SC: Run commands stop when policy enforcement occurs

Technical Articles ID: KB91353
Last Modified: 2024-01-31 08:45:43 Etc/GMT

Environment

Application and Change Control (ACC) 8.2.1.143, 8.0.2.228 and later

Problem

SC: Run commands stop if policy enforcement occurs while the task is running. For example, resolidifying a system through the SC: Run command sadmin so. To prioritize policy enforcement, the task stops when policy is enforced or another full collect/send props occurs.

Cause

In versions before 8.0.2.228, the command-line interface (CLI) enters a hung state waiting on a command to return a response to the IPC channel. All other commands aren't allowed to run during this time. ACC 8.0.2.228 and later include a feature that fails a command when the CLI has to wait longer than expected. Failing the command allows policy enforcement to be prioritized.

In ePolicy Orchestrator (ePO), the solidcore.log records the following:

cmdi_process.c: 845: Command 'sadmin so' returned 1019: Operation aborted".

Solution

Create an Application Control Client task (SC: Run command) using the following:

config set MaplCommLostRestart=0
so
config set MaplCommLostRestart=5
eu

This task sets the retry time on the command to 0 during the solidification. This setting prevents the solidification process from being stopped. The task then sets the retry time back to the default. This feature keeps the CLI from hanging.

Affected Products

Languages:

This article is available in the following languages:

Knowledge Center

SC: Run commands stop when policy enforcement occurs

Environment

Problem

Cause

Solution

Affected Products

Languages:

Title

Title

Knowledge Center

SC: Run commands stop when policy enforcement occurs

Environment

Problem

Cause

Solution

Affected Products

Languages:

Choose your region

Title

Title