3 Replies Latest reply on May 21, 2015 1:01 PM by pcoates

    Control Center Validation: Application with id ###### does not exist

    pcoates

      After importing a 8.3.2P06 into an existing Control Centre(5.3.2P06) we are getting the following error upon validation(only on the new cluster, all other existing firewalls validate properly)

       

      TSWGenericError: Application with id 4100e000 does not exist

       

      Traceback (most recent call last):

        File "/usr/contrib/lib/python2.4/site-packages/ccmd/ccmd_validate.py", line 35, in ?

        File "/usr/contrib/lib/python2.4/site-packages/sw/configbundle.py", line 928, in Validate

        File "/usr/contrib/lib/python2.4/site-packages/cf/cf_policy.py", line 737, in validate_and_print

        File "/usr/contrib/lib/python2.4/site-packages/cf/translator.py", line 97, in DoCompile

        File "/usr/contrib/lib/python2.4/site-packages/cf/translator.py", line 175, in _compile

        File "/usr/contrib/lib/python2.4/site-packages/cf/cf_policy.py", line 1588, in get_enabled_rules

        File "/usr/contrib/lib/python2.4/site-packages/sw/swede_util.py", line 351, in get_objects

        File "/usr/contrib/lib/python2.4/site-packages/sw/swede_util.py", line 627, in swede_to_item

        File "/usr/contrib/lib/python2.4/site-packages/sw/swede_util.py", line 419, in NodeToObject

        File "/usr/contrib/lib/python2.4/site-packages/sw/swede_util.py", line 484, in NodePathToObject

      TSWGenericError: TSWGenericError: Application with id 4100e000 does not exist

       

       

      I'm guessing there is an existing application from the Control Center that it is failing to create with the validation config application test, but I have no idea how to identify the application based on the id 4100e000? We are open a support case in Tandem as well.

       

      Any ideas are appreciated.

        • 1. Re: Control Center Validation: Application with id ###### does not exist
          sliedl

          Check the Control Center App DB version under Control Center -> Settings -> System -> Application Signature Updates.  The 'Installed signature version' will let you know which app db version CC has.  Compare this to the firewall's application version ('cf appdb v' on the command-line or under Maintenance -> Updates in the GUI).  If the versions differ, force the CC to download the latest db.

           

          To Download the latest Appdb signature within CC:

          1. Login in CC client
          2. Click Control Center Tab
          3. Click/Open Settings Node in the left
          4. Double Click System
          5. On the popup "System Setting" screen Click Application Signature Updates Tab
          6. Click Download Now
          7. It will pop up a message saying "Application Signatures download job started". Click Ok
          8. Click the Ok Button on "System Setting" screen

           

          Now try a validate against that firewall.

          • 2. Re: Control Center Validation: Application with id ###### does not exist
            pcoates

            Thanks Sam, we also have Ryan on the phone responding to our ticket. The CC AppDB version is 3.295 and the Firewall version is 3.101, we are going to get the app db updated and then test.

             

            However, in my pilot upgrade they have the same differing versions and the validation worked, however the production has additional objects so maybe one of those apps have been updated. We'll confirm results.

            • 3. Re: Control Center Validation: Application with id ###### does not exist
              pcoates

              We manually downloaded the newest database version using McAfee KnowledgeBase - Firewall Enterprise: How to manually download IPS, anti-virus, AppPrism signature, Geolocation, a… , and installed on the firewall from the command line, the only thing we noticed that the KB doesn't cover, is that to install the file the file type needs to be Admin:file, so if you copy to a folder like /home(as the KB suggests) you have to escalate the type, or just copy to an escalated location like /var/log and it will inherit from the directory.

               

              We identified the application using the ID 4100e000 as TACACS+, which did not exist as that id in the previous version 3.101.

               

              Cheers,