Tanium™ Appliance 1.5 Deployment Guide

PDF 1.5
PDF 1.4
  • All Files
Documentation Home > Tanium Appliance Deployment Guide

Reference: Tanium Status and Support menus

TanOS includes the following diagnostic menus.

  Menu Usage
Status System Status Display OS or network status.
Tanium Status Displays the status of Tanium processes.
Appliance Status Display appliance version information, OS status, or hardware status.
Tanium Support Tanium Log Files Review logs. See Review Tanium core platform logs and Review Tanium solution module logs.
Database Operations Run diagnostics or queries. See Use Database Operations menus.
Run Network Diagnostics Use ping, port tests, nslookup, and IPsec check utilities.
Run Health Check Check the status of network services and Tanium services. See Run the Health Check.
Display Last Scheduled Health Check Results A health check is run automatically every 15 minutes. Use this option to view previous results.
Appliance Hardware Report Check hardware status.
Run TSG Run the Tanium™ Support Gatherer (TSG) scripts. The output is written to a file you can share with your Tanium technical account manager (TAM) or Tanium Support. See Run Tanium Support Gatherer.
Run Tcpdump Run tcpdump for the selected network interface. Host/IP and port filters are supported.
Performance Monitoring Use SAR commands and snapshots. See Use the Performance Monitoring menu.
Advanced Support Copy Core Files Copy any core dump files to the /outgoing folder so they can be copied by the tancopy user.
Generate Process Memory Dump Generate a process dump from a running Tanium process and copy it to the /outgoing folder.
Directory Space Usage Display disk usage per directory.

 

Use the Status menus

System Status shows OS and network status. Tanium Status shows Tanium™ component status. Appliance Status shows appliance version information, OS status, or hardware status.

tanadmin: Display system status

  1. Log into the TanOS console as a user with the tanadmin role.

    The TanOS console displays the tanadmin menu.

  2. Enter 4 to go to the Status menu.
  3. Enter 1 to display the System Status menu.
  4. Enter 1 to display OS status or 2 to display network status.

tanuser: Display system status

  1. Log into the TanOS console as a user with the tanuser role.

    The TanOS console displays the tanuser menu.

  2. Enter 1 to display the System Status menu.
  3. Enter 1 to display OS status or 2 to display network status.

tanadmin: Display Tanium status

  1. Log into the TanOS console as a user with the tanadmin role.
  2. From the tanadmin menu, enter 4 to go to the Status menu.
  3. Enter 2 to display Tanium component status.

tanuser: Display Tanium status

  1. Log into the TanOS console as a user with the tanuser role.
  2. From the tanuser menu, enter 2 to go to the Tanium Status menu.
  3. Use the menu to show Tanium service status.

tanadmin: Display appliance status

  1. Log into the TanOS console as a user with the tanadmin role.
  2. From the tanadmin menu, enter 4 to go to the Status menu.
  3. Enter 3 to display the Appliance Status menu.
  4. Use the menu to display appliance version information, OS status, or hardware status.

tanuser: Display appliance status

  1. Log into the TanOS console as a user with the tanuser role.
  2. From the tanuser menu, enter 3 to display the Appliance Status menu.
  3. Use the menu to display appliance version information, OS status, or hardware status.

Use the Tanium Support menu

  1. Log into the TanOS console as a user with the tanadmin role.
  2. From the tanadmin menu, enter 3 to go to the Tanium Support menu.

Use the Advanced Support menu

  1. Log into the TanOS console as a user with the tanadmin role.
  2. From the tanadmin menu, enter 3 to go to the Tanium Support menu.
  3. Enter X to go to the Advanced Support menu.

Use Database Operations menus

If you encounter issues with the Tanium deployment, your TAM may direct you to perform database operations.

Display the Postgres log file

  1. Log into the TanOS console of the appliance with the primary database server as a user with the tanadmin role.
  2. From the tanadmin menu, enter 3 to go to the Tanium Support menu.
  3. Enter 3 to go to the Database Operations menu.
  4. Enter 1 to display the Select File menu.
  5. Use the menu to view the log or copy it to the /outgoing folder.

Display Postgres configuration files

  1. Log into the TanOS console of the appliance with the primary database server as a user with the tanadmin role.
  2. From the tanadmin menu, enter 3 to go to the Tanium Support menu.
  3. Enter 3 to go to the Database Operations menu.
  4. Enter 2 to display the Select File menu.
  5. Use the menu to review or modify the configuration.

Display Postgres control data

  1. Log into the TanOS console of the appliance with the primary database server as a user with the tanadmin role.
  2. From the tanadmin menu, enter 3 to go to the Tanium Support menu.
  3. Enter 3 to go to the Database Operations menu.
  4. Enter 3 to display Postgres control data.

Enable full Postgres audit log

Postgres logs are very rarely useful in troubleshooting appliance or platform issues. Audit logging is disabled by default. When enabled, Postgres logging can consume inordinate disk space. We recommend you enable it only when debugging.

  1. Log into the TanOS console of the appliance with the primary database server as a user with the tanadmin role.
  2. From the tanadmin menu, enter 3 to go to the Tanium Support menu.
  3. Enter 3 to go to the Database Operations menu.
  4. Enter 4 and follow the prompts to enable audit logging.

Manage the database memory plan

  1. Log into the TanOS console of the appliance with the primary database server as a user with the tanadmin role.
  2. From the tanadmin menu, enter 3 to go to the Tanium Support menu.
  3. Enter 3 to go to the Database Operations menu.
  4. Enter D to display Postgres DB Tuning menu.
  5. Use the menus to view or make changes to the database memory plan.

Run the Postgres top command

  1. Log into the TanOS console of the appliance with the primary database server as a user with the tanadmin role.
  2. From the tanadmin menu, enter 3 to go to the Tanium Support menu.
  3. Enter 3 to go to the Database Operations menu.
  4. Enter M to display results of the top command.

Query the tanium database

The Manage Queries menu includes predefined queries that can be useful during troubleshooting.

  1. Log into the TanOS console of the appliance with the primary database server as a user with the tanadmin role.
  2. From the tanadmin menu, enter 3 to go to the Tanium Support menu.
  3. Enter 3 to go to the Database Operations menu.
  4. Enter Q to display the Manage Queries menu.
  5. Enter S to display the Select Query menu.
  6. Use the menu to select a predefined query and return to the Manage Queries menu.
  7. Enter X to execute the query and save the results to the /outgoing folder.
  8. Enter Q to view query results.

Display replication status

  1. Log into the TanOS console of the appliance with the primary database server as a user with the tanadmin role.
  2. From the tanadmin menu, enter 3 to go to the Tanium Support menu.
  3. Enter 3 to go to the Database Operations menu.
  4. Enter S to display the status.

Initiate database server failover

  1. Log into the TanOS console of the appliance with the secondary database as a user with the tanadmin role.
  2. From the tanadmin menu, enter 3 to go to the Tanium Support menu.
  3. Enter 3 to go to the Database Operations menu.
  4. Enter F to display the Database Server Failover menu.
  5. When prompted to enter maintenance mode, enter Yes.
  6. Follow the prompts to initiate the failover.

Reinitialize database replication

Use this procedure if one database server has failed and is offline for some more than 2 hours. This procedure initiates a full resync from the primary (active) database.

  1. Log into the TanOS console as a user with the tanadmin role.
  2. From the tanadmin menu, enter 3 to go to the Tanium Support menu.
  3. Enter 3 to go to the Database Operations menu.
  4. Enter I to display the Reinitialize Replication menu.
  5. Follow the prompts to initiate full resync.

Reset the database cluster role

Use this procedure after the secondary database server has been promoted to primary.

  1. Log into the TanOS console as a user with the tanadmin role.
  2. From the tanadmin menu, enter 3 to go to the Tanium Support menu.
  3. Enter 3 to go to the Database Operations menu.
  4. Enter C to display the Reset Cluster Role menu.
  5. Follow the prompts to change the database cluster role.

 

Use the Performance Monitoring menu

You can use the Performance Monitoring menu to issue system activity report (SAR) commands or export SAR files that you can load into a SAR data viewer. SAR is part of the SysStat package.

Run a SAR command

  1. Log into the TanOS console of the appliance with the primary database server as a user with the tanadmin role.
  2. From the tanadmin menu, enter 3 to go to the Tanium Support menu.
  3. Enter P to go to the Performance Monitoring menu.
  4. Enter 1 to display the SAR command menu.
  5. Use the menu to issue a command. The results of the command are returned to the screen.

Export a SAR snapshot

  1. Log into the TanOS console of the appliance with the primary database server as a user with the tanadmin role.
  2. From the tanadmin menu, enter 3 to go to the Tanium Support menu.
  3. Enter P to go to the Performance Monitoring menu.
  4. Enter 2 to take a five second snapshot of SAR data and export it to the /outgoing folder.

  5. Use SFTP to copy the snapshot file from the /outgoing directory on the appliance to your management computer.

Export a SAR performance data

  1. Log into the TanOS console of the appliance with the primary database server as a user with the tanadmin role.
  2. From the tanadmin menu, enter 3 to go to the Tanium Support menu.
  3. Enter P to go to the Performance Monitoring menu.
  4. Enter 3 to collect the complete set of SAR data files for the last 30 days and export it to a ZIP file in the /outgoing folder.

  5. Use SFTP to copy the snapshot file from the /outgoing directory on the appliance to your management computer.

Export all SAR files

  1. Log into the TanOS console of the appliance with the primary database server as a user with the tanadmin role.
  2. From the tanadmin menu, enter 3 to go to the Tanium Support menu.
  3. Enter P to go to the Performance Monitoring menu.
  4. Enter 4 to collect all SAR files into a single file and export it to the /outgoing folder.

  5. Use SFTP to copy the snapshot file from the /outgoing directory on the appliance to your management computer.

Last updated: 10/14/2019 1:55 PM | Feedback