The following procedures describe how to restart a Sentinel Server process from the command line.
NOTE: During normal operations, you should not use these scripts. Instead, use the Servers View in the Admin tab of Sentinel Control Center.
Below are the names of the Sentinel Server processes that can be restarted using the procedure described below. The name must be used in the command line exactly as shown below.
Name: |
Description: |
|
Processes Correlation Rules. |
|
Process raw event source data and sends events. |
|
Calculates event data summaries that are used in reports. |
|
Performs event database insertion. |
|
Provides the server-side functionality for the Sentinel iTRAC functionality. |
|
Provides the server-side of the SSL proxy connection to Sentinel Server |
|
Performs general Sentinel Service operations including Login and Historical Query. |
|
Provides the server-side functionality for Active Views. |
To restart a Sentinel Server process (Windows):
Go to:
%ESEC_HOME%\bin
Enter:
.\stop_container.bat <host machine> <process name>
For example:
.\stop_container.bat localhost DAS_RT
To restart a Sentinel Container (UNIX):
Login as user Sentinel Administrator operating system user (default is esecadm).
Go to:
$ESEC_HOME/bin
Enter:
./stop_container.sh <host machine> <process name>
For example:
./stop_container.sh localhost DAS_RT