We have integrated CA Threat Analytics with CA PAM. We have found that CA threat Analytics health status is showing Critical.
The screenshot below shows the consistent Critical statys with no change for more than 1 week.
The threat sever may be expeirncing a problem, try the following:
1- Reboot the Threat server
2- Threat server reboots and comes back good. No reoccurence, good. Critical again, see #3.
3- Threat server eventually goes to a Critical status again (may be a long period of no issue or possibly very soon). Plan on rebuilding that same server or actually upgrading to the latest depending on your version of CAPAM:
Release : 2.2.X
Component : THREAT ANALYTICS FOR PRIVILEGED ACCESS MANAGER
Depending on the version of your CAPAM node(s) and the version of your Threat server, you may need to upgrade the Threat server and possibly CAPAM:
1- Verify the version of CAPAM and the Threat server version you should be using:
2- Upgrade CAPAM?
Deploy CA Threat Analytics Server:
4- Still having problems? L/var/log/interlock. The messages can and are usually very helpful
NOTE - Some old servers do not support TLS1.2 and many new servers do not support TLS1.0/1.1 because of the updated crytography/algorithms.