I'm trying to get the logs from a number of FW running on IPSO OS. I have managed to get them from some of them, but there is one where the following problem arises when I try to communicate with it:
[16 Jan 16:15:33] PM_session_init: given session
O(CN=LEA_xxxx,O=sifcip01..4vc4iv;cn=cp_mgmt,o=sifcip01..4vc4iv;18184;lea).
[16 Jan 16:15:33] PM_policy_query: input session
O(CN=LEA_xxxx,O=sifcip01..4vc4iv;cn=cp_mgmt,o=sifcip01..4vc4iv;18184;lea).
[16 Jan 16:15:33] PM_policy_query: rule found
(ME;cn=cp_mgmt,o=sifcip01..4vc4iv;18184;lea;sslca(1/1)).
[16 Jan 16:15:33] PM_policy_query: finished
successfully. 1st method = sslca
[16 Jan 16:15:33] filter_method_array: auth method
sslca not initialized, remove it from query result.
[16 Jan 16:15:33] PM_policy_choose: finished
successfully. choose: DENY.
[16 Jan 16:15:33] policy_choose: choose failed.
[16 Jan 16:15:33] sic_client_negotiate_auth_method:
policy choose failed.
[16 Jan 16:15:33] fwasync_mux_in: 10: handler returned
with error
DEBUG: function read_fw1_logfile_end
DEBUG: OPSEC_SESSION_END_HANDLER called
ERROR: SIC ERROR 119 - SIC Error for lea: Client
could not choose an authentication method for service lea
I have configured this FW following the same steps as the others. Why could this be happening? the $FWDIR/conf/fwopsec.conf has this lines on it:
lea server auth_port 18184
lea server auth_type sslca
Tahnks in advance
If you would like to refer to this comment somewhere else in this project, copy and paste the following link:
Hi,
I'm trying to get the logs from a number of FW running on IPSO OS. I have managed to get them from some of them, but there is one where the following problem arises when I try to communicate with it:
[16 Jan 16:15:33] PM_session_init: given session
O(CN=LEA_xxxx,O=sifcip01..4vc4iv;cn=cp_mgmt,o=sifcip01..4vc4iv;18184;lea).
[16 Jan 16:15:33] PM_policy_query: input session
O(CN=LEA_xxxx,O=sifcip01..4vc4iv;cn=cp_mgmt,o=sifcip01..4vc4iv;18184;lea).
[16 Jan 16:15:33] PM_policy_query: rule found
(ME;cn=cp_mgmt,o=sifcip01..4vc4iv;18184;lea;sslca(1/1)).
[16 Jan 16:15:33] PM_policy_query: finished
successfully. 1st method = sslca
[16 Jan 16:15:33] filter_method_array: auth method
sslca not initialized, remove it from query result.
[16 Jan 16:15:33] PM_policy_choose: finished
successfully. choose: DENY.
[16 Jan 16:15:33] policy_choose: choose failed.
[16 Jan 16:15:33] sic_client_negotiate_auth_method:
policy choose failed.
[16 Jan 16:15:33] fwasync_mux_in: 10: handler returned
with error
DEBUG: function read_fw1_logfile_end
DEBUG: OPSEC_SESSION_END_HANDLER called
ERROR: SIC ERROR 119 - SIC Error for lea: Client
could not choose an authentication method for service lea
I have configured this FW following the same steps as the others. Why could this be happening? the $FWDIR/conf/fwopsec.conf has this lines on it:
lea server auth_port 18184
lea server auth_type sslca
Tahnks in advance
I'm also getting this on one smart center server. It's a Splat R65 though. If I find anything, I will post it here...