HP Host Intrusion Detection System (HIDS) manual Halting HP-UX Hids Agents

System Manager Screen

Halting HP-UX HIDS Agents

•Choose the Actions > Halt IDS Agent menu item.

•Press Shift-F10.

The schedules (if any) are stopped on and removed from the selected hosts. The agents are halted (as by kill) on the selected hosts. The Status fields are set to No Agent Available and the Schedule fields are set to None.

The schedules are not available for automatic restart.

To halt the agent locally on the agent host

Step 1. On the agent host, do one of:

•Log in to the agent system as superuser (root) and enter the command: $ kill -TERM $(cat /var/opt/ids/idsagent.pid)

(You can also do this as user ids.)

•Log in to the agent system as superuser (root) and enter the command: $ /sbin/init.d/idsagent stop

(This command is automatically executed when the agent system is shut down with the shutdown command.)

The agent is halted on the host. The System Manager does not update itself automatically. The next time you run a System Manager command for the agent, the Status field is set to No Agent Available and the Schedule field is set to None on the System Manager screen.

The schedule (if any) is retained and remains available for automatic restart.