Technical Alerts

Upgrading to Reporter,version 9.2.1.1 , shows no "Web Searches" reports.

Technical Alerts ID:    TFA32
Version:    3.0
Status:    Published
Published date:    05/19/2010
Updated:    05/24/2010
 

Affected products and versions

An upgraded Reporter server, does not  shows the Web Searches reports under User Behavior group, but a newly created database does.

I've upgraded my Reporter server  to version 9.2.1.1, and I do not see the "Potential Threats" report on the dashboard.

What are the new features, and reports, in version 9.2.1.1?

Problem description

Reporter, version 9.2.1.1 introduces new features to the product. 

They are:

  • Increased LDAP/A.D. integration:
    • Ability for managers to view data about direct reports
    • Ability for individual users access to own data
  • Improved reporting in the areas of:
    • Threat categories
    • Network errors
    • Search engine keywords
    • Risk group reporting,  according to Web site categories.
  • External query access via a Web API
  • Audit logging of Reporter user access and actions
  • Ability for administrators to monitor user activities.  
  • Improved diagnostic capacity.

One feature, however, does not appear on a upgraded database, and that is the "Web searches" report.  This is because this is a new field in the database, and, to see this new field, you need to create a brand new database.  The "Potential threats" Report also does not appear immediately on the Dashboard, but you can still run this report from the Reports tab.

 

Status

This is working as designed, however, all other new reports are available on an upgraded database.

Workaround

To see the "Web Searches' report  you will need to start a a new database, and import your logs back.  You cannot merely re-import your logs, as per this article FAQ415, it has to be a brand new database. 

 To create a brand new database, follow these steps.

  • Login as admin to your reporter server.
  • Navigate to the adminstration section of the User Interface.
  • Click on General settings > Data settings.
  • Click on Databases, and then press the button "new".
  • Answer the prompts for database name,
  • Click on "new Log Source, and point it to the location of your old acecss logs
  • Answer the  prompts for log source name, location, schedule, and operation.
  • Then click Next, and answer the questions on expirey rate, and locations.

Once you have created the database, and the log source reader, follow these steps to rename your access logs. 

  • using the command line, go the location for log source(s) and rename the log files so the .done extension does not exist.
  • On windows the command is "ren *.done *." 

  • On Linux, the equivalent command is move ( mv) 

To preserve your custom, and scheduled reports, see KB3807

Resolution

To see the "Potential threats" report on the dashboard, follow the instructions on KB3786 

 

NOTE: You can download the latest version of Reporter, from the following link.


Rate this Page

Please take a moment to complete this form to help us better serve you.

Did this document help answer your question?
 
 
If you are finished providing feedback, please click the RATE CONTENT button. Otherwise, please add more detail in the following text box and then click RATE CONTENT.
 
 

Your response will be used to improve our document content.

Ask a Question