Discussion Feed
01-19-2021
09:50 AM
1 Kudo
I was able to get this to work by using the curl command with a header token instead of passing the username and password using an api client user. It looks like it is potentially a problem of the proxy not passing the parameters of username and password on to AppDynamics SAAS.
... View more
01-13-2021
04:20 AM
Hi Mario, These are the outputs that I get Without Proxy - Successfully returned application list curl -vk --user internaluser@SAASAccount:dummypwd https://SAASAccount.saas.appdynamics.com/controller/rest/applications * Trying x.x.x.x... * TCP_NODELAY set * Connected to SAASAccount.saas.appdynamics.com (x.x.x.x) port 443 (#0) * Cipher selection: ALL:!EXPORT:!EXPORT40:!EXPORT56:!aNULL:!LOW:!RC4:@STRENGTH * successfully set certificate verify locations: * CAfile: /etc/pki/tls/certs/ca-bundle.crt CApath: none * TLSv1.2 (OUT), TLS handshake, Client hello (1): * TLSv1.2 (IN), TLS handshake, Server hello (2): * TLSv1.2 (IN), TLS handshake, Certificate (11): * TLSv1.2 (IN), TLS handshake, Server key exchange (12): * TLSv1.2 (IN), TLS handshake, Server finished (14): * TLSv1.2 (OUT), TLS handshake, Client key exchange (16): * TLSv1.2 (OUT), TLS change cipher, Client hello (1): * TLSv1.2 (OUT), TLS handshake, Finished (20): * TLSv1.2 (IN), TLS change cipher, Client hello (1): * TLSv1.2 (IN), TLS handshake, Finished (20): * SSL connection using TLSv1.2 / ECDHE-RSA-AES128-GCM-SHA256 * Server certificate: * subject: C=US; ST=California; L=San Francisco; O=AppDynamics LLC; CN=*.saas.appdynamics.com * start date: Jun 30 00:00:00 2020 GMT * expire date: Sep 8 12:00:00 2021 GMT * issuer: C=US; O=DigiCert Inc; CN=DigiCert SHA2 Secure Server CA * SSL certificate verify ok. * Server auth using Basic with user 'internaluser@SAASAccount' > GET /controller/rest/applications HTTP/1.1 > Host: SAASAccount.saas.appdynamics.com > Authorization: Basic ZXh0YWRtaW5AZmFidGVzdGRldjpFeHRBZG1pbjEyMyQ= > User-Agent: curl/7.50.3 > Accept: */* > < HTTP/1.1 200 OK < Content-Type: application/xml < Date: Mon, 11 Jan 2021 14:10:52 GMT < Server: AppDynamics < Set-Cookie: JSESSIONID=1c90d1821ed443f4d6b77e2c4f51; Path=/controller; HttpOnly; Secure < X-Content-Type-Options: nosniff < X-Frame-Options: SAMEORIGIN < X-XSS-Protection: 1; mode=block < Content-Length: 3859 < Connection: keep-alive < <applications><application>.... With Proxy - 401 Authentication Error curl --anyauth -vk --proxy http://myproxy.dummy.com:8080 -U proxyUser -u internaluser@SAASAccount --proxy-anyauth https://SAASAccount.saas.appdynamics.com/controller/rest/applications Enter host password for user 'internaluser@SAASAccount': Enter proxy password for user 'proxyUser': * Trying x.x.x.x... * TCP_NODELAY set * Connected to myproxy.dummy.com (x.x.x.x) port 8080 (#0) * Establish HTTP proxy tunnel to SAASAccount.saas.appdynamics.com:443 > CONNECT SAASAccount.saas.appdynamics.com:443 HTTP/1.1 > Host: SAASAccount.saas.appdynamics.com:443 > User-Agent: curl/7.50.3 > Proxy-Connection: Keep-Alive > < HTTP/1.1 200 Connection established < * Proxy replied OK to CONNECT request * Cipher selection: ALL:!EXPORT:!EXPORT40:!EXPORT56:!aNULL:!LOW:!RC4:@STRENGTH * successfully set certificate verify locations: * CAfile: /etc/pki/tls/certs/ca-bundle.crt CApath: none * TLSv1.2 (OUT), TLS handshake, Client hello (1): * TLSv1.2 (IN), TLS handshake, Server hello (2): * TLSv1.2 (IN), TLS handshake, Certificate (11): * TLSv1.2 (IN), TLS handshake, Server key exchange (12): * TLSv1.2 (IN), TLS handshake, Server finished (14): * TLSv1.2 (OUT), TLS handshake, Client key exchange (16): * TLSv1.2 (OUT), TLS change cipher, Client hello (1): * TLSv1.2 (OUT), TLS handshake, Finished (20): * TLSv1.2 (IN), TLS change cipher, Client hello (1): * TLSv1.2 (IN), TLS handshake, Finished (20): * SSL connection using TLSv1.2 / ECDHE-RSA-AES256-GCM-SHA384 * Server certificate: * subject: C=US; ST=California; L=San Francisco; O=AppDynamics LLC; CN=*.saas.appdynamics.com * start date: Jun 30 00:00:00 2020 GMT * expire date: Sep 8 12:00:00 2021 GMT * issuer: C=A; ST=City; L=City; O=First City; OU=Dummy IT; CN=Dummy Proxy CA; emailAddress=DummyITSecOps@dummy.com * SSL certificate verify result: unable to get local issuer certificate (20), continuing anyway. > GET /controller/rest/applications HTTP/1.1 > Host: SAASAccount.saas.appdynamics.com > User-Agent: curl/7.50.3 > Accept: */* > < HTTP/1.1 401 Unauthorized < Date: Mon, 11 Jan 2021 14:13:17 GMT < Server: AppDynamics < WWW-Authenticate: BASIC realm="controller_realm" < X-Content-Type-Options: nosniff < Content-Length: 0 < Cache-Control: proxy-revalidate < Proxy-Connection: Keep-Alive < Connection: Keep-Alive < Set-Cookie: BCSI-CS-15847fdf143cdb98=1; Path=/ < Proxy-support: Session-based-authentication < * Curl_http_done: called premature == 0 * Connection #0 to host myproxy.dummy.com left intact * Issue another request to this URL: 'https://SAASAccount.saas.appdynamics.com/controller/rest/applications' * Found bundle for host SAASAccount.saas.appdynamics.com: 0x20082c68 [can pipeline] * Re-using existing connection! (#0) with proxy myproxy.dummy.com * Connected to myproxy.dummy.com (x.x.x.x) port 8080 (#0) * Server auth using Basic with user 'internaluser@SAASAccount' > GET /controller/rest/applications HTTP/1.1 > Host: SAASAccount.saas.appdynamics.com > Authorization: Basic ZXh0YWRtaW5AZmFidGVzdGRldjpFeHRBZG1pbjEyMyQ= > User-Agent: curl/7.50.3 > Accept: */* > < HTTP/1.1 401 Unauthorized < Date: Mon, 11 Jan 2021 14:13:17 GMT < Server: AppDynamics * Authentication problem. Ignoring this. < WWW-Authenticate: BASIC realm="controller_realm" < X-Content-Type-Options: nosniff < Content-Length: 0 < Cache-Control: proxy-revalidate < Proxy-Connection: Keep-Alive < Connection: Keep-Alive < Set-Cookie: BCSI-CS-15847fdf143cdb98=1; Path=/ < Proxy-support: Session-based-authentication < * Curl_http_done: called premature == 0 * Connection #0 to host myproxy.dummy.com left intact I'm not sure about the proxy that is in place in the organization. Is that supposed to make a difference to the behavior?
... View more
01-05-2021
02:00 AM
Hi Ryan, Thank you for the response. Those posts did not help actually. I am already using a locally created account and I am able to successfully call the API outside the Corporate Proxy using this user. The second post also points to the account being improper which is not the problem in my case as I get it to successfuly work outside the Proxy.
... View more
12-30-2020
08:27 AM
Can someone assist with the command to access the Rest APIs of the SAAS controller using curl command? I want to do this through the corporate proxy This is what I have so far but I am facing an Authentication 401 Unauthorized Error curl -v --proxy http://proxyusername:password@proxyaddress:proxyport --user username@account:password https://SAASURL/controller/rest/applications Is there something I am missing? The username@account:password is working outside the corporate proxy.
... View more
12-28-2020
06:00 AM
The URLMonitor extension was able to support 2 way SSL. There were quite a few challenges faced especially around the creation of the keystores for SSL. However, we were able to successfully implement it along with JSON payloads as a part of the POST request to API URLs. The documentation around this could be improved to make it easier to implement the monitor.
... View more
11-01-2020
02:54 AM
1 Kudo
So far we've only received confirmation that the Service Availability feature does not support two way SSL. The other option we've been looking into in order to do this test is the URL Monitor extension which has options to specify a keystore and a truststore. We're still waiting for some confirmation from the extensions team that this is supported and the options that are required in order to get it to work. The final option we're looking into is the use of a custom script to run locally and bypass SSL which is less than ideal.
... View more
10-26-2020
01:56 AM
Hi, We have a custom requirement to monitor an API which does a health check of all the backend systems and returns back the https response code 200 if successful. The API is working with 2 way SSL. Is there a possibility of using the URL monitor in order to communicate with the API? We are able to deploy the URL monitor even locally if there is a way to bypass SSL using the configuration in the URL Monitor. We tried the Service Availability feature also but keep getting an SSL handshake error and after checking with support, it apparently does not support 2 way SSL. Appreciate any ideas on how I should go about achieving this. Kind Regards, Ashley Lewis
... View more
09-24-2020
09:27 AM
Hi, We would like to generate a JavaCore which is similar to Thread Dumps on our WebSphere Application Servers (v8.5.5) running with the IBM JVM. I have implemented the available action of a Thread Dump to be fired if any hung threads are detected. However, the thread dump that is being captured does not have the complete information that we're looking for ( Stack Trace and full JVM related information) The usual way the admins generate this information is by running the kill -3 <PID> command against the JVM process ID. Is it possible to implement the same using the AppDynamics Thread Dump action? Kind Regards, Ashley Lewis
... View more
03-25-2020
04:46 AM
The Java Agent for IBM WebSphere collects the following metric by default
Metric Browser --> Application Infrastructure Performance --> <TIERNAME> -->JVM --> Threads --> Current No. of Threads
What does this value correspond to in IBM WebSphere? It seems to be constantly increasing on our environment and I've seen values going up to 9000. However, this is not equivalent to the Thread Pools and the equivalent Thread Pool Count that we see in WebSphere or through JMX against particular Thread Pools.
So what does this metric actually represent?
... View more
01-27-2020
05:09 AM
Hi Yogesh, Were you able to figure this out.We have a similar requirement to apply a global threshold on all uncommitted messages. I have created a rule to evaluate this based on baseline standard deviation and the following relative metric path. Not sure if it will work yet though Custom Metrics|WebsphereMQ|*|Queues|*|UncommittedMsgs
... View more
Latest Activity
- Got a Kudo for Re: Accessing the SAAS Rest APIs through a corporate Proxy - curl command. 01-19-2021 10:28 AM
- Kudoed Re: escalating node count for autoscaling Azure app service for Simon.Coles. 01-19-2021 09:55 AM
- Posted Re: Accessing the SAAS Rest APIs through a corporate Proxy - curl command on Controller (SaaS, On Premise). 01-19-2021 09:50 AM
- Posted Re: Accessing the SAAS Rest APIs through a corporate Proxy - curl command on Controller (SaaS, On Premise). 01-13-2021 04:20 AM
- Posted Re: Accessing the SAAS Rest APIs through a corporate Proxy - curl command on Controller (SaaS, On Premise). 01-05-2021 02:00 AM
- Posted Accessing the SAAS Rest APIs through a corporate Proxy - curl command on Controller (SaaS, On Premise). 12-30-2020 08:27 AM
- Posted Re: So far Re: URL Monitor with 2 Way SSL on Infrastructure (Server, Network, Database). 12-28-2020 06:00 AM
- Got a Kudo for So far Re: URL Monitor with 2 Way SSL. 11-02-2020 10:06 AM
- Posted So far Re: URL Monitor with 2 Way SSL on Infrastructure (Server, Network, Database). 11-01-2020 02:54 AM
- Posted URL Monitor with 2 Way SSL on Infrastructure (Server, Network, Database). 10-26-2020 01:56 AM
- Posted How can I generate a JavaCore dump on WebSphere Application Server ( kill -3 <PID.) using actions on Java (Java Agent, Installation, JVM, and Controller Installation). 09-24-2020 09:27 AM
- Tagged How can I generate a JavaCore dump on WebSphere Application Server ( kill -3 <PID.) using actions on Java (Java Agent, Installation, JVM, and Controller Installation). 09-24-2020 09:27 AM
- Tagged How can I generate a JavaCore dump on WebSphere Application Server ( kill -3 <PID.) using actions on Java (Java Agent, Installation, JVM, and Controller Installation). 09-24-2020 09:27 AM
- Tagged How can I generate a JavaCore dump on WebSphere Application Server ( kill -3 <PID.) using actions on Java (Java Agent, Installation, JVM, and Controller Installation). 09-24-2020 09:27 AM
- Tagged How can I generate a JavaCore dump on WebSphere Application Server ( kill -3 <PID.) using actions on Java (Java Agent, Installation, JVM, and Controller Installation). 09-24-2020 09:27 AM
- Tagged How can I generate a JavaCore dump on WebSphere Application Server ( kill -3 <PID.) using actions on Java (Java Agent, Installation, JVM, and Controller Installation). 09-24-2020 09:27 AM
- Kudoed Re: How do I get a thread dump? for John.Gregg. 09-20-2020 10:24 PM
- Kudoed Database Health Rules for James.Pfeiffer. 04-14-2020 07:14 AM
- Posted What does this metric represent : JVM --> Threads --> Current No. of Threads - when using IBM WebSphere? on Java (Java Agent, Installation, JVM, and Controller Installation). 03-25-2020 04:46 AM
- Posted Re: How to create Health rule for WebSphere MQ ??? on Dashboards. 01-27-2020 05:09 AM
Community Stats
Date Registered | 06-17-2018 11:22 PM |
Date Last Visited | 03-05-2021 05:02 AM |
Total Messages Posted | 11 |
Total Kudos Received | 2 |