Troubleshooting
Problem
The DSA utility is not installed natively on Lenovo QRadar® Network PCAP appliances, so Administrators who experience hardware issues on their Lenovo Hardware appliances need to download and install the DSA utility in order to gather the DSA logs and submit a report with the hardware support request.
Environment
- For QRadar M4 and M5 appliances, the Lenovo DSA 10.5 utility can be used to collect DSA logs.
- For QRadar M6 and newer appliances the Lenovo OneCLI utility can be used to collect DSA logs.
Resolving The Problem
Procedure
- Download the software based on your appliance version.
- For M4 or M5 appliances, download the file lnvgy_utl_dsa_dsala7k-10.5_portable_rhel7_x86-64.bin to your local computer. For more information, see Lenovo Dynamic System Analysis (DSA) - Portable for RHEL 7 x86-64.
- For M6 and later appliances, download lnvgy_utl_lxcer_onecli01u-<version>_rhel_x86-64 (rpm) to your local computer. For more information, see Lenovo XClarity Essentials OneCLI (OneCLI).
- Log in to the IMM or XCC and open remote control.
- When prompted, type the credentials to connect to the remote management interface.
Note: The default credentials for QRadar Network Packet Capture appliances are root/napatech10. - Run the command:
mkdir -p /opt/qradar/support
- Using WinSCP & upload to console /tmp.
- From Network PCAP IMM command line, you can copy the files back to Network PCAP with scp console-ip:/tmp/filename .
- The DSA bin you download must be uploaded to /opt/qradar/support.
- The OneCLI rpm file can be uploaded to /tmp.
- For M4 or M5 appliances, to install and run the DSA utility:
- To set permissions on the file, type:
chmod 755 /opt/qradar/support/lnvgy_utl_dsa_dsala7k-10.5_portable_rhel7_x86-64.bin
- To collect the DSA logs, type:
/opt/qradar/support/lnvgy_utl_dsa_dsala7k-10.5_portable_rhel7_x86-64.bin
- The utility creates a file in /var/log/Lenovo_Support with the machine type, example 7944AC1, Serial Number, and date.xml.gz. For example,
7944AC1_KQ6X8X8_20120927-163515.xml.gz
- To set permissions on the file, type:
- Install and run the OneCLI utility on an M6 or newer:
- To install OneCLI, type:
yum -y install /tmp/lnvgy_utl_lxcer_onecli-<version>_rhel_x86-64.rpm
- To collect the DSA logs, type:
/opt/lenovo/lnvgy-utl-lxce-onecli/dsa
- The utility creates a file in /var/log/Lenovo_Support with the machine type, serial number, and a timestamp as an XML file.
For example, OneCli-inventory-7X06-J1010000-RHEL7--20211104-170730.xml
- To install OneCLI, type:
- From QRadar console CLI, scp the files from the QRadar Network Packet Capture to the Console.
- Use WinSCP or equivalent to download the DSA files from console.
- Attach the hardware report to your QRadar Support case.
Related Information
[{"Type":"MASTER","Line of Business":{"code":"LOB24","label":"Security Software"},"Business Unit":{"code":"BU059","label":"IBM Software w\/o TPS"},"Product":{"code":"SSMT8P","label":"IBM QRadar Network Packet Capture Appliance"},"ARM Category":[{"code":"a8m0z000000cwtcAAA","label":"Hardware"}],"ARM Case Number":"","Platform":[{"code":"PF025","label":"Platform Independent"}],"Version":"All Versions"}]
Was this topic helpful?
Document Information
Modified date:
01 May 2023
UID
swg21999961