IBM Security Guardium

  • 1.  STAP not able to connect to Guardium Collector.

    Posted Thu July 22, 2021 07:53 AM
    We have installed a Guardium collector on IBM cloud virtual machine.
    - We have installed an STAP agent on a Rhel 8 machine.
    - We are trying to manually install KTAP agent because, it is not being loaded by default in the kernel.
    - We will then try to connect the stap agent to the guardium machine after updating the TAP and SQLGUARD IP's

    While doing this we are facing a lot of errors, So we are forced to think whether this is the right way to do this or not?
    Please Suggest the Procedure to doing these things in the right manner.

    ------------------------------
    Prajwal Parashar
    ------------------------------


  • 2.  RE: STAP not able to connect to Guardium Collector.

    Posted Fri July 23, 2021 02:37 PM

    You don't list any details or error messages, but I'd recommend

     - checking if there is a pre-built KTAP for your kernel version or not
     - making sure the required ports are open

    Full details on installing STAP here: https://www.ibm.com/docs/en/guardium/11.3?topic=lustug-linux-unix-installing-upgrading-uninstalling-s-tap-agents



    ------------------------------
    Paul Spencer
    ------------------------------



  • 3.  RE: STAP not able to connect to Guardium Collector.

    Posted Sun August 01, 2021 09:57 AM
    Hi Prajwal,

    You can run "uname -a" on Rhel 8 machine and share the output, we'll let you know if there is a proper stap for you. Or you can check it by yourself via below link:
    https://www.securitylearningacademy.com/mod/data/view.php?d=13&perpage=10&search=4.1.12-94.7.8.el6uek.x86_64&sort=226&order=ASC&advanced=0&filter=1&advanced=1&f_228=&f_226=&f_227=

    ------------------------------
    Jonathan LU
    Security Support Engineer
    IBM
    ------------------------------