I was called in, users were getting the "cannot connect to database" message, no access to the Web UI. logged into the console, and determined that disk space wasn't an issue, I still had 13% free. PRADs was out of control as usual, so I killed that process, and the database started working again.
Now in the Alienvault Center, the main SIEM server/sensor/database system shows offline? but yet I am on it. It still shows new events from our ASA, snort, and Symantec, so what gives? How do I figure out what the problem is?
Running on 4.3.4, haven't updated yet, until I can figure out how to save our maps, alarms, and other customizations.