The audit record maintenance script should be stored in a central location. Traditionally, the script is located in /usr/local/bin/ or /opt/SecureSpan/Appliance/bin/. The invocation of this script is typically handled by the Gateway appliance's default scheduled task handler--crond. It is expected that this script will be configured to run via crontab. If you need assistance with configuring the Gateway appliance to run this script via cron then please open a new Support request.
- Download the file attached to this article (manage_binlogs.sh) to a workstation.
- Upload the script to the Gateway appliance via SFTP or SCP as the ssgconfig user.
- Move the script from the ssgconfig user's home directory to the desired location.
- Make it executable: chmod u+x manage_binlogs.sh
- Open the script and edit the following properties to reflect the current configuration:
Note: The values for "SLAVE" and "ROOTDBPWD" should be set to the hostname of the other Gateway database node and the password for the privileged MySQL user.
- Run the script with a '-f' flag: ./manage_binlogs.sh -f
- Complete steps 1-8 on the remaining Gateway database node.
- Set up the crontab on both appliances to run this script.
Enabling Email Alerts for Replication Status
It may be necessary or preferable to configure the Gateway to transmit emails or other types of messages when the replication state is a good condition. If this process is required or desired then do the following:
- Log in to the Policy Manager as an administrative user
- Publish a Web API with the following parameters:
- Name: Replication Monitoring Service
- Target: None
- Resolution Path: /replmail
- Import the policy included in the compressed archive attached to this article
Testing the Implementation
This script will send an email notification if it is unable to manage the binary log files and if email has been configured for use. This serves as a helpful notification for a replication failure as this process should only fail if replication is not running or is not configured. The following procedure is optional and can be run in any environment where this script is being deployed for the first time.
- Break replication on both database nodes: mysql -e 'stop slave'.
- Run the script on each database node in the cluster in verbose mode: ./manage_binlogs.sh -f -v
- Start replication on both database nodes: mysql -e 'start slave'
- Check the status of replication: mysql -e 'show slave status\G'