3.5  Analysis

If the Director is installed, automatic analysis is initiated when you start your machine. This means that SEA automatically analyzes the default event log file and generates reports as necessary.

Manual analysis is the user-initiated process of selecting a log file for immediate processing using either the CLI or the web interface (see Chapter 4 for more information about the web interface).

For more information on analysis and the default analysis settings, refer to Chapter 5.

3.5.1  Manual Analysis

The analyze command allows you to perform manual analysis as well as filtered manual analysis on a binary event log. Binary event logs can include the system event log, a log obtained from the same system, or a log obtained from another system.

To manually analyze binary event logs using the new common syntax, use the following command format:

wsea ana [input inputfile] [out | outhtml outputfile]

Note


When performing filtered manual analysis, sort filters may cause invalid analysis results.


For more information on manual analysis operations and output, refer to Chapter 5.For information on performing manual analysis with another syntax, refer to Appendix E.

Input Files

By default, manual analysis processes the system event log. If you want to process a different binary log file, you must use the input keyword and specify the input file. Refer to Section 3.9.1 for more information on input files

Output Files

By default, output from manual analysis is displayed on the screen. To save output to a file, use either the out or the outhtml keyword and provide a file name. Refer to Section 3.9.2 for more information on output files.

3.5.2  Automatic Analysis

By default, when the Director is started SEA initiates automatic analysis on the binary system event log. Using the CLI, you can view the reports generated by automatic analysis or save them to a file.

To disable or enable automatic analysis, use the following command format:

wsea aut [on | off]

Automatic analysis is enabled by default, but you may want to disable it if SEA is running on a platform such as HP-UX or Linux, where the native error log is not currently analyzed.

For more information on automatic analysis and the problem reports generated by analysis, refer to Chapter 5. For information on using the command line interface to simulate automatic analysis, refer to Sections 3.5.2.3 and 5.7.

3.5.2.1  Viewing Automatic Analysis Reports

To view the active problem reports generated by automatic analysis, use the report command. Reports can be viewed in the command prompt window or saved to a file.

The syntax for the report command is shown here:

wsea report [outtext | outhtml outputfile]

If you do not include any optional parameters, the reports are shown on the screen. See Section 3.9.2 for more information about working with output files.

3.5.2.2  Logging Automatic Analysis Reports

SEA can automatically log generated problem reports in the prob.log file located in the \specific\ca\logs directory.

To turn automatic logging on, use the following command:

wsea log prob on

To turn automatic logging off, use the following command:

wsea log prob off

If the prob.log file already exists, the new data from subsequent logging operations is appended to the existing file. If you delete the prob.log file, it is automatically recreated during the next logging operation. Log output is flushed and the file is closed after each entry.

3.5.2.3  Simulate Automatic Analysis

The command line can also simulate automatic analysis with the following command (this command is only available for the new common syntax).

wsea tes [nosystem]
Tests automatic analysis and the system's error logging facilities. See Section 5.7 for more information on simulating automatic analysis.

3.5.2.4  Reset Automatic Analysis Results

Note


Resetting the automatic analysis results may significantly impact the results of future analysis. Refer to Section 5.3.2 for a complete description of the reset command.


The command line can clear the automatic analysis database (this command is only available for the new common syntax).

wsea res
Removes any currently active callouts and any stored analysis data (for example, thresholding information). Neither the FRU configuration data nor the marker of the most recently analyzed event are removed. See Section 5.3.2 for more detailed instructions on resetting the automatic analysis results and information about the impact that resetting automatic analysis results has on future analysis results.

3.5.3  Analysis Output

Chapter 5 describes the problem reports generated by analysis. Refer to Appendix A for an example of a report generated by analysis.