Cisco Headend Digital Broadband Delivery System
Chapter 7 DNCS Web Services Security
112
4034689 Rev A
c If the computer you are using for the test has an IP address that is allowed to
access the web service then the browser will return a HTTP GET method not
implemented error message.
implemented error message.
8 If you receive a different error message, review all configuration changes against
the previously executed procedures and repeat this procedure.
Log Files to Monitor
The following is a list of several log files that can be monitored for errors related to
HTTPS sessions:
HTTPS sessions:
/dvs/dncs/tmp/bossServer.x
-
Type the following command and press Enter to increase the log level for the
bossServer process.
bossServer process.
logLvl bossServer +DEBUG
-
Type the following command and press Enter to reduce the log level for the
bossServer process once troubleshooting is complete.
bossServer process once troubleshooting is complete.
logLvl bossServer -DEBUG
-
Type the following command and press Enter to increase the log level for the
bossServer SOAP process.
bossServer SOAP process.
logLvl bossServer.soap +DEBUG
-
Type the following command and press Enter to reduce the log level for the
bossServer SOAP process once troubleshooting is complete.
bossServer SOAP process once troubleshooting is complete.
logLvl bossServer.soap -DEBUG
Files in the /var/apache2/logs directory
Files and Directory Permissions
File and directory permissions are critical for the operation of the web servers on the
DNCS. The following is a sample error message from the bossServer log when
permissions are incorrect for the /etc/opt/certs/cacert.pem file:
DNCS. The following is a sample error message from the bossServer log when
permissions are incorrect for the /etc/opt/certs/cacert.pem file:
|ERROR|bossServer:BossResponseClientSoap.C(99)|SOAP FAULT: SOAP-
ENV:Server SOAP-ENV:Server SSL error Can't read CA file and
directory initializing context
ENV:Server SOAP-ENV:Server SSL error Can't read CA file and
directory initializing context
The following is a list of the required permissions for the required files and
directory:
directory:
drwxr-xr-x 7 root sys 1024 Jul 16 19:41 /etc/opt/certs
-r-------- 1 root root 887 Jul 16 18:43 server.key
-r--r--r-- 1 root root 1419 Jul 16 18:43 server.crt
-r--r--r-- 1 root root 4716 Jul 16 13:53 cachain.crt