Hi Sandra
I'll reproduce TSM issue with Symantec Support as follows:
--------------------------------------------------------------------------------------------------------------------------------
I have this IBM TSM reporter but the TEPS connectivity service cannot startup. After removing network threat feature from SEP, it works. Before I remove network threat, i have check the logs but no blocking at all.
The following link pinpoint network threat feature in SEP is the culprit:
http://adsm.org/forum/showthread.php?21068-TEPS-connectivity-fail
--------------------------------------------------------------------------------------------------------------------------------
Have performed webex session with Symantec Support:
Confirmed the following :-
- Disabling NTP did not help.
- Window Firewall turned off.
- Moved Allow all application rule to the top but it did not help.
--------------------------------------------------------------------------------------------------------------------------------
Log collected from TSM:
(4CEF6E38.0000-12B8:kbbssge.c,52,"BSS1_GetEnv") KEYFILE_DIR="d:\IBM\itm\keyfiles"
(4CEF6E38.0001-12B8:kbbssge.c,52,"BSS1_GetEnv") KEYFILE_DIR="d:\IBM\itm\keyfiles"
(4CEF6E38.0002-12B8:kdssqrun.c,951,"CreatePath") Create Path Error. status 1021 path NCS:{SOCKET=ip.pipe:#169.254.95.120[1918]} CT/DS:{SERVER=SRVR01}
(4CEF6E38.0003-1BDC:ctauthorizationevaluator_i.cpp,917,"CTAuthorization::Evaluator_i::executeQuery") EXCEPTION: ::CTProperty::PropertyBasedException - Failed when validating user through Authenication service
(4CEF6E38.0004-1BDC:ctrashelper.cpp,61,"RAS_CORBA_UserException") EXCEPTION: CORBA User Exception has occurred
(4CEC9E4C.002E-E98:kdhslqm.c,188,"add_listener") listening: ip.ssl.https:49270
(4CEC9E4C.002F-E70:kdebpap.c,125,"KDEBP_AssignPort") ip.pipe bound to port 1918: base=1918, limit=6014
(4CEC9E4C.0030-E70:kdebpap.c,125,"KDEBP_AssignPort") ip6.pipe bound to port 1918: base=1918, limit=6014
(4CEC9E4C.0031-E70:kdebpap.c,125,"KDEBP_AssignPort") ip6.spipe bound to port 3660: base=3660, limit=7756
(4CEC9E4C.0032-E70:kbbssge.c,52,"BSS1_GetEnv") KGL_MSG2_UNIVERSAL="YES"
(4CEC9E4C.0033-E70:kglmsww.c,137,"SendUniversalMessage") Universal Message send failed.
(4CEC9E4C.0034-E70:kbbssge.c,52,"BSS1_GetEnv") KGL_MSG2_EVENTLOG="FORMAT kdsmain.msg"
(4CEC9E4C.0035-E70:kglmsww.c,137,"SendUniversalMessage") Universal Message send failed.
--------------------------------------------------------------------------------------------------------------------------------
Symantec Support suspect the issue is the connection through IPV6, and suggest to do the following:
1. Disable IPv6
2. Reinstall NTP back
3. Reproduce the issue.
All performed, issue still appears
--------------------------------------------------------------------------------------------------------------------------------
Do webex with Symantec Support:
SEP installed with AV/AS and NTP.
Ran Wireshark and SylinkMonitor >> reproduced the issue >> saved Wireshark and SylinkMonitor.
Disabling NTP >> issue still occurs.
Uninstalled NTP and rebooted the machine.
Reproduced the issue >> TEPS connectivity, works fine.
--------------------------------------------------------------------------------------------------------------------------------
Symantec Support setup the tsm server and monitoring server on their test site with help from my vendor IBM, and able to reproduce issue at their site with vendor's help. The action now is:
Awaiting backline response as case needs to be escalated further
--------------------------------------------------------------------------------------------------------------------------------
End of story, but to be continued, as I'm still waiting for the backline response...... :(