Member since 
    
	
		
		
		07-14-2016
	
	
	
	
	
	
	
	
	
	
	
	
	
	
			
      
                215
            
            
                Posts
            
        
                45
            
            
                Kudos Received
            
        
                16
            
            
                Solutions
            
        My Accepted Solutions
| Title | Views | Posted | 
|---|---|---|
| 5108 | 12-13-2018 05:01 PM | |
| 15125 | 09-07-2018 06:12 AM | |
| 3373 | 08-02-2018 07:04 AM | |
| 4763 | 03-26-2018 07:38 AM | |
| 3790 | 12-06-2017 07:53 AM | 
			
    
	
		
		
		11-27-2017
	
		
		06:54 AM
	
	
	
	
	
	
	
	
	
	
	
	
	
	
		
	
				
		
			
					
	
		1 Kudo
		
	
				
		
	
		
					
							 
	Can you please run these steps and paste the output?  
	1. cd to the directory Metron top level directory (E.g.  cd /home/user1/metron )  
	2. Run  ./metron-deployment/scripts/platform-info.sh  
						
					
					... View more
				
			
			
			
			
			
			
			
			
			
		
			
    
	
		
		
		11-27-2017
	
		
		05:49 AM
	
	
	
	
	
	
	
	
	
	
	
	
	
	
		
	
				
		
			
					
				
		
	
		
					
							 
	Hi @Gaurav Bapat, can you post the output of running the command  metron-deployment/scripts/platform-info.sh  ?  
	I am guessing this could be due to an older version of node and npm modules. Here is the output from my system, for which I am able to get everything working.  Metron 0.4.2
--
* master
--
--
--
ansible 2.0.0.2
  config file =
  configured module search path = Default w/o overrides
--
Vagrant 1.9.4
--
Python 2.7.12
--
Apache Maven 3.3.9 (bb52d8502b132ec0a5a3f4c09453c07478323dc5; 2015-11-10T22:11:47+05:30)
Maven home: /usr/local/Cellar/maven/3.3.9/libexec
Java version: 1.8.0_91, vendor: Oracle Corporation
Java home: /Library/Java/JavaVirtualMachines/jdk1.8.0_91.jdk/Contents/Home/jre
Default locale: en_US, platform encoding: UTF-8
OS name: "mac os x", version: "10.12.6", arch: "x86_64", family: "mac"
--
Docker version 1.12.1, build 23cf638, experimental
--
node
v8.9.1
--
npm
5.5.1
--
Darwin HW12724.local 16.7.0 Darwin Kernel Version 16.7.0: Wed Oct  4 00:17:00 PDT 2017; root:xnu-3789.71.6~1/RELEASE_X86_64 x86_64
--
Total System Memory = 16384 MB
Processor Model: Intel(R) Core(TM) i7-4870HQ CPU
Processor Speed: 2.50GHz
Total Physical Processors: 4
Total cores: 4
Disk information:
/dev/disk1     465Gi  402Gi   63Gi    87% 2338554 4292628725    0%   /
/dev/disk3s1    96Mi   94Mi  1.7Mi    99%      12 4294967267    0%   /Volumes/VirtualBox
/dev/disk4s1    99Mi   97Mi  1.6Mi    99%      12 4294967267    0%   /Volumes/VirtualBox 1
This CPU appears to support virtualization
 
						
					
					... View more
				
			
			
			
			
			
			
			
			
			
		
			
    
	
		
		
		11-26-2017
	
		
		04:36 PM
	
	
	
	
	
	
	
	
	
	
	
	
	
	
		
	
				
		
			
					
	
		1 Kudo
		
	
				
		
	
		
					
							 @Uvaraj Seerangan, you might be running into METRON-1283. You can confirm that you are hitting this issue as follows - Go to http://node1:9200/snort*/_mappings. If you are missing the "alerts" field from the mapping, then your Alert UI will come up empty  In order to fix the issue, follow these steps:  * Clear all existing Elasticsearch indices  * Go to Ambari UI -> Services -> Metron -> 'Service Actions' dropdown -> Elasticsearch Template Install  * Re-ingest data into Elasticsearch (or let the sensor-stubs running, if this is on full-dev deployment).  And you should now be able to see entries in the Alerts UI. 
						
					
					... View more
				
			
			
			
			
			
			
			
			
			
		
			
    
	
		
		
		11-15-2017
	
		
		07:16 AM
	
	
	
	
	
	
	
	
	
	
	
	
	
	
		
	
				
		
			
					
				
		
	
		
					
							 Cool @Ashikin! 
						
					
					... View more
				
			
			
			
			
			
			
			
			
			
		
			
    
	
		
		
		11-15-2017
	
		
		05:55 AM
	
	
	
	
	
	
	
	
	
	
	
	
	
	
		
	
				
		
			
					
				
		
	
		
					
							 
	Hello @Ashikin, please try the following and see if it resolves your issue.  
	In the Ambari UI, go to Services -> Metron -> Configs  
	Under the 'Filters' search for the parameter  metron_indexing_classpath  and add the following value: 
 /usr/hdp/current/hadoop-client/conf:/usr/hdp/current/hbase-client/conf:/usr/hcp/1.3.0.0-51/metron/lib/metron-rest-0.4.1.1.3.0.0-51.jar:/usr/hcp/1.3.0.0-51/metron/lib/metron-elasticsearch-0.4.1.1.3.0.0-51-uber.jar
  
	Then restart Metron REST and Management UI services 
						
					
					... View more
				
			
			
			
			
			
			
			
			
			
		
			
    
	
		
		
		11-14-2017
	
		
		05:50 AM
	
	
	
	
	
	
	
	
	
	
	
	
	
	
		
	
				
		
			
					
				
		
	
		
					
							 Hey @new data, glad to hear that you were able to resolve the issue!  Would you mind marking the answer as accepted ? 
						
					
					... View more
				
			
			
			
			
			
			
			
			
			
		
			
    
	
		
		
		11-13-2017
	
		
		03:46 AM
	
	
	
	
	
	
	
	
	
	
	
	
	
	
		
	
				
		
			
					
				
		
	
		
					
							 In your above reply, for the JDBC URL, I can there is a leading space before the DB name 'metronrest'. Can you correct this and give it a try? Maybe that is the one causing the issue.  Use:  jdbc:mysql://127.0.0.1:3306/metronrest  Instead of:  jdbc:mysql://127.0.0.1:3306/ metronrest 
						
					
					... View more
				
			
			
			
			
			
			
			
			
			
		
			
    
	
		
		
		11-11-2017
	
		
		04:38 PM
	
	
	
	
	
	
	
	
	
	
	
	
	
	
		
	
				
		
			
					
				
		
	
		
					
							 The mysql-connector-java.jar is there. I am not sure why the "." is in the file path as i already set the path with "/".  Hmm.. this is strange indeed. How did you set the path? through the Ambari UI or by editing the config files on the host?  Can you post a screenshot of the Ambari UI -> Metron -> Configs -> REST tab details? 
						
					
					... View more
				
			
			
			
			
			
			
			
			
			
		
			
    
	
		
		
		11-10-2017
	
		
		06:42 AM
	
	
	
	
	
	
	
	
	
	
	
	
	
	
		
	
				
		
			
					
				
		
	
		
					
							 
	@new data  
	The following error suggests that you might not have the JDBC connector properly configured  
	
 
		Error: Could not find or load main class .usr.share.java.mysql-connector-java.jar:.usr.metron.0.4.1.lib.metron-elasticsearch-0.4.1-uber.jar
	   
	Can you check if you are able to locate the file 
	 /usr/share/java/mysql-connector-java.jar  on the metron host? Also in your error message, I wonder why are you seeing dots "." in the file path. Can you recheck that as well?  As for the default H2 driver, it should work out of the box without issues. Can you paste these few details to troubleshoot further:  * Which version of Metron are you using?   * What type? Full-dev or bare-metal?   * Test environment - how many nodes? 
						
					
					... View more
				
			
			
			
			
			
			
			
			
			
		
			
    
	
		
		
		11-08-2017
	
		
		02:32 PM
	
	
	
	
	
	
	
	
	
	
	
	
	
	
		
	
				
		
			
					
				
		
	
		
					
							@new data
 
	do you see any failures in either the rest or managementui logs at /var/log/metron? 
 
 
	Also, if you were to do a quick troubleshooting to isolate if MySQL has been setup properly, you can try the following. Go to Ambari UI -> Metron -> Config. Set the following parameters with values mentioned.
 
 
Metron JDBC Driver = org.h2.Driver
Metron JDBC password = root
Metron JDBC platform = h2
Metron JDBC URL = jdbc:h2:file:~/metrondb
Metron JDBC username = root
Active Spring profiles = dev
 
 
	Restart the REST and Management UI services, fire up management UI and login using the credentials  admin/password .
 
						
					
					... View more
				
			
			
			
			
			
			
			
			
			
		 
         
					
				













