Buy or Renew
Buy or Renew
NOTICE: You can now engage in the community. Learn about the great new Cisco Umbrella content.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
847
Views
1
Helpful
2
Replies

SNA Stealthwatch SLIC channel down

Go to solution
aradano
Level 1
Level 1

‎08-11-2023 02:53 AM

Hi all,

I'm new in the communinty, thanks in advance for any help you'd like to provide me.

My customer is using Secure Network Analytics version 7.4.2, the product have been licensed, also the license for Threat Intelligence is authorized but the alarm for the SLIC channel down is working.

I tried to ping esdhttp.flexnetoperations.com (ping ok) and lancope.flexnetoperations.com (ping ko) but when I tried to browse the last one I get an end of support announcement. May this be the cause of the issue?

You can find the /lancope/var/smc/log/smc-core.log  file attached.

I will appreciate if anyone can give me some support about that.

2 people had this problem
Labels:
Preview file
920 KB
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
JennieZhang
Cisco Employee
Cisco Employee

‎08-29-2023 03:44 AM - edited ‎08-29-2023 11:13 PM

Hello, aradano ,

I have checked your log and I noticed below error message were happening.

"Caused by: org.bouncycastle.crypto.IllegalKeyException: Attempt to sign/verify with RSA modulus already used for encrypt/decrypt"

Are you still seeing the issue or is it working well now? This error message seems related to a bug which impacts version 7.4.2.

https://bst.cloudapps.cisco.com/bugsearch/bug/CSCwh17234

If you are still seeing this error message, I suggest you collect and provide diagnostic  log to TAC team, they will confirm if you are hitting that bug. 

View solution in original post

2 Replies 2

Go to solution
JennieZhang
Cisco Employee
Cisco Employee

‎08-29-2023 03:44 AM - edited ‎08-29-2023 11:13 PM

Hello, aradano ,

I have checked your log and I noticed below error message were happening.

"Caused by: org.bouncycastle.crypto.IllegalKeyException: Attempt to sign/verify with RSA modulus already used for encrypt/decrypt"

Are you still seeing the issue or is it working well now? This error message seems related to a bug which impacts version 7.4.2.

https://bst.cloudapps.cisco.com/bugsearch/bug/CSCwh17234

If you are still seeing this error message, I suggest you collect and provide diagnostic  log to TAC team, they will confirm if you are hitting that bug. 

Go to solution
aradano
Level 1
Level 1
In response to JennieZhang

‎08-30-2023 03:28 AM

Hi Jennie,

I belive you're right: the symptoms of the bug matches with the issue I'm experiencing. I involved the TAC team as you sggested before applying the workaround.

Thanks for your help

 

0 Helpful
Customers Also Viewed These Support Documents