Create a Post
cancel
Showing results for 
Search instead for 
Did you mean: 
Laurent-LH
Contributor
Jump to solution

Identity Collector not working for some users

Hi

I am using Identity Collector to make the link between AD accounts and rights in the rule base.

In the same group it is working fine for some users work and not for others. In the Identity Collector Log Monitor I see every association between IP address and User Name.

Every users are authenticaded by the same controller DC and excepted this point they are working fine.

If I give rights to IP address of the user's PC it's working fine for everybody but in the logs I don't see the user name of the accounts impacted by the problem.

My gateway / mgmr / log are in R81 JHF 44 and I have upgraded the Identity Collector in 81.028: same behavior.

I hope to be clear and sorry for my english

Can you help me

Regards


Laurent

0 Kudos
1 Solution

Accepted Solutions
Laurent-LH
Contributor

Hi everybody

I think I have found the solution with the sk174266. It is a the limit of 10 machines for 1 user before to be considered as a service account and not used in the rules.

I have increase the limit to 100 and exclude some administrator accounts and the behahiour is now normal : rules with the AD accounts are applicated.


Regards

View solution in original post

0 Kudos
23 Replies
Kaspars_Zibarts
Employee Employee
Employee

bit hard to understand what the problem is: the fact that you don't see username against IP in logs? Or rule with an IA role not being enforced?

Try adding some screenshots - it might help.

What do you see when you check SmartLog with IA blade filter:

x.x.x.x and blade:"Identity Awareness"

0 Kudos
Laurent-LH
Contributor

 

Hi
I try to explain better.

rule 1
user1  web-server http accept log

rule 2
user2  web-server http accept log

rule 3
any  web-server http drop log

when user1 want to connect to web-server OK

log rule 1 : IP PC1 and user1

when user2 want to connect to web-server NOK

log rule 2 : Nothing / log rule 3 IP PC2 but no user name

In Identity Collector

IP PC1 links to user1

IP PC2 links to user2

General Log with filter "user1" : the accept and IA information a

and  filter IP PC1 and blade:"Identity Awareness" : Some succesful logins and some session expirations => Normal

 

General Log with filter "user2" : nothing = never view by IA and so by FW

and  filter IP PC2 and blade:"Identity Awareness" : No matches found  => Not normal

I don't anderstand how it can be working fine with user1 and not user2

To note : user 2 has already worked fine and it has stopped without any change (AD, Identity Collector, Check Point configuration)

Regards

LAurent

 

 

 

0 Kudos
Kaspars_Zibarts
Employee Employee
Employee

Seems like ID info is not forwarded from IDC to GW. Make sure that you have no filters set in IDC.

You can also check PDP daemon logs on the gateway just to confirm if any info regarding user2 IP address is arriving from IDC to GW

grep x.x.x.x $FWDIR/log/pdpd.elg*

0 Kudos
Laurent-LH
Contributor

I don't see any difference between my 2 users : the association between IPs and uUSERs is OK

/opt/CPsuite-R81/fw1/log/pdpd.elg.8:[30160 4057327424]@FWEXTHDV[24 Nov 11:51:33] [TRACKER]: #10214190 -> INCOMING -> IDCOLLECTOR_ASSOCIATION -> Ip: IP2 ; User: USER2; User Groups: ; User Roles: ; Machine: ; Machine Groups: ; Machine Roles: ; Domain:  Domain; Source Type: AD; TTL: 43200; IDC IP: IP-IDC

/opt/CPsuite-R81/fw1/log/pdpd.elg.8:[30160 4057327424]@FWEXTHDV[24 Nov 11:51:23] [TRACKER]: #10214085 -> INCOMING -> IDCOLLECTOR_ASSOCIATION -> Ip:  IP1; User: USER1; User Groups: ; User Roles: ; Machine: ; Machine Groups: ; Machine Roles: ; Domain: Domain; Source Type: AD; TTL: 43200; IDC IP: IP-IDC

 

 

0 Kudos
Kaspars_Zibarts
Employee Employee
Employee

OK that means identity does arrive, next step is PEP daemon, this will show if any IA role is associated with the IP

grep -B4 -A14 x.x.x.x $FWDIR/log/pepd.elg*

0 Kudos
Laurent-LH
Contributor

With user1 a lot of information

/opt/CPsuite-R81/fw1/log/pepd.elg-[30161 4085901696]@FWEXTHDV[25 Nov  7:51:26] [TRACKER]: #1293707 -> INCOMING -> IDENTITY_UPDATE -> from pdp: 127.0.0.1, 0, should override: 0 , data: UpdateInformation dump:

/opt/CPsuite-R81/fw1/log/pepd.elg-Unique ID           : 514e02d9

/opt/CPsuite-R81/fw1/log/pepd.elg-Client type         : 9, (Identity Collector)

/opt/CPsuite-R81/fw1/log/pepd.elg-Time to live        : 43230, 86400

/opt/CPsuite-R81/fw1/log/pepd.elg:Client ID           : IP1, 0

/opt/CPsuite-R81/fw1/log/pepd.elg-Username            : USER1

/opt/CPsuite-R81/fw1/log/pepd.elg-Log Username        : name firstname (USER1)

/opt/CPsuite-R81/fw1/log/pepd.elg-

……

with user2 NOTHING !

0 Kudos
(1)
Daniel_Szydelko
Advisor
Advisor

Hello,

Please check if both users received correct access roles in associations on your IA GW:

pdp monitor user USERX

it should be also reflected in $FWDIR/log/pdpd.elg

Best Regards

Daniel.

0 Kudos
Laurent-LH
Contributor

Same principe

for user1 correct information

Session:  514e02d9

Session UUID:  {BE0DB03B-69A8-D215-0258-0DC02BAF5201}

Ip:  IP1

Users:

 USER1@domain {d268cfc1}

   LogUsername: name firstname (USER1)

   Client Type: Identity Collector (Active Directory)

 

for user2 NOTHING

0 Kudos
Daniel_Szydelko
Advisor
Advisor

If you receive something like this in pdpd.elg:

/opt/CPsuite-R81/fw1/log/pdpd.elg.8:[30160 4057327424]@FWEXTHDV[24 Nov 11:51:33] [TRACKER]: #10214190 -> INCOMING -> IDCOLLECTOR_ASSOCIATION -> Ip: IP2 ; User: USER2; User Groups: ; User Roles: ; Machine: ; Machine Groups: ; Machine Roles: ; Domain:  Domain; Source Type: AD; TTL: 43200; IDC IP: IP-IDC

then next should be:

OUTGOING -> AGENT_RESPONSE -> ip: , type: IDCEvent, result: OK

and

INTERNAL -> ROLES_CHANGED -> user session: xxxxxxxxx

then association IP/user should be created, so if there is nothing when you type:

pdp monitor ip IP2

or

pdp monitor user User2

then it's wrong behaviour. Please try to follow messages starting from:

INCOMING -> IDCOLLECTOR_ASSOCIATION -> Ip: IP2 ; User: USER2

maybe there is something else showing what is the root cause of lack of association.

 

0 Kudos
Laurent-LH
Contributor

After I see

[30160 4057327424]@FWEXTHDV[25 Nov 14:59:13] [TRACKER]: #10733164 -> OUTGOING -> AGENT_RESPONSE -> ip: , type: IDCEvent, result: OK
[30160 4057327424]@FWEXTHDV[25 Nov 14:59:14] [TRACKER]: #10733165 -> INCOMING -> AGENT_REQUEST -> ip: , type: IDCEvent

Excactly the same  for USER1 and USER2 ...

 

0 Kudos
Kaspars_Zibarts
Employee Employee
Employee

I'm just thinking - is USER2 "subnet the same as USER1? If not, is USER2 subnet directly connected to FW?

I seem to recall issues in early days we had issues in certain cases when IA publish method was set to smart_pull

Not too sure how comfortable are with using GuiDBEdit, but you could try changing publish_method on the gateway to push from smart_pull (GuiDBedit: Table -> Network Objects -> network_objects -> FirewallName -> identity_aware_blade -> publish_method), save and install policy

image.png

 

0 Kudos
Laurent-LH
Contributor

Hi

I have changed the publish methode to push, saved and installed the policy.

I have cleared the records in the ID collector.

It is not better !

I see USER2 and IP2 in the $FWDIR/log/pepd.elg* but not with pdp monitor ip IP2 or pdp monitor user USER2.

Is it possible to reset the link between IP and USER ?

0 Kudos
Kaspars_Zibarts
Employee Employee
Employee

I would definitely follow @Daniel_Szydelko suggestion, there must be some errors / indications there

Please try to follow messages starting from:

INCOMING -> IDCOLLECTOR_ASSOCIATION -> Ip: IP2 ; User: USER2;

maybe there is something else showing what is the root cause of lack of association.

0 Kudos
Daniel_Szydelko
Advisor
Advisor

If there is no other info but still you can see in pdpd.elg:

INCOMING -> IDCOLLECTOR_ASSOCIATION -> Ip: IP2 ; User: USER2; User Groups: ; User Roles: ; Machine: ; Machine Groups: ; Machine Roles: ; Domain:  Domain; Source Type: AD; TTL: 43200; IDC IP: IP-IDC

and no association is created (pdp monitor ip IP2 or pdp monitor user USER2) then I suggest to open ticket and TAC. More detailed debugging is needed.

Communication is pretty straightforward:

Identity Source -> IDC -> PDP -> PEP. As IDC is forwarding info to PDP and association is not created on PDP then it's definitely wrong. 

You mentioned that you can see somehow info about USER2/IP2 in pepd.elg (so something is pushed to PEP even we cannot see it on PDP). Can you provide the output from pepd.elg about this and output from PEP itself:

pep show user usr USER2

and the same full output from

pdp monitor user USER2

Laurent-LH
Contributor

pdp monitor user USER2 =>  Nothing

pep show user query usr USER2 => Nothing

I see USER2 and USER1 in the logs pdpd.elg and pepd.elg and the last enters are both the 19th of october

 

0 Kudos
Daniel_Szydelko
Advisor
Advisor

Can you paste the output from:

pdp monitor summary all | wc -l

and

top -c -b n 1 

from IA SG?

0 Kudos
Laurent-LH
Contributor

Info 19th of october is the date of last boot (JHF 44) and it is was working fine after this upgrade

[Expert@FWNAME:0]# pdp monitor summary all | wc -l
2341
[Expert@FWNAME:0]# top -c -b n 1

top - 13:12:33 up 38 days, 5:46, 1 user, load average: 0.20, 0.13, 0.14
Tasks: 381 total, 1 running, 380 sleeping, 0 stopped, 0 zombie
%Cpu0 : 0.0 us, 0.0 sy, 0.0 ni,100.0 id, 0.0 wa, 0.0 hi, 0.0 si, 0.0 st
%Cpu1 : 0.0 us, 0.0 sy, 0.0 ni,100.0 id, 0.0 wa, 0.0 hi, 0.0 si, 0.0 st
%Cpu2 : 0.0 us, 0.0 sy, 0.0 ni,100.0 id, 0.0 wa, 0.0 hi, 0.0 si, 0.0 st
%Cpu3 : 0.0 us, 0.0 sy, 0.0 ni,100.0 id, 0.0 wa, 0.0 hi, 0.0 si, 0.0 st
%Cpu4 : 0.0 us, 0.0 sy, 0.0 ni,100.0 id, 0.0 wa, 0.0 hi, 0.0 si, 0.0 st
%Cpu5 : 0.0 us, 6.2 sy, 0.0 ni, 93.8 id, 0.0 wa, 0.0 hi, 0.0 si, 0.0 st
%Cpu6 : 0.0 us, 0.0 sy, 0.0 ni,100.0 id, 0.0 wa, 0.0 hi, 0.0 si, 0.0 st
%Cpu7 : 0.0 us, 0.0 sy, 0.0 ni,100.0 id, 0.0 wa, 0.0 hi, 0.0 si, 0.0 st
%Cpu8 : 0.0 us, 0.0 sy, 0.0 ni,100.0 id, 0.0 wa, 0.0 hi, 0.0 si, 0.0 st
%Cpu9 : 0.0 us, 0.0 sy, 0.0 ni,100.0 id, 0.0 wa, 0.0 hi, 0.0 si, 0.0 st
%Cpu10 : 0.0 us, 0.0 sy, 0.0 ni,100.0 id, 0.0 wa, 0.0 hi, 0.0 si, 0.0 st
%Cpu11 : 0.0 us, 0.0 sy, 0.0 ni, 94.1 id, 0.0 wa, 5.9 hi, 0.0 si, 0.0 st
%Cpu12 : 0.0 us, 0.0 sy, 0.0 ni,100.0 id, 0.0 wa, 0.0 hi, 0.0 si, 0.0 st
%Cpu13 : 0.0 us, 0.0 sy, 0.0 ni,100.0 id, 0.0 wa, 0.0 hi, 0.0 si, 0.0 st
%Cpu14 : 0.0 us, 0.0 sy, 0.0 ni,100.0 id, 0.0 wa, 0.0 hi, 0.0 si, 0.0 st
%Cpu15 : 0.0 us, 0.0 sy, 0.0 ni,100.0 id, 0.0 wa, 0.0 hi, 0.0 si, 0.0 st
KiB Mem : 32663552 total, 18614208 free, 7995036 used, 6054308 buff/cache
KiB Swap: 32833404 total, 32833404 free, 0 used. 23666400 avail Mem

PID USER PR NI VIRT RES SHR S %CPU %MEM TIME+ P COMMAND
23703 admin 20 0 0 0 0 S 6.7 0.0 80:52.41 10 [fw_worker_10]
1 admin 20 0 2628 712 604 S 0.0 0.0 0:08.60 9 init [3]
2 admin 20 0 0 0 0 S 0.0 0.0 0:00.50 4 [kthreadd]
3 admin 20 0 0 0 0 S 0.0 0.0 0:05.64 0 [ksoftirqd/0]
5 admin 0 -20 0 0 0 S 0.0 0.0 0:00.00 0 [kworker/0:0H]
7 admin rt 0 0 0 0 S 0.0 0.0 0:00.13 0 [migration/0]
8 admin 20 0 0 0 0 S 0.0 0.0 0:00.00 0 [rcu_bh]
9 admin 20 0 0 0 0 S 0.0 0.0 14:45.88 6 [rcu_sched]
10 admin 20 0 0 0 0 S 0.0 0.0 0:00.00 0 [rcuob/0]
11 admin 20 0 0 0 0 S 0.0 0.0 0:43.79 2 [rcuos/0]
12 admin 0 -20 0 0 0 S 0.0 0.0 0:00.00 0 [lru-add-drain]
13 admin rt 0 0 0 0 S 0.0 0.0 0:02.21 0 [watchdog/0]
14 admin rt 0 0 0 0 S 0.0 0.0 0:01.34 1 [watchdog/1]
15 admin rt 0 0 0 0 S 0.0 0.0 3:12.65 1 [migration/1]
16 admin 20 0 0 0 0 S 0.0 0.0 0:02.05 1 [ksoftirqd/1]
18 admin 0 -20 0 0 0 S 0.0 0.0 0:00.00 1 [kworker/1:0H]
19 admin 20 0 0 0 0 S 0.0 0.0 0:00.00 0 [rcuob/1]
20 admin 20 0 0 0 0 S 0.0 0.0 2:04.01 0 [rcuos/1]
21 admin rt 0 0 0 0 S 0.0 0.0 0:01.19 2 [watchdog/2]
22 admin rt 0 0 0 0 S 0.0 0.0 2:35.05 2 [migration/2]
23 admin 20 0 0 0 0 S 0.0 0.0 0:00.90 2 [ksoftirqd/2]
25 admin 0 -20 0 0 0 S 0.0 0.0 0:00.00 2 [kworker/2:0H]
26 admin 20 0 0 0 0 S 0.0 0.0 0:00.00 0 [rcuob/2]
27 admin 20 0 0 0 0 S 0.0 0.0 2:02.90 4 [rcuos/2]
28 admin rt 0 0 0 0 S 0.0 0.0 0:00.93 3 [watchdog/3]
29 admin rt 0 0 0 0 S 0.0 0.0 2:53.29 3 [migration/3]
30 admin 20 0 0 0 0 S 0.0 0.0 0:00.93 3 [ksoftirqd/3]
32 admin 0 -20 0 0 0 S 0.0 0.0 0:00.00 3 [kworker/3:0H]
33 admin 20 0 0 0 0 S 0.0 0.0 0:00.00 0 [rcuob/3]
34 admin 20 0 0 0 0 S 0.0 0.0 2:14.86 0 [rcuos/3]
35 admin rt 0 0 0 0 S 0.0 0.0 0:00.97 4 [watchdog/4]
36 admin rt 0 0 0 0 S 0.0 0.0 2:51.24 4 [migration/4]
37 admin 20 0 0 0 0 S 0.0 0.0 0:01.02 4 [ksoftirqd/4]
39 admin 0 -20 0 0 0 S 0.0 0.0 0:00.00 4 [kworker/4:0H]
40 admin 20 0 0 0 0 S 0.0 0.0 0:00.00 0 [rcuob/4]
41 admin 20 0 0 0 0 S 0.0 0.0 2:16.64 14 [rcuos/4]
42 admin rt 0 0 0 0 S 0.0 0.0 0:01.16 5 [watchdog/5]
43 admin rt 0 0 0 0 S 0.0 0.0 2:30.04 5 [migration/5]
44 admin 20 0 0 0 0 S 0.0 0.0 0:00.97 5 [ksoftirqd/5]
46 admin 0 -20 0 0 0 S 0.0 0.0 0:00.00 5 [kworker/5:0H]
47 admin 20 0 0 0 0 S 0.0 0.0 0:00.00 0 [rcuob/5]
48 admin 20 0 0 0 0 S 0.0 0.0 1:56.07 14 [rcuos/5]
49 admin rt 0 0 0 0 S 0.0 0.0 0:01.38 6 [watchdog/6]
50 admin rt 0 0 0 0 S 0.0 0.0 1:43.92 6 [migration/6]
51 admin 20 0 0 0 0 S 0.0 0.0 0:01.34 6 [ksoftirqd/6]
52 admin 20 0 0 0 0 S 0.0 0.0 0:25.41 6 [kworker/6:0]
53 admin 0 -20 0 0 0 S 0.0 0.0 0:00.00 6 [kworker/6:0H]
54 admin 20 0 0 0 0 S 0.0 0.0 0:00.00 0 [rcuob/6]
55 admin 20 0 0 0 0 S 0.0 0.0 1:25.33 1 [rcuos/6]
56 admin rt 0 0 0 0 S 0.0 0.0 0:00.83 7 [watchdog/7]
57 admin rt 0 0 0 0 S 0.0 0.0 3:21.19 7 [migration/7]
58 admin 20 0 0 0 0 S 0.0 0.0 0:01.27 7 [ksoftirqd/7]
60 admin 0 -20 0 0 0 S 0.0 0.0 0:00.00 7 [kworker/7:0H]
61 admin 20 0 0 0 0 S 0.0 0.0 0:00.00 0 [rcuob/7]
62 admin 20 0 0 0 0 S 0.0 0.0 2:19.94 0 [rcuos/7]
63 admin rt 0 0 0 0 S 0.0 0.0 0:02.26 8 [watchdog/8]
64 admin rt 0 0 0 0 S 0.0 0.0 0:00.11 8 [migration/8]
65 admin 20 0 0 0 0 S 0.0 0.0 0:02.27 8 [ksoftirqd/8]
67 admin 0 -20 0 0 0 S 0.0 0.0 0:00.00 8 [kworker/8:0H]
68 admin 20 0 0 0 0 S 0.0 0.0 0:00.00 0 [rcuob/8]
69 admin 20 0 0 0 0 S 0.0 0.0 0:40.99 3 [rcuos/8]
70 admin rt 0 0 0 0 S 0.0 0.0 0:00.85 9 [watchdog/9]
71 admin rt 0 0 0 0 S 0.0 0.0 2:30.50 9 [migration/9]
72 admin 20 0 0 0 0 S 0.0 0.0 0:00.06 9 [ksoftirqd/9]
74 admin 0 -20 0 0 0 S 0.0 0.0 0:00.00 9 [kworker/9:0H]
75 admin 20 0 0 0 0 S 0.0 0.0 0:00.00 0 [rcuob/9]
76 admin 20 0 0 0 0 S 0.0 0.0 4:32.45 8 [rcuos/9]
77 admin rt 0 0 0 0 S 0.0 0.0 0:00.99 10 [watchdog/10]
78 admin rt 0 0 0 0 S 0.0 0.0 1:48.79 10 [migration/10]
79 admin 20 0 0 0 0 S 0.0 0.0 0:00.12 10 [ksoftirqd/10]
81 admin 0 -20 0 0 0 S 0.0 0.0 0:00.00 10 [kworker/10:0H]
82 admin 20 0 0 0 0 S 0.0 0.0 0:00.00 0 [rcuob/10]
83 admin 20 0 0 0 0 S 0.0 0.0 4:01.93 0 [rcuos/10]
84 admin rt 0 0 0 0 S 0.0 0.0 0:00.90 11 [watchdog/11]
85 admin rt 0 0 0 0 S 0.0 0.0 2:04.84 11 [migration/11]
86 admin 20 0 0 0 0 S 0.0 0.0 0:00.05 11 [ksoftirqd/11]
88 admin 0 -20 0 0 0 S 0.0 0.0 0:00.00 11 [kworker/11:0H]
89 admin 20 0 0 0 0 S 0.0 0.0 0:00.00 0 [rcuob/11]
90 admin 20 0 0 0 0 S 0.0 0.0 4:19.30 7 [rcuos/11]
91 admin rt 0 0 0 0 S 0.0 0.0 0:00.92 12 [watchdog/12]
92 admin rt 0 0 0 0 S 0.0 0.0 2:03.67 12 [migration/12]
93 admin 20 0 0 0 0 S 0.0 0.0 0:00.08 12 [ksoftirqd/12]
95 admin 0 -20 0 0 0 S 0.0 0.0 0:00.00 12 [kworker/12:0H]
96 admin 20 0 0 0 0 S 0.0 0.0 0:00.00 0 [rcuob/12]
97 admin 20 0 0 0 0 S 0.0 0.0 4:23.68 8 [rcuos/12]
98 admin rt 0 0 0 0 S 0.0 0.0 0:01.00 13 [watchdog/13]
99 admin rt 0 0 0 0 S 0.0 0.0 1:47.39 13 [migration/13]
100 admin 20 0 0 0 0 S 0.0 0.0 0:00.11 13 [ksoftirqd/13]
102 admin 0 -20 0 0 0 S 0.0 0.0 0:00.00 13 [kworker/13:0H]
103 admin 20 0 0 0 0 S 0.0 0.0 0:00.00 0 [rcuob/13]
104 admin 20 0 0 0 0 S 0.0 0.0 3:54.12 0 [rcuos/13]
105 admin rt 0 0 0 0 S 0.0 0.0 0:01.53 14 [watchdog/14]
106 admin rt 0 0 0 0 S 0.0 0.0 1:13.47 14 [migration/14]
107 admin 20 0 0 0 0 S 0.0 0.0 0:00.17 14 [ksoftirqd/14]
109 admin 0 -20 0 0 0 S 0.0 0.0 0:00.00 14 [kworker/14:0H]
110 admin 20 0 0 0 0 S 0.0 0.0 0:00.00 0 [rcuob/14]
111 admin 20 0 0 0 0 S 0.0 0.0 2:49.13 8 [rcuos/14]
112 admin rt 0 0 0 0 S 0.0 0.0 0:00.84 15 [watchdog/15]
113 admin rt 0 0 0 0 S 0.0 0.0 2:28.44 15 [migration/15]
114 admin 20 0 0 0 0 S 0.0 0.0 0:01.09 15 [ksoftirqd/15]
116 admin 0 -20 0 0 0 S 0.0 0.0 0:00.00 15 [kworker/15:0H]
117 admin 20 0 0 0 0 S 0.0 0.0 0:00.00 0 [rcuob/15]
118 admin 20 0 0 0 0 S 0.0 0.0 4:50.68 8 [rcuos/15]
119 admin 20 0 0 0 0 S 0.0 0.0 0:00.00 0 [kdevtmpfs]
120 admin 0 -20 0 0 0 S 0.0 0.0 0:00.00 11 [netns]
121 admin rt 0 0 0 0 S 0.0 0.0 0:11.04 11 [slab_mcd]
122 admin 0 -20 0 0 0 S 0.0 0.0 0:00.00 11 [writeback]
123 admin 0 -20 0 0 0 S 0.0 0.0 0:00.00 11 [kintegrityd]
124 admin 0 -20 0 0 0 S 0.0 0.0 0:00.00 11 [bioset]
125 admin 0 -20 0 0 0 S 0.0 0.0 0:00.00 11 [bioset]
126 admin 0 -20 0 0 0 S 0.0 0.0 0:00.00 11 [bioset]
127 admin 0 -20 0 0 0 S 0.0 0.0 0:00.00 11 [kblockd]
128 admin 0 -20 0 0 0 S 0.0 0.0 0:00.00 11 [md]
129 admin 0 -20 0 0 0 S 0.0 0.0 0:00.00 11 [edac-poller]
130 admin 0 -20 0 0 0 S 0.0 0.0 0:00.00 11 [watchdogd]
132 admin 0 -20 0 0 0 S 0.0 0.0 0:00.00 11 [rpciod]
133 admin 0 -20 0 0 0 S 0.0 0.0 0:00.00 9 [xprtiod]
138 admin 20 0 0 0 0 S 0.0 0.0 0:00.00 9 [kswapd0]
139 admin 25 5 0 0 0 S 0.0 0.0 0:00.00 9 [ksmd]
140 admin 39 19 0 0 0 S 0.0 0.0 0:04.06 6 [khugepaged]
141 admin 0 -20 0 0 0 S 0.0 0.0 0:00.00 9 [nfsiod]
142 admin 0 -20 0 0 0 S 0.0 0.0 0:00.00 11 [crypto]
151 admin 0 -20 0 0 0 S 0.0 0.0 0:00.00 9 [kthrotld]
156 admin 0 -20 0 0 0 S 0.0 0.0 0:00.00 9 [kmpath_rdacd]
157 admin 0 -20 0 0 0 S 0.0 0.0 0:00.00 9 [kaluad]
159 admin 20 0 0 0 0 S 0.0 0.0 0:19.36 11 [kworker/11:1]
174 admin 0 -20 0 0 0 S 0.0 0.0 0:00.00 9 [deferwq]
184 admin 0 -20 0 0 0 S 0.0 0.0 0:00.00 9 [bioset]
185 admin 0 -20 0 0 0 S 0.0 0.0 0:00.00 9 [xfsalloc]
186 admin 0 -20 0 0 0 S 0.0 0.0 0:00.00 9 [xfs_mru_cache]
196 admin 0 -20 0 0 0 S 0.0 0.0 0:00.00 9 [ata_sff]
199 admin 20 0 0 0 0 S 0.0 0.0 0:00.00 8 [scsi_eh_0]
200 admin 0 -20 0 0 0 S 0.0 0.0 0:00.00 9 [scsi_tmf_0]
201 admin 20 0 0 0 0 S 0.0 0.0 0:00.00 4 [scsi_eh_1]
202 admin 0 -20 0 0 0 S 0.0 0.0 0:00.00 9 [scsi_tmf_1]
205 admin 20 0 0 0 0 S 0.0 0.0 0:49.77 14 [kworker/14:1]
208 admin 20 0 0 0 0 S 0.0 0.0 0:00.00 9 [cciss_scan]
220 admin 0 -20 0 0 0 S 0.0 0.0 0:00.00 9 [dm_bufio_cache]
225 admin 0 -20 0 0 0 S 0.0 0.0 0:00.75 1 [kworker/1:1H]
227 admin 20 0 0 0 0 S 0.0 0.0 0:29.13 5 [kworker/5:1]
230 admin 0 -20 0 0 0 S 0.0 0.0 0:03.62 8 [kworker/8:1H]
234 admin 0 -20 0 0 0 S 0.0 0.0 0:00.00 11 [bioset]
235 admin 0 -20 0 0 0 S 0.0 0.0 0:00.00 11 [bioset]
236 admin 20 0 0 0 0 S 0.0 0.0 0:00.00 0 [md0_raid1]
239 admin 0 -20 0 0 0 S 0.0 0.0 0:00.00 11 [bioset]
240 admin 0 -20 0 0 0 S 0.0 0.0 0:00.00 11 [bioset]
241 admin 20 0 0 0 0 S 0.0 0.0 0:00.00 11 [md1_raid1]
244 admin 0 -20 0 0 0 S 0.0 0.0 0:00.00 11 [bioset]
245 admin 0 -20 0 0 0 S 0.0 0.0 0:00.00 11 [bioset]
246 admin 20 0 0 0 0 S 0.0 0.0 1:23.84 0 [md2_raid1]
248 admin 0 -20 0 0 0 S 0.0 0.0 0:00.44 9 [kworker/9:1H]
250 admin 0 -20 0 0 0 S 0.0 0.0 0:00.00 11 [kdmflush]
251 admin 0 -20 0 0 0 S 0.0 0.0 0:00.00 11 [bioset]
252 admin 0 -20 0 0 0 S 0.0 0.0 0:00.00 11 [kdmflush]
253 admin 0 -20 0 0 0 S 0.0 0.0 0:00.00 11 [bioset]
254 admin 0 -20 0 0 0 S 0.0 0.0 0:00.00 11 [kdmflush]
255 admin 0 -20 0 0 0 S 0.0 0.0 0:00.00 11 [bioset]
256 admin 0 -20 0 0 0 S 0.0 0.0 0:00.00 11 [kdmflush]
258 admin 0 -20 0 0 0 S 0.0 0.0 0:00.00 11 [kdmflush]
259 admin 0 -20 0 0 0 S 0.0 0.0 0:00.00 11 [bioset]
260 admin 0 -20 0 0 0 S 0.0 0.0 0:00.00 11 [kdmflush]
261 admin 0 -20 0 0 0 S 0.0 0.0 0:00.00 11 [bioset]
262 admin 0 -20 0 0 0 S 0.0 0.0 0:00.00 11 [kdmflush]
263 admin 0 -20 0 0 0 S 0.0 0.0 0:00.00 11 [bioset]
298 admin 0 -20 0 0 0 S 0.0 0.0 0:00.00 11 [kworker/11:1H]
299 admin 0 -20 0 0 0 S 0.0 0.0 0:00.02 10 [kworker/10:1H]
420 admin 0 -20 0 0 0 S 0.0 0.0 0:15.00 0 [kworker/0:1H]
422 admin 0 -20 0 0 0 S 0.0 0.0 0:00.00 11 [xfs-buf/dm-3]
423 admin 0 -20 0 0 0 S 0.0 0.0 0:00.00 11 [xfs-data/dm-3]
424 admin 0 -20 0 0 0 S 0.0 0.0 0:00.00 11 [xfs-conv/dm-3]
425 admin 0 -20 0 0 0 S 0.0 0.0 0:00.00 11 [xfs-cil/dm-3]
426 admin 0 -20 0 0 0 S 0.0 0.0 0:00.00 11 [xfs-reclaim/dm-]
427 admin 0 -20 0 0 0 S 0.0 0.0 0:00.00 11 [xfs-log/dm-3]
428 admin 0 -20 0 0 0 S 0.0 0.0 0:00.00 11 [xfs-eofblocks/d]
429 admin 20 0 0 0 0 S 0.0 0.0 1:47.28 0 [xfsaild/dm-3]
491 admin 16 -4 2520 812 580 S 0.0 0.0 0:01.54 6 /sbin/udevd -d
649 admin 20 0 0 0 0 S 0.0 0.0 0:00.00 9 [kworker/9:2]
687 admin 0 -20 0 0 0 S 0.0 0.0 0:00.02 12 [kworker/12:1H]
723 admin 0 -20 0 0 0 S 0.0 0.0 0:00.02 3 [kworker/3:1H]
982 admin 20 0 11896 4308 3572 S 0.0 0.0 0:00.05 12 sshd: admin-lm [priv]
993 admin 20 0 11896 2588 1848 S 0.0 0.0 0:00.00 13 sshd: admin-lm@pts/2
994 admin 20 0 6204 2340 1696 S 0.0 0.0 0:00.01 2 -bash
1052 admin 20 0 0 0 0 S 0.0 0.0 0:00.00 0 [kworker/0:1]
1249 admin 20 0 2388 296 240 S 0.0 0.0 0:00.00 12 sleep 5
1251 admin 20 0 2388 300 240 S 0.0 0.0 0:00.00 15 /bin/sleep 5
1252 admin 0 -20 3636 1152 980 S 0.0 0.0 0:00.00 9 sh -c mpstat -P ALL 1 1 | awk '/Average:/ && $2 ~ /[0-9]/ {printf "%d\n", 100-$12}'
1253 admin 0 -20 2420 816 624 S 0.0 0.0 0:00.00 12 mpstat -P ALL 1 1
1254 admin 0 -20 3116 900 772 S 0.0 0.0 0:00.00 13 awk /Average:/ && $2 ~ /[0-9]/ {printf "%d\n", 100-$12}
1255 admin 20 0 0 0 0 S 0.0 0.0 0:00.00 1 [kworker/1:1]
1256 admin 20 0 3752 1392 992 R 0.0 0.0 0:00.00 5 top -c -b n 1
2010 admin 20 0 0 0 0 S 0.0 0.0 0:00.00 10 [kworker/10:1]
2410 admin 0 -20 0 0 0 S 0.0 0.0 0:00.00 13 [kworker/13:1H]
2420 admin 0 -20 0 0 0 S 0.0 0.0 0:00.00 14 [kworker/14:1H]
2425 admin 0 -20 0 0 0 S 0.0 0.0 0:00.00 14 [i40e]
2766 admin 0 -20 0 0 0 S 0.0 0.0 0:00.11 2 [kworker/2:1H]
2789 admin 20 0 0 0 0 S 0.0 0.0 0:00.00 2 [kworker/2:2]
4583 admin 20 0 0 0 0 S 0.0 0.0 0:00.00 14 [kworker/14:2]
4713 admin 20 0 0 0 0 S 0.0 0.0 0:31.10 4 [kworker/4:2]
6188 admin 20 0 0 0 0 S 0.0 0.0 0:13.23 9 [kworker/9:0]
6346 admin 20 0 0 0 0 S 0.0 0.0 0:32.74 7 [kworker/7:1]
6730 admin 20 0 0 0 0 S 0.0 0.0 0:00.00 7 [kworker/7:0]
6781 admin 20 0 0 0 0 S 0.0 0.0 0:00.00 6 [kworker/6:1]
7299 admin 0 -20 0 0 0 S 0.0 0.0 0:00.00 13 [kmpathd]
7300 admin 0 -20 0 0 0 S 0.0 0.0 0:00.00 13 [kmpath_handlerd]
7339 admin 20 0 0 0 0 S 0.0 0.0 0:00.00 0 [kjournald]
7340 admin 0 -20 0 0 0 S 0.0 0.0 0:00.00 13 [xfs-buf/dm-2]
7341 admin 0 -20 0 0 0 S 0.0 0.0 0:00.00 13 [xfs-data/dm-2]
7342 admin 0 -20 0 0 0 S 0.0 0.0 0:00.00 13 [xfs-conv/dm-2]
7343 admin 0 -20 0 0 0 S 0.0 0.0 0:00.00 13 [xfs-cil/dm-2]
7344 admin 0 -20 0 0 0 S 0.0 0.0 0:00.00 13 [xfs-reclaim/dm-]
7345 admin 0 -20 0 0 0 S 0.0 0.0 0:00.00 13 [xfs-log/dm-2]
7346 admin 0 -20 0 0 0 S 0.0 0.0 0:00.00 13 [xfs-eofblocks/d]
7347 admin 20 0 0 0 0 S 0.0 0.0 1:47.72 0 [xfsaild/dm-2]
8196 admin 0 -20 0 0 0 S 0.0 0.0 0:00.00 15 [kworker/15:1H]
8412 admin 20 0 0 0 0 S 0.0 0.0 0:01.56 8 [kworker/8:3]
8552 admin 20 0 15436 6832 3056 S 0.0 0.0 0:01.02 3 /bin/clishd default server
8613 admin 20 0 3636 1344 1168 S 0.0 0.0 0:43.13 2 /bin/bash /opt/CPda/bin/DAService_script
8618 admin 20 0 70952 12464 7520 S 0.0 0.0 0:28.38 1 /opt/CPda/bin/DAService
8697 admin 20 0 0 0 0 S 0.0 0.0 0:00.18 6 [kworker/u32:2]
9458 admin 20 0 48388 21176 11324 S 0.0 0.1 3:59.02 11 wstlsd 0 0
9459 admin 20 0 48532 21312 11344 S 0.0 0.1 4:36.08 4 wstlsd 0 1
9460 admin 20 0 48480 21324 11348 S 0.0 0.1 4:33.13 12 wstlsd 0 2
9461 admin 20 0 48540 21384 11348 S 0.0 0.1 4:20.87 5 wstlsd 0 3
9462 admin 20 0 48480 21304 11356 S 0.0 0.1 6:37.82 7 wstlsd 0 4
9463 admin 20 0 48504 21464 11528 S 0.0 0.1 4:16.06 10 wstlsd 0 5
9464 admin 20 0 48404 21268 11340 S 0.0 0.1 4:57.55 5 wstlsd 0 6
9465 admin 20 0 48636 21488 11344 S 0.0 0.1 4:43.03 2 wstlsd 0 7
9466 admin 20 0 48684 21528 11376 S 0.0 0.1 4:23.76 12 wstlsd 0 8
9467 admin 20 0 48540 21336 11340 S 0.0 0.1 4:14.70 7 wstlsd 0 9
9468 admin 20 0 48472 21372 11356 S 0.0 0.1 5:22.87 9 wstlsd 0 10
9469 admin 20 0 48452 21516 11544 S 0.0 0.1 4:37.90 7 wstlsd 0 11
9470 admin 20 0 48452 21328 11368 S 0.0 0.1 4:24.88 10 wstlsd 0 12
9471 admin 20 0 48452 21328 11364 S 0.0 0.1 5:38.10 3 wstlsd 0 13
10490 admin 0 -20 0 0 0 S 0.0 0.0 0:00.00 15 [bioset]
10625 admin 0 -20 0 0 0 S 0.0 0.0 0:00.02 6 [kworker/6:1H]
11461 admin 0 -20 205392 15352 8284 S 0.0 0.0 0:03.43 5 dsd
12312 nobody 20 0 17380 5056 3232 S 0.0 0.0 0:00.08 4 /web/cpshared/web/Apache/2.2.0/bin/httpd2 -k start -f /web/conf/httpd2.conf -D FOR+
13215 admin 20 0 31180 5040 680 S 0.0 0.0 0:00.43 7 lvmetad
13231 admin 20 0 4528 380 224 S 0.0 0.0 0:00.00 9 lvmpolld
13418 admin 20 0 0 0 0 S 0.0 0.0 0:00.00 4 [kworker/4:0]
14546 admin 20 0 24460 5180 3476 S 0.0 0.0 0:01.07 2 lpd
15109 admin 20 0 0 0 0 S 0.0 0.0 0:00.00 15 [kworker/15:0]
15337 admin 20 0 0 0 0 S 0.0 0.0 4:57.67 0 [kworker/0:0]
17887 nobody 20 0 17376 5208 3268 S 0.0 0.0 0:00.23 11 /web/cpshared/web/Apache/2.2.0/bin/httpd2 -k start -f /web/conf/httpd2.conf -D FOR+
18433 admin 20 0 182860 24864 11284 S 0.0 0.1 0:09.26 9 rtmd
18481 admin 20 0 3636 1348 1164 S 0.0 0.0 2:16.77 4 /bin/bash /opt/AutoUpdater/latest/bin/AutoUpdaterService.sh
19258 admin 20 0 2748 1016 652 S 0.0 0.0 0:29.13 7 syslogd -m 0 -z 515 -P info -f /var/run/syslog.conf
19269 admin 20 0 2388 420 344 S 0.0 0.0 0:00.21 7 klogd -x -c 1
19430 admin 20 0 0 0 0 S 0.0 0.0 0:54.61 15 [kworker/15:2]
19555 admin 20 0 0 0 0 S 0.0 0.0 0:17.36 13 [kworker/13:2]
19571 admin 20 0 4536 780 692 S 0.0 0.0 0:00.00 7 /sbin/agetty --nohostname 9600 tty1
19572 admin 20 0 4536 776 692 S 0.0 0.0 0:00.00 8 /sbin/agetty --nohostname 9600 tty2
19573 admin 20 0 4536 780 692 S 0.0 0.0 0:00.00 4 /sbin/agetty --nohostname 9600 tty3
19575 admin 20 0 3636 1352 1176 S 0.0 0.0 0:00.00 8 /bin/bash /bin/console_agetty
19590 admin 20 0 2488 808 712 S 0.0 0.0 0:00.00 0 /sbin/agetty --nohostname 9600 ttyS0 vt100
19753 admin 20 0 0 0 0 S 0.0 0.0 0:35.58 10 [kworker/10:0]
20080 admin 20 0 20752 2424 2116 S 0.0 0.0 0:00.25 4 /opt/CPshrd-R81/bin/pkxld /cp/pkxl_9470_4114417472_1
20082 admin 20 0 20752 2204 1900 S 0.0 0.0 0:00.25 2 /opt/CPshrd-R81/bin/pkxld /cp/pkxl_9459_4115056448_1
20083 admin 20 0 20752 2168 1872 S 0.0 0.0 0:00.21 2 /opt/CPshrd-R81/bin/pkxld /cp/pkxl_9465_4114777920_1
20999 admin 20 0 170644 40856 12132 S 0.0 0.1 5:10.99 11 rad
21013 admin 20 0 33720 17280 6768 S 0.0 0.1 0:20.89 11 /opt/CPshrd-R81/web/Apache/bin/httpd -DFOREGROUND -k start -f /opt/CPshrd-R81/conf+
21039 nobody 20 0 34084 14844 4060 S 0.0 0.0 0:00.04 14 /opt/CPshrd-R81/web/Apache/bin/httpd -DFOREGROUND -k start -f /opt/CPshrd-R81/conf+
21040 nobody 20 0 34180 14708 3936 S 0.0 0.0 0:00.01 11 /opt/CPshrd-R81/web/Apache/bin/httpd -DFOREGROUND -k start -f /opt/CPshrd-R81/conf+
21041 nobody 20 0 34032 14820 4056 S 0.0 0.0 0:00.01 9 /opt/CPshrd-R81/web/Apache/bin/httpd -DFOREGROUND -k start -f /opt/CPshrd-R81/conf+
21042 nobody 20 0 34048 14708 3936 S 0.0 0.0 0:00.01 12 /opt/CPshrd-R81/web/Apache/bin/httpd -DFOREGROUND -k start -f /opt/CPshrd-R81/conf+
21043 nobody 20 0 34036 14696 3932 S 0.0 0.0 0:00.01 11 /opt/CPshrd-R81/web/Apache/bin/httpd -DFOREGROUND -k start -f /opt/CPshrd-R81/conf+
21410 nobody 20 0 17380 5104 3212 S 0.0 0.0 0:00.16 2 /web/cpshared/web/Apache/2.2.0/bin/httpd2 -k start -f /web/conf/httpd2.conf -D FOR+
21538 admin 20 0 0 0 0 S 0.0 0.0 0:48.24 3 [kworker/3:1]
21992 admin 20 0 0 0 0 S 0.0 0.0 0:00.00 13 [kworker/13:0]
22232 admin 20 0 0 0 0 S 0.0 0.0 0:00.00 13 [kissd]
22436 nobody 20 0 33852 13200 2680 S 0.0 0.0 0:00.00 14 /opt/CPshrd-R81/web/Apache/bin/httpd -DFOREGROUND -k start -f /opt/CPshrd-R81/conf+
22504 admin 20 0 0 0 0 S 0.0 0.0 0:00.00 12 [kworker/u32:1]
22596 admin 20 0 20752 2232 1924 S 0.0 0.0 0:00.24 2 /opt/CPshrd-R81/bin/pkxld /cp/pkxl_9467_4114548544_1
22619 admin 20 0 20752 2232 1924 S 0.0 0.0 0:00.25 2 /opt/CPshrd-R81/bin/pkxld /cp/pkxl_9468_4114208576_1
22652 admin 20 0 8224 2008 1548 S 0.0 0.0 0:00.00 2 /usr/sbin/sshd
22685 admin 20 0 21012 2816 2268 S 0.0 0.0 0:00.27 4 /opt/CPshrd-R81/bin/pkxld /cp/pkxl_9466_4115142464_1
22687 admin 20 0 20752 2232 1924 S 0.0 0.0 0:00.25 1 /opt/CPshrd-R81/bin/pkxld /cp/pkxl_9460_4114790208_1
22747 nobody 20 0 17404 5116 3212 S 0.0 0.0 0:00.21 5 /web/cpshared/web/Apache/2.2.0/bin/httpd2 -k start -f /web/conf/httpd2.conf -D FOR+
22938 admin 20 0 20752 2228 1924 S 0.0 0.0 0:00.25 5 /opt/CPshrd-R81/bin/pkxld /cp/pkxl_9461_4115015488_1
23229 admin 20 0 2388 296 240 S 0.0 0.0 0:00.00 9 sleep 3600
23400 admin 20 0 0 0 0 S 0.0 0.0 0:01.55 2 [kworker/2:1]
23693 admin 20 0 0 0 0 S 0.0 0.0 87:42.31 15 [fw_worker_0]
23694 admin 20 0 0 0 0 S 0.0 0.0 115:39.88 7 [fw_worker_1]
23695 admin 20 0 0 0 0 S 0.0 0.0 68:41.02 13 [fw_worker_2]
23696 admin 20 0 0 0 0 S 0.0 0.0 71:10.73 5 [fw_worker_3]
23697 admin 20 0 0 0 0 S 0.0 0.0 81:18.06 13 [fw_worker_4]
23698 admin 20 0 0 0 0 S 0.0 0.0 85:43.42 5 [fw_worker_5]
23699 admin 20 0 0 0 0 S 0.0 0.0 87:16.18 12 [fw_worker_6]
23700 admin 20 0 0 0 0 S 0.0 0.0 87:44.85 4 [fw_worker_7]
23701 admin 20 0 0 0 0 S 0.0 0.0 79:31.94 11 [fw_worker_8]
23702 admin 20 0 0 0 0 S 0.0 0.0 83:37.66 3 [fw_worker_9]
23704 admin 20 0 0 0 0 S 0.0 0.0 85:24.46 2 [fw_worker_11]
23705 admin 20 0 0 0 0 S 0.0 0.0 83:24.81 9 [fw_worker_12]
23706 admin 20 0 0 0 0 S 0.0 0.0 88:47.28 1 [fw_worker_13]
24302 admin 20 0 0 0 0 S 0.0 0.0 0:00.05 1 [kworker/1:2]
24652 admin 20 0 0 0 0 S 0.0 0.0 0:00.00 8 [kworker/8:0]
24902 admin 20 0 0 0 0 S 0.0 0.0 0:00.00 11 [kworker/11:0]
24989 admin 20 0 0 0 0 S 0.0 0.0 0:00.00 9 [kworker/9:1]
25000 admin 20 0 1014080 13132 10348 S 0.0 0.0 0:18.59 13 tp_conf_service --conf=tp_conf.json --log=error
26087 nobody 20 0 34016 14664 3920 S 0.0 0.0 0:00.02 15 /opt/CPshrd-R81/web/Apache/bin/httpd -DFOREGROUND -k start -f /opt/CPshrd-R81/conf+
26089 nobody 20 0 33916 14112 3512 S 0.0 0.0 0:00.00 7 /opt/CPshrd-R81/web/Apache/bin/httpd -DFOREGROUND -k start -f /opt/CPshrd-R81/conf+
26090 nobody 20 0 34048 14572 3840 S 0.0 0.0 0:00.00 1 /opt/CPshrd-R81/web/Apache/bin/httpd -DFOREGROUND -k start -f /opt/CPshrd-R81/conf+
26650 admin 17 -3 11792 600 476 S 0.0 0.0 0:01.30 10 auditd
26653 admin 20 0 0 0 0 S 0.0 0.0 0:00.15 6 [kauditd]
27709 admin 0 -20 0 0 0 S 0.0 0.0 0:00.01 5 [kworker/5:1H]
27768 admin 0 -20 0 0 0 S 0.0 0.0 0:00.00 4 [kworker/4:1H]
27889 admin 20 0 29724 8000 6264 S 0.0 0.0 0:00.02 2 /bin/pm
27907 admin 20 0 53072 18460 11480 S 0.0 0.1 15:33.94 1 /bin/confd
27908 admin 30 10 27164 5240 2256 S 0.0 0.0 0:11.47 7 /bin/searchd -niceboost 10
27909 admin 20 0 7368 2084 1672 S 0.0 0.0 0:02.13 13 /usr/sbin/ntpd -n -g -c /etc/ntp.conf
27911 admin 20 0 90124 9972 7812 S 0.0 0.0 0:00.70 3 /bin/rconfd /etc/actions_mapping.xml
27912 admin 20 0 288492 284092 2856 S 0.0 0.9 78:39.47 5 /bin/monitord
27915 admin 0 -20 0 0 0 S 0.0 0.0 0:00.00 7 [kworker/7:1H]
27987 admin 20 0 29704 7768 6312 S 0.0 0.0 0:00.02 11 /bin/cloningd
27988 admin 20 0 35300 27040 4120 S 0.0 0.1 41:51.19 7 /opt/CPsuite-R81/fw1/Python/bin/python /bin/celery -A taskmanager.taskManager.cele+
27990 admin 20 0 118060 3212 2556 S 0.0 0.0 2:40.22 1 /bin/frontstage
27991 admin 20 0 21440 3960 3012 S 0.0 0.0 0:00.00 7 /bin/clish -p
27992 admin 20 0 263668 90880 45284 S 0.0 0.3 66:41.29 10 /usr/sbin/snmpd -f -c /etc/snmp/userDefinedSettings.conf
27993 admin 20 0 29508 2212 1524 S 0.0 0.0 16:33.26 13 /bin/redis-server 127.0.0.1:6379
27994 admin 20 0 16624 11244 3052 S 0.0 0.0 2:19.83 15 /opt/CPsuite-R81/fw1/Python/bin/python -m gunicorn.app.wsgiapp -c /rest_api/rest-a+
27995 admin 20 0 11660 2756 2132 S 0.0 0.0 0:00.00 9 /usr/bin/dynamic_server
27996 admin 20 0 17312 11740 3052 S 0.0 0.0 2:26.11 10 /opt/CPsuite-R81/fw1/Python/bin/python -m gunicorn.app.wsgiapp -c /rest_api/rest-a+
28026 admin 20 0 2412 532 412 S 0.0 0.0 0:00.00 8 /usr/sbin/acpid
28085 admin 20 0 3956 980 788 S 0.0 0.0 0:00.00 4 xinetd -stayalive -pidfile /var/run/xinetd.pid
28130 admin 20 0 4716 1348 752 S 0.0 0.0 0:02.55 7 crond
28158 admin 20 0 21192 14308 2384 S 0.0 0.0 0:17.15 9 /opt/CPsuite-R81/fw1/Python/bin/python -m gunicorn.app.wsgiapp -c /rest_api/rest-a+
28162 admin 20 0 57788 39616 3636 S 0.0 0.1 0:17.75 1 /opt/CPsuite-R81/fw1/Python/bin/python -m gunicorn.app.wsgiapp -c /rest_api/rest-a+
28216 admin 20 0 3320 1224 976 S 0.0 0.0 0:00.00 9 /bin/csh -fb /opt/CPshrd-R81/bin/cprid_wd
28226 admin 20 0 21180 5980 4548 S 0.0 0.0 0:00.09 2 /opt/CPshrd-R81/bin/cprid
28247 admin 20 0 35208 24432 1528 S 0.0 0.1 0:00.00 10 /opt/CPsuite-R81/fw1/Python/bin/python /bin/celery -A taskmanager.taskManager.cele+
28248 admin 20 0 35208 24464 1560 S 0.0 0.1 0:00.00 1 /opt/CPsuite-R81/fw1/Python/bin/python /bin/celery -A taskmanager.taskManager.cele+
28276 admin 20 0 19300 3360 2084 S 0.0 0.0 27:56.48 2 /opt/CPshrd-R81/bin/cpwd
28287 admin 20 0 186620 47228 35012 S 0.0 0.1 23:52.94 3 cpviewd
28296 admin 20 0 41632 20320 9828 S 0.0 0.1 43:20.84 1 cpview_services
28302 admin 20 0 29052 9668 6984 S 0.0 0.0 3:21.49 9 sxl_statd
28315 admin 20 0 347364 97680 51024 S 0.0 0.3 107:33.42 1 cpd
28335 admin 20 0 160540 10060 7576 S 0.0 0.0 0:15.91 3 mpdaemon /opt/CPshrd-R81/log/mpdaemon.elg /opt/CPshrd-R81/conf/mpdaemon.conf
28515 admin 20 0 315316 51096 34300 S 0.0 0.2 0:12.16 6 cxld -d
28521 admin 20 0 3320 1248 984 S 0.0 0.0 0:01.23 5 /bin/csh -f /opt/CPsuite-R81/fw1/bin/avi_del_tmp_files
28525 nobody 20 0 25468 7456 5812 S 0.0 0.0 0:00.02 5 ci_http_server -j -f /opt/CPsuite-R81/fw1/conf/cihs.conf
28551 admin 20 0 991736 452088 45388 S 0.0 1.4 495:14.89 9 fwd
28558 admin 20 0 15668 5152 3876 S 0.0 0.0 26:20.02 5 spike_detective
28589 admin 20 0 0 0 0 S 0.0 0.0 11:40.54 0 [snd]
28590 admin 20 0 0 0 0 S 0.0 0.0 0:12.10 1 [snd]
28591 admin 20 0 0 0 0 S 0.0 0.0 1:11.97 2 [snd]
28592 admin 20 0 0 0 0 S 0.0 0.0 0:51.03 3 [snd]
28593 admin 20 0 0 0 0 S 0.0 0.0 0:27.04 4 [snd]
28594 admin 20 0 0 0 0 S 0.0 0.0 1:30.74 5 [snd]
28595 admin 20 0 0 0 0 S 0.0 0.0 4:19.87 6 [snd]
28596 admin 20 0 0 0 0 S 0.0 0.0 0:00.00 7 [snd]
28597 admin 20 0 0 0 0 S 0.0 0.0 11:53.69 8 [snd]
28598 admin 20 0 0 0 0 S 0.0 0.0 0:12.75 9 [snd]
28599 admin 20 0 0 0 0 S 0.0 0.0 1:17.30 10 [snd]
28600 admin 20 0 0 0 0 S 0.0 0.0 0:54.12 11 [snd]
28601 admin 20 0 0 0 0 S 0.0 0.0 0:28.62 12 [snd]
28602 admin 20 0 0 0 0 S 0.0 0.0 1:37.30 13 [snd]
28603 admin 20 0 0 0 0 S 0.0 0.0 4:38.31 14 [snd]
28604 admin 20 0 0 0 0 S 0.0 0.0 0:00.00 15 [snd]
28605 admin 20 0 0 0 0 S 0.0 0.0 0:40.51 8 [snd_c]
28659 admin 20 0 0 0 0 S 0.0 0.0 0:00.00 0 [kworker/0:2]
28903 admin 20 0 0 0 0 S 0.0 0.0 0:00.00 5 [kworker/5:2]
28986 admin 20 0 0 0 0 S 0.0 0.0 0:00.05 1 [kworker/1:0]
29205 admin 20 0 160112 9396 6732 S 0.0 0.0 0:00.98 3 cphamcset -d
29343 admin 20 0 17244 6908 5252 S 0.0 0.0 0:31.77 7 /web/cpshared/web/Apache/2.2.0/bin/httpd2 -k start -f /web/conf/httpd2.conf -D FOR+
29477 admin 20 0 20752 1968 1696 S 0.0 0.0 0:00.24 3 /opt/CPshrd-R81/bin/pkxld /cp/pkxl_9471_4114827072_1
29487 admin 20 0 20752 1972 1696 S 0.0 0.0 0:00.23 2 /opt/CPshrd-R81/bin/pkxld /cp/pkxl_9463_4114278208_1
29488 admin 20 0 20752 1968 1696 S 0.0 0.0 0:00.24 1 /opt/CPshrd-R81/bin/pkxld /cp/pkxl_9462_4114659136_1
29680 admin 20 0 0 0 0 S 0.0 0.0 0:00.00 8 [kworker/8:1]
30000 admin 20 0 0 0 0 S 0.0 0.0 0:00.00 12 [kworker/12:0]
30099 admin 20 0 36204 9316 7236 S 0.0 0.0 4:09.31 1 wsdnsd
30157 admin 20 0 328664 52184 35176 S 0.0 0.2 0:15.87 12 in.asessiond 0
30160 admin 20 0 2135596 1.843g 31400 S 0.0 5.9 116:39.81 4 pdpd 0 -t
30161 admin 20 0 219956 40520 20384 S 0.0 0.1 26:11.48 15 pepd 0 -t
30163 admin 20 0 121124 29504 18780 S 0.0 0.1 1:43.06 10 tpd 0
30172 admin 20 0 71776 21564 16092 S 0.0 0.1 6:07.71 1 topod
30176 admin 20 0 363616 111748 25648 S 0.0 0.3 99:30.06 7 vpnd 0
30466 admin 20 0 0 0 0 S 0.0 0.0 0:34.03 12 [kworker/12:2]
30881 admin 0 -20 56256 9976 7692 S 0.0 0.0 2:07.21 10 /bin/routed -N
30904 admin 0 -20 75292 15344 9676 S 0.0 0.0 1:07.45 10 /bin/routed -i default -f /etc/routed0.conf -h 1
32645 admin 20 0 0 0 0 S 0.0 0.0 0:00.00 3 [kworker/3:0]
32698 admin 39 19 575400 14516 7004 S 0.0 0.0 0:06.14 4 /opt/AutoUpdater/latest/bin/AutoUpdater

0 Kudos
Daniel_Szydelko
Advisor
Advisor

Rather lazy SG than busy one. Amount of active associations is also quite small.

I do suggest to open SR ticket in the TAC.

0 Kudos
Kaspars_Zibarts
Employee Employee
Employee

@Royi_Priov - sorry to drag you in, do you think your team could cast the eye on this case? i think it's enough if you read last post from @Daniel_Szydelko 🙂

0 Kudos
Laurent-LH
Contributor

Hi everybody

I think I have found the solution with the sk174266. It is a the limit of 10 machines for 1 user before to be considered as a service account and not used in the rules.

I have increase the limit to 100 and exclude some administrator accounts and the behahiour is now normal : rules with the AD accounts are applicated.


Regards

0 Kudos
Alex-
Leader Leader
Leader

I got this after an upgrade from R80.40 take 118 to R81 T44 where everything looked fine at first.

Probably worth mentioning in the "Important notes" of R80.40, R81 and R81.10 JHF SK that it's enabled by default.

0 Kudos
hasan_durna
Explorer

How did you solve this problem? I have the same problem. I am pulling an AD group. The source names of some of them come in the logs, some of them do not, and the user name does not come in the pdp monitor user. For this reason, the incoming user violates the internet rule, others do not pass this rule.

0 Kudos
Laurent-LH
Contributor

Hi Hasan

I resolved the probleme. It was a limit of number of connections for a user at 10 to increase (100 for instance)

#pdp idc service_accounts set_threshold 100

I hope it could help you

Laurent

0 Kudos

Leaderboard

Epsum factorial non deposit quid pro quo hic escorol.

Upcoming Events

    CheckMates Events