Find your people. Pick a challenge. Ship something real. The CreatorCon Hackathon is coming to the Community Pavilion for one epic night. Every skill level, every role welcome. Join us on May 5th and learn more here.

ACC - V Application Pattern failures

Not applicable

‎08-01-2024 12:12 AM

Hello Good day,

 

We are using the ACC -V and application patterns to discover Ms Sql and IIS servers and we have set the ACC V as per the servicenow Documentation. However, i am seeing that the Patterns fail with the below error message .

 

Groovy code failure. com.snc.sw.exception.CommandFailureException: Exception occurred when executing command on agent. Exception occurred: com.service_now.mid.mon.exceptions.AgentCommandNotAllowedException: Agent does not allow this command to run on it. Message from agent: check command denied by the agent allow list. Context: Asset allow list empty, using agent config file allow list.
Did not find exec entry.
. Exception occurred when executing command on agent. Exception occurred: com.service_now.mid.mon.exceptions.AgentCommandNotAllowedException: Agent does not allow this command to run on it. Message from agent: check command denied by the agent allow list. Context: Asset allow list empty, using agent config file allow list.
Did not find exec entry.

Has any one see this before.
0 Helpfuls
  • 1,847 Views
2 REPLIES 2

Goodman2
ServiceNow Employee

‎08-11-2024 01:48 PM

 Hi JB2,

 

You have to add the commands for the Patterns to use to the agents allow-list.


The Documentation page has this an easily overlooked *Note* in the description of the 'sn_agent.appl_classification_behavior' property, and links to a KB article on support.servicenow.com with the example that has a template you can copy and paste into your agent's allow-list.

 

Note: To enable application pattern execution with the allow-list, use the allow-list template for application patterns. For details, see the Pattern execution on ACC: Sample Allowlist for Pattern Content article in the Now Support Knowledge Base.

https://docs.servicenow.com/bundle/xanadu-it-operations-management/page/product/agent-client-collect...

 

The exact path the Agent's allow-list can be found in it's acc.yml file next to the allow-list parameter like in the example below if you're not sure where it's located at.

 
# Path to json file that contains the allow list of check or hook commands the agent can execute
allow-list: C:\ProgramData\ServiceNow\agent-client-collector\config\check-allow-list.json

 

Regards

0 Helpfuls

Hank Woo
Tera Guru

‎08-22-2024 06:53 PM

@Community Alums 

I got same issue.

Any updates?

0 Helpfuls