"I have ran scriptutil -l "nameof script" and it is listed."
-> from where ? the same appserver your gui is connected to ?
"name of script" is where ? on all appservers in NSH/share/sensors ?
what's in the rscd log on red1 when you get this error ?
does this work against any other system besides red1 ?
There Console is installed on the appserver and scriptutil -l was executed from an NSH session
The script is stored in the NSH/share/sensors directory
This issue affects all Extended Objects, including the OOTB ones on all of the Linux systems.
I can from an NSH session run scriptutil -h red1 -s sendmail_check and this works as it should.
When I try to test the rule in compliance that calls this script or from live browse try to execute one of the EO i.e. unix services nothing happens.
UPDATE: Based on File attachment policies, a file was removed, see FAQ for more
3be0df592b11e2fdfe7c 0000000007 09/02/16 00:47:27.267 INFO rscd - ::ffff:192.168.0.1 3192 0/0 (BLAdmins:BLAdmin): scriptutil: scriptutil -d /var/tmp/stage -h red1 -s unix_svcs_status
so BLAdmins is mapped to root. does /var/tmp/stage exist on the target ?
It does owned by root:root full permissions sticky bit set
So if you run the same scriptutil from the commnadline on the appserver against red1 what happens ?
When I run the script in a terminal session it works. ./send_mail
When I run scriptutil from a “NSH Here” session it works on all RH targets
What if you change your EO definition to:
scriptutil –d /var/tmp/stage -h ??TARGET.HOST?? -s sendmail_check
and in NSH/share/sensors you have a file named ‘sendmail_check’ or ‘sendmail_check.Linux’ ?
does the ‘unix_svcs_status’ EO fail w/ the same error in the rule tester ?
Same output. We have tried with both types of file.
Q. By command line do you mean a command window on the appserver if so output was
Unable to reach red1: No authorization to access host.
Checked all three RH targets stage dir exists
I can deploy to all of the linux targets.
You get a no authorization to access host because you didn’t pickup any bsa creds.
If you do a ‘nsh here’ you will get bsa creds of whatever role:user you are logged in as.
So you did a rule test w/ the existing ‘unix_svcs_status’ and that fails w/ the same message? can you live browse that one ? can you live browse your mail check eo ?
Can you run the scriptutil command from the ‘nsh here’ window ?
Scriptutil –h red1 –s eo_name ?
Scriptutil –d /var/tmp/stage –h red1 –s eo_name ?
For both your eo and the unix_svcs_status ?
From “NSH Here”
Both of these work
scriptutil –h red1 –s unix_svcs_status
scriptutil -d /var/tmp/stage –h red1 –s unix_svcs_status
Both of these work
scriptutil -d –h red1 –s sendmail_check
scriptutil -d /var/tmp/stage –h red1 –s sendmail_check
scriptutil –h red1 –s SendMailCheck which is the name of the Local Extended Object
Live browse Returns nothing
Will send lab access details privately