Issue: The following error:
post of events failed to https://sentinel.demo.local:1590/events: ##
occurs in the /var/log/messages location on the Agent while connecting to Sentinel.
Workaround: Perform the following procedure:
Check the Sentinel configuration IP address for SENTINEL_DESTINATIONS flag in /etc/vsaunix.cfg configuration file.
If the IP address is incorrect, provide the correct IP address.
Run the following commands to check whether the detectd and vigilent services are running.
ps -ef | grep "detect"
ps -ef | grep "vigilent"
(Conditional) If detectd and vigilent services are not running, restart the services. Run the following commands:
/etc/init.d/detectd restart
/etc/init.d/vigilentagent restart
(Conditional) If the detectd and vigilent services are running, check connection status. Run the following command:
netstat -na | grep 1590
Wait for a few seconds and check the connection status again.
If there is any certificate related issue, refer to Sentinel Agent Manager documentation.