Changing Sensor Operation Without Web Console Access

Note

This applies to on-premise systems only.

Symptom

You are unable to access the Web Console, but need to de-activate Network Sensors in your environment.

Cause

There are many reasons this may occur, for example:

• Blockage of HTTPS traffic by Genians or another security system
• Failure of the Web Console to properly load

Resolution

Control Sensors through the Policy Server CLI

• Use SSH on the Policy Sever as shown below, and access the shell:

genian> en

genian# @shell

Genians$

• To STOP sensors, use command centerd -dfS [Sensor]

• To stop one sensor, use the command referencing a single sensor IP: centerd -dfS 10.10.10.100
• To stop multiple sensors, use the command referencing a multiple sensor IPs(up to 32) separated by comma: centerd -dfS 10.10.10.100,10.10.20.100
• To stop all sensors, use the command referencing all sensors: centerd -dfS all

• To START sensors, use command centerd -dfR [Sensor]

• To start one sensor, use the command referencing a single sensor IP: centerd -dfR 10.10.10.100
• To start multiple sensors, use the command referencing a multiple sensor IPs(up to 32) separated by comma: centerd -dfR 10.10.10.100,10.10.20.100
• To start all sensors, use the command referencing all sensors: centerd -dfR all

Check Sensors Status through the Policy Server CLI

• Type exit to exit the shell mode and re-authenticate.
• To show sensors, use command show sensor [option]

• Use the available options to filter results by sensor status: all, active, passive, unknown