar documents
Web Security Log Server Error Reference

DC Agent Troubleshooting

User Service and Directory Agent: Configuration Best Practices and Troubleshooting

Moving the Web Security Log Database

Moving the TRITON Reporting Databases

Delegated Administration Quick Start

TRITON - Web Security Help

TRITON - Web Security Help

Websense Support Webinar: Questions and Answers

How To Upgrade A Websense Log Server On A Windows 7.6 On A Powerbook (Windows) On A Thumbdrive Or Ipad (Windows 7.5) On An Ubuntu (Windows 8) Or Windows

Transparent Identification of Users

Integrated Citrix Servers

Reporting Installation Checklist

Using LDAP Authentication in a PowerCenter Domain

Upgrading Websense Web Security Software

Filtering remote users with Websense remote filtering software v7.6

Using Logon Agent for Transparent User Identification

Remote Filtering Software

Installation Guide. Websense TRITON Enterprise. v7.8.x

Understand Troubleshooting Methodology

Backup and Restore FAQ

Changing the C Interface IP Address: step-by-step

Remote Filtering Software

Installation Guide. Websense TRITON APX. v8.1.x

FileNet P8 Platform Directory Service Migration Guide

Using DC Agent for Transparent User Identification

Disaster Recovery. Websense Web Security Web Security Gateway. v7.6

ONSITE TESTING TROUBLESHOOTING GUIDE

Tableau Server Trusted Authentication

Upgrade Guide BES12. Version 12.1

WhatsUp Gold v16.2 Installation and Configuration Guide

WhatsUp Gold v16.1 Installation and Configuration Guide

Installation Guide Supplement

Unicenter Workload Control Center r1 SP4. Server Status Troubleshooting Guide

Click Studios. Passwordstate. Installation Instructions

Using RADIUS Agent for Transparent User Identification

Network Agent Quick Start

Informatica Corporation Proactive Monitoring for PowerCenter Operations Version 3.0 Release Notes May 2014

System Administration Guide

Remote Filtering. Websense Web Security Websense Web Filter. v7.1

Configuration Guide. Websense Web Security Solutions Version 7.8.1

PRODUCT VERSION: LYNC SERVER 2010, LYNC SERVER 2013, WINDOWS SERVER 2008

Enterprise Network Deployment, 10,000 25,000 Users

Configuration Manager Error Messages

User and Group-Based Reporting in TRITON - Web Security: Best Practices and Troubleshooting

v7.8.1 Release Notes for Websense Web Security

WhatsUp Gold v16.3 Installation and Configuration Guide

SAM Server Utility User s Guide

Monitoring Replication

McAfee One Time Password

PC Power Down. MSI Deployment Guide

FileMaker Server 15. Getting Started Guide

Websense Certified Engineer Web Security Professional Examination Specification

JAMF Software Server Installation Guide for Windows. Version 8.6

Oracle Enterprise Single Sign-On Provisioning Gateway. Administrator's Guide Release E

Automation Engine 14. Troubleshooting

Contents. Platform Compatibility. GMS SonicWALL Global Management System 5.0

Very Large Enterprise Network Deployment, 25,000+ Users

JAMF Software Server Installation Guide for Linux. Version 8.6

HYPERION SYSTEM 9 N-TIER INSTALLATION GUIDE MASTER DATA MANAGEMENT RELEASE 9.2

Burst Technology bt-loganalyzer SE

Installation Guide. Websense Web Security Websense Web Filter. v7.1

Reconfiguring VMware vsphere Update Manager

Installation Notes for Outpost Network Security (ONS) version 3.2

Configuring User Identification via Active Directory

v5.2 Installation Guide for Websense Enterprise v5.2 Embedded on Cisco Content Engine

SOA Software: Troubleshooting Guide for Agents

Install Guide - Multi-User Licenses

v7.8.2 Release Notes for Websense Content Gateway

Webinar Information. Title: Websense Remote Filtering Audio information: Dial-in numbers:

Very Large Enterprise Network, Deployment, Users

Tableau Server Trusted Authentication

Integrating LANGuardian with Active Directory

Error Codes for F-Secure Anti-Virus for Firewalls, Windows 6.20

FileMaker Server 14. FileMaker Server Help

Docufide Client Installation Guide for Windows

Installation Guide: Delta Module Manager Launcher

Configuration Guide. BES12 Cloud

Websense Web Security Gateway: Integrating the Content Gateway component with Third Party Data Loss Prevention Applications

Click Studios. Passwordstate. Installation Instructions

AVG Business SSO Connecting to Active Directory

IceWarp to IceWarp Server Migration

WatchDox SharePoint Beta Guide. Application Version 1.0.0

Tool Tip. SyAM Management Utilities and Non-Admin Domain Users

Integrated Cisco Products

Avatier Identity Management Suite

Error Code Quick Reference Guide Updated 01/28/2015

Deploying Intellicus Portal on IBM WebSphere

Installation and Configuration Guide

TestNav 8 User Guide for PARCC

NETASQ SSO Agent Installation and deployment

Novell GroupWise. Troubleshooting 1: Error Messages. novdocx (en) 16 April July 14,

SWCS 4.2 Client Configuration Users Guide Revision /26/2012 Solatech, Inc.

How To Install An Aneka Cloud On A Windows 7 Computer (For Free)

Coveo Platform 7.0. Oracle Knowledge Connector Guide

TRITON Unified Security Center Help

Reconfiguration of VMware vcenter Update Manager

Installing, Configuring, and Managing a Microsoft Active Directory

Transcription:

Log Server Error Reference for Web Protection Solutions Topic 51260 TRITON AP-WEB and Web Filter & Security, v8.0.x Updated 02-Feb-2015 When Websense Log Server experiences logging problems, the service records errors in the Windows Event Viewer and the Websense.log file. The Websense.log file is located in the Websense bin directory (C:\Program Files\Websense\Web Security\bin, by default) on the Log Server machine. Use the information in this document to better understand the following error messages, and to troubleshoot the underlying problem or problems. Could not connect to the directory service..., page 2 Could not read..., page 2 Failed to delete..., page 3 Log Server dropped an invalid record, page 4 LogServer failed 100 times while obtaining user full names from the UserService, page 4 LogServer failed to save the group membership to the database, page 5 Log Server stopped processing a corrupt cache file: %1, page 5 Not enough disk space. Buffering stopped., page 5 Service initialization failed, page 6 The database may be down or unreachable, page 6 The Websense server was unreachable..., page 6 This process does not have permission to access the directory service..., page 7 Unable to access LogServer.state file, page 7 Unable to communicate with the Websense Filtering Service..., page 8 Unable to create the temp file, page 8 Unable to initialize the Directory Service. Websense Server may be down or unreachable, page 9 Unable to initialize the Log Database, page 9 Unable to initialize the Policy Server connection..., page 9 Unable to receive. There was a previous I/O error, page 10 Unable to write to log file, page 10 2015 Websense, Inc.

Could not connect to the directory service... Topic 51261 TRITON AP-WEB and Web Filter & Security, v8.0.x Updated 02-Feb-2015 Full error message Could not connect to the directory service. The groups for this user will not be resolved at this time. Please verify that this process can access the directory service. Explanation Log Server is unable to access the directory service, and therefore cannot update user information and user-to-group mappings for reports. This can happen if Log Server and User Service are on different sides of a firewall that is limiting their communication. To resolve this problem, configure the firewall to permit access over port 55815. The default ports used for directory service communication are: 139 NetBIOS communication: Active Directory 389 LDAP communication: Active Directory, Novell edirectory, Oracle (formerly Sun Java) Directory Server 636 SSL port: Novell edirectory, Oracle (formerly Sun Java) Directory Server 3268 Active Directory 3269 SSL port: Active Directory Could not read... Topic 51262 TRITON AP-WEB and Web Filter & Security, v8.0.x Updated 02-Feb-2015 Full error messages Could not read field name Could not read v5 field ## [field name] Could not read v6 field ## [field name] Could not read WTG field name Log Server Error Reference 2

Explanation Filtering Service: 1. Receives Internet usage information from Content Gateway, Network Agent, or third-party integration products. 2. Formats the data it sends to Log Server based on the source. These informational errors indicate that Log Server found an invalid piece of data in a record forwarded by Filtering Service. Records with invalid data are not included in the temporary files Log Server creates and sends to the Log Database. Although the error messages do not indicate a problem with Log Server: Large numbers of errors suggest that a large amount of Internet usage data is not being recorded in the Log Database. The errors suggest either an issue with Filtering Service, or with the component that sends URL request information to Filtering Service. To resolve the issue: 1. Use the Windows Services tool or /opt/websense/websensedaemoncontrol command to stop and restart Websense Filtering Service. 2. Refer to the Deployment and Installation Center or the installation instructions for your product for information about correctly configuring Filtering Service communication with Content Gateway, Network Agent, or another integration product. Failed to delete... Topic 51263 TRITON AP-WEB and Web Filter & Security, v8.0.x Updated 02-Feb-2015 Full error messages Failed to delete BCP file Failed to delete cache file Explanation Once Log Server moves the data from a BCP or cache file to the Log Database, it deletes the temporary file. If Log Server is unable to delete temporary files, they continue to collect, taking up disk space. Make sure the Log Server account has read, write, and delete privileges for the cache folder, BCP folder, or both. Log Server Error Reference 3

Log Server dropped an invalid record Topic 51264 TRITON AP-WEB and Web Filter & Security, v8.0.x Updated 02-Feb-2015 Log Server receives records from Filtering Service and moves them to the Log Database. When the contents of a record are not in the correct format, Log Server is not able to process the information accurately. As a result, the record is dropped (neither processed into temporary files, nor recorded in the Log Database). This error message is informational only. If it occurs regularly and frequently, however, it could indicate a problem with the component or integration product that is sending the Internet usage information to Filtering Service. It could also indicate a problem with Filtering Service. To resolve the issue: 1. Use the Windows Services tool or /opt/websense/websensedaemoncontrol command to stop and restart Websense Filtering Service. 2. Refer to the Deployment and Installation Center or the installation instructions for your product for information about correctly configuring Filtering Service communication with Content Gateway, Network Agent, or another integration product. If Log Server receives 4 consecutive invalid records, it drops its connection to Filtering Service and reconnects, in an attempt to correct the problem on its own. When this occurs, the error Connection from client xxx is reset due to bad log data is recorded. LogServer failed 100 times while obtaining user full names from the UserService Topic 51265 TRITON AP-WEB and Web Filter & Security, v8.0.x Updated 02-Feb-2015 This non-critical warning occurs when Log Server has been unsuccessful in reverifying information for users who have generated Internet usage data. This message can occur when: Users were moved within or deleted from the directory service. Log Server or User Service cannot contact the directory service. By default, Log Server tries to find user information for 90 days, then stops looking. To avoid flooding the Event Viewer or Websense.log file with these errors: 1. Use the Windows Services tool to stop the Websense Log Server service. 2. Navigate to the Websense bin directory (C:\Program Files\Websense\Web Security\bin, by default) and open LogServer.ini in a text editor. 3. In the [UserGroups] section, find CutOffDays. Log Server Error Reference 4

4. Change the default value of 90 to 3 (or some other value that works for your organization) to keep Log Server from looking for a user s information for more than the specified number of days. 5. Save and close LogServer.ini. 6. Start the Websense Log Server service. LogServer failed to save the group membership to the database Topic 51266 TRITON AP-WEB and Web Filter & Security, v8.0.x Updated 02-Feb-2015 This warning appears when Log Server has been unable to move user information into the Log Database. This can happen if there is a problem with the database or the database server. Make sure: The Microsoft SQL Server machine is running and available on the network The SQL Server service is running Log Server stopped processing a corrupt cache file: %1 Topic 51267 TRITON AP-WEB and Web Filter & Security, v8.0.x Updated 02-Feb-2015 This informational message indicates that Log Server found one or more corrupt records in a cache file and stopped sending data from that particular file to the Log Database. If you see this errors regularly and frequently, there may be a problem with Filtering Service or with the component or integration product that sends Internet requests to Filtering Service. See Log Server dropped an invalid record, page 4, for more information. This message may also occur if Log Server stopped suddenly, leaving a cache file partially written. The name of the problematic cache file is appended to the error message. To avoid the same error each time Log Server is started, delete that cache file. Not enough disk space. Buffering stopped. Topic 51268 TRITON AP-WEB and Web Filter & Security, v8.0.x Updated 02-Feb-2015 This warning message appears when Log Server is not able to create new cache files because there is no free disk space. The solution is to free up or add disk space. Before this error appears, a health alert is displayed in the Web module of the TRITON Manager, warning that disk space on the Log Server machine is getting low. Log Server Error Reference 5

Service initialization failed Topic 51269 TRITON AP-WEB and Web Filter & Security, v8.0.x Updated 02-Feb-2015 This warning indicates that Log Server cannot run. It is always accompanied by another error message explaining the underlying problem. Look for that error message to determine the problem and resolve it. The database may be down or unreachable Topic 51270 TRITON AP-WEB and Web Filter & Security, v8.0.x Updated 02-Feb-2015 Log Server must remain connected to the Log Database to process log records. When the database connection is down, Log Server attempts to reconnect 20 times. If it is unable to establish a connection, the service stops. See Log Serv er stops unexpectedly or will not start for information about correcting this problem. The Websense server was unreachable... Topic 51271 TRITON AP-WEB and Web Filter & Security, v8.0.x Updated 02-Feb-2015 Full error message The Websense server was unreachable. The Log Server will shutdown. Please verify the IP and port of the Websense server and that it is running, then restart the Log Server. The Log Server service must be started after the Websense server. Explanation When Log Server is unable to contact Policy Server, the service stops. To address this problem: 1. Make sure that the Websense Policy Server service associated with the stopped Log Server instance is running. 2. Verify that the Policy Server IP address and UID that appear in the websense.ini file on the Log Server machine are correct. The websense.ini file is located in the Websense bin directory (C:\Program Files\Websense\Web Security\bin, by default). Log Server Error Reference 6

The UID in the websense.ini file should match the one that appears in the config.xml file in the Websense bin directory on the Policy Server machine (C:\Program Files\Websense\Web Security\bin or /opt/websense/bin/, by default) This process does not have permission to access the directory service... Topic 51272 TRITON AP-WEB and Web Filter & Security, v8.0.x Updated 02-Feb-2015 Full error message This process does not have permission to access the directory service.the groups for this user will not be resolved at this time. Please verify that this process has permission to access the directory service. Explanation This message appears when Log Server attempts to retrieve user information from User Service, but User Service does not have permission to access the directory service. Refer to the Administrator Help for your web protection product for information about configuring communication between User Service and the directory service used in your network. Unable to access LogServer.state file Topic 51273 TRITON AP-WEB and Web Filter & Security, v8.0.x Updated 02-Feb-2015 This warning indicates a problem with the LogServer.state file, which is stored in the Log Server cache folder. To correct the problem: 1. Use the Windows Services tool to stop the Websense Log Server service. 2. Navigate to the cache folder (C:\Program Files\Websense\Web Security\bin\Cache\ or bin\cache\bcp, by default). If you have defined a custom directory, you can verify the path on the Web > Settings > Reporting > Log Server page in the TRITON Manager. 3. Delete the LogServer.state file. 4. Start Websense Log Server. Log Server Error Reference 7

If cache file processing does not quickly resume, there may be a corrupted cache file. To resolve this: 1. Use the Windows Services tool to stop the Websense Log Server service. 2. Navigate to the cache folder (see path in step 2 above). 3. Delete the LogServer.state file, if it has been recreated. 4. Delete the oldest cache (.tmp) file in the directory. If loss of reporting data is not a serious concern, you can alternatively delete all of the temporary files in the directory. 5. Start Websense Log Server. Unable to communicate with the Websense Filtering Service... Topic 51274 TRITON AP-WEB and Web Filter & Security, v8.0.x Updated 02-Feb-2015 Full error message Unable to communicate with the Websense Filtering Service. Make sure that the service is running and that configuration parameters are correct. Explanation If Log Server is not able to communicate with Filtering Service, Log Server cannot receive Internet request information. See Make sure Filtering Service is sending data for help resolving the issue. Unable to create the temp file Topic 51275 TRITON AP-WEB and Web Filter & Security, v8.0.x Updated 02-Feb-2015 If Log Server can t create temporary (cache or BCP) files to store the data it receives from Filtering Service, Internet activity records are lost. This warning typically indicates that Log Server does not have the necessary read, write, and delete permissions to the cache directory (C:\Program Files\Websense\Web Security\bin\Cache\ or bin\cache\bcp, by default). First verify the cache file location on the Web > Settings > Reporting > Log Server page in the TRITON Manager, then make sure the Log Server account has the permissions needed to create the folder and cache files. Log Server Error Reference 8

This error occurs most often when Windows Authentication is used to connect to the database. When the trusted user changes in Microsoft SQL Server, Log Server must be configured to run with a new trusted user account. If the Log Server account is not updated, this warning is displayed. Unable to initialize the Directory Service. Websense Server may be down or unreachable Topic 51276 TRITON AP-WEB and Web Filter & Security, v8.0.x Updated 02-Feb-2015 This warning indicates that Log Server is unable to get user and group information from the directory service. See Could not connect to the directory service..., page 2, for more information. Unable to initialize the Log Database Topic 51277 TRITON AP-WEB and Web Filter & Security, v8.0.x Updated 02-Feb-2015 When Log Server loses connection to the Log Database, Internet usage data, user information updates, and custom policy enforcement data cannot be sent to the database. See Check for Log Database problems and Log Server stops unexpectedly or will not start for help resolving the issue. Unable to initialize the Policy Server connection... Topic 51278 TRITON AP-WEB and Web Filter & Security, v8.0.x Updated 02-Feb-2015 Full error message Unable to initialize the Policy Server connection. Websense Policy Server may be down or unreachable. Log Server Error Reference 9

Explanation The Websense Log Server service cannot run without a connection to Policy Server. Any time Policy Server is stopped, or communication between the Log Server and Policy Server machines is blocked, Log Server stops. Restart Log Server after making sure: Policy Server is running. The Policy Server IP address and UID in the Websense.ini file in the Websense bin directory (C:\Program Files\Websense\Web Security\bin, by default) on the Log Server machine are correct. The UID in the Websense.ini file should match the one listed in the config.xml file on the Policy Server machine. Unable to receive. There was a previous I/O error Topic 51279 TRITON AP-WEB and Web Filter & Security, v8.0.x Updated 02-Feb-2015 This informational message indicates that Log Server is having problems receiving data from Filtering Service. This may occur when Filtering Service is stopped and restarted. If Filtering Service and Log Server are both running and this message continues to appear, see Make sure Filtering Service is sending data for help resolving the issue. Unable to write to log file Topic 51280 TRITON AP-WEB and Web Filter & Security, v8.0.x Updated 02-Feb-2015 If Log Server has problems writing to the cache files, it cannot load the Internet usage data Filtering Service sends. If this message is displayed frequently, there could be a significant amount of data being lost. Make sure: Log Server has permission to write to the cache folder defined on Web > Settings > Reporting > Log Server page in the TRITON Manager. There is sufficient disk space for Log Server to create a new file. Log Server Error Reference 10

2026 © DocPlayer.net Privacy Policy | Terms of Service | Feedback  | Do Not Sell My Personal Information