This website uses Cookies. Click Accept to agree to our website's cookie use as described in our Privacy Policy. Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
ABOUT CHECKMATES CYBER SECURITY COMMUNITY & FAQ
Create a Post
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Are you a member of CheckMates?

×
Sign in with your Check Point UserCenter/PartnerMap account to access more great content and get a chance to win some Apple AirPods! If you don't have an account, create one now for free!
the_rock
Legend
Legend
yesterday
Jump to solution

Cant start API or log into web UI after importing Azure cp mgmt server config

Hey guys,

Hope someone might be able to guide me in right direction here. So, here is the scenario.

Customer has had Azure CP mgmt server for few years, which has only about 20 rules or so and they now want to move all that over (integrate if you will), with S1C instance.

I build R81.20 jumbo 96 mgmt lab, imported their config after running migrate server, all went well, rebooted, but realized that as soon as that was done, Apache would not start, hence api is is failing and even web UI does not load.

I tried changing the port, rebooting, changing NIC type, no joy. Also tried below sk, but all I get is this:

https://support.checkpoint.com/results/sk/sk169656

UEPM: Starting Apache...
/opt/CPuepm-R81.20/engine/scripts/uepm_functions: line 70: /opt/CPuepm-R81.20/logs/uepm/uepm_stop_start.log: No such file or directory
grep: to: No such file or directory
grep: find: No such file or directory
grep: the: No such file or directory
grep: value: No such file or directory
UEPM: Apache Web Server is starting...
/opt/CPuepm-R81.20/engine/scripts/uepm_functions: line 70: /opt/CPuepm-R81.20/logs/uepm/uepm_stop_start.log: No such file or directory
UEPM: WARNING - Failed to start Apache Web Server
/opt/CPuepm-R81.20/engine/scripts/uepm_functions: line 70: /opt/CPuepm-R81.20/logs/uepm/uepm_stop_start.log: No such file or directory

If anyone has an idea, happy to try.

Thanks so much as always!

Andy

0 Kudos
1 Solution

Accepted Solutions
the_rock
Legend
Legend
23m ago
Jump to solution

I fixed the issue by copying httpd2.cong file from /web/conf dir in customer's mgmt to my lab and once api restart command was done, all worked fine.

Cheers,

Andy

View solution in original post

0 Kudos
8 Replies
PhoneBoy
Admin
Admin
yesterday
Jump to solution

Curious why uepm is involved here (Endpoint Management).

0 Kudos
the_rock
Legend
Legend
yesterday
In response to PhoneBoy
Jump to solution

Weird, dont see it in their environment either...

Andy

Preview file
163 KB
0 Kudos
the_rock
Legend
Legend
yesterday
In response to PhoneBoy
Jump to solution

FWIW, when I ran cpwd_admin list in my lab, I noticed 3 processes for log exporter as down, so removed them all, rebooted, now all shows E and 1, but apache still down...

Andy

0 Kudos
Duane_Toler
Advisor
18m ago
In response to the_rock
Jump to solution

Did the original server have Endpoint policy management enabled? Looks like this new VM is looking for the Endpoint management pieces from the migrate import, but they're not installed.  Did you do the Gaia First Time Wizard via the initial install WebUI, via config_system, or through the Azure Marketplace setup?  Again, looks like one of those didn't get the correct product selection for installation.

This is bit of a stupid question, but:  Did you run the Gaia First Time Wizard yet, before running migrate_server import? 🙂

 

The multiple "grep" command errors are also interesting.  That's a series of sequential words that is likely from an improperly defined (or missing) Bash variable resulting in that kind of erroneous output.  The error sequence in question is in the "start_apache()" function of the "uepm_functions" shell library.   However, the expected UEPM log file doesn't exist, likely because the paths don't exist, again, because the UEPM product isn't installed/configured.

You're also using HFA 96 which is rather bleeding edge.  I'd suggest re-doing this VM with HFA 92 instead, "just because".

Hope some of this helps.

0 Kudos
Duane_Toler
Advisor
16m ago
In response to Duane_Toler
Jump to solution

Oh, and another possibly stupid question:  Is the IP of this new VM the same as the IP of the original, for the license to be activated?

 

0 Kudos
the_rock
Legend
Legend
12m ago
In response to Duane_Toler
Jump to solution

Hey Duane,

Totally different IP and yes, I 100% made sure license was indeed correct.

Andy

0 Kudos
the_rock
Legend
Legend
23m ago
Jump to solution

I fixed the issue by copying httpd2.cong file from /web/conf dir in customer's mgmt to my lab and once api restart command was done, all worked fine.

Cheers,

Andy

0 Kudos
Duane_Toler
Advisor
3m ago
In response to the_rock
Jump to solution

If that's the case, then sounds like the default web port was changed on the original server.  That's in CLISH ("show web ssl-port").  I'd be concerned if this happens again on the next reboot, tho.  That httpd.conf file is generated dynamically by /bin/httpd_xlate and based on the contents of the CONFD configuration.  I say reboot that server and make sure it comes back up correctly! 🤞

 

0 Kudos

Leaderboard

Epsum factorial non deposit quid pro quo hic escorol.

View All ≫
Upcoming Events

    CheckMates Events