Browse your product documentation including release notes and installers
2/4/2021 - Current Release: 126.96.36.199
I'm excited to announce the release of Carbon Black App Control Server v8.6.0.
Notable items in this release include:
For a list of all new features and improvements, please see the 8.6.0 Server Release Notes.
You can download Carbon Black App Control Server v8.6.0 from here. This is a one time use link and you must be logged into the UeX to use it.
SHA256 Hash of the ParityServerSetup.exe: 2ca0631efdfc066ae907daad2534f9ab4be1d9876199dfe91144655918bebabb
You will need to download the Rules Installer and Carbon Black App Control (Previously known as CB Protection) Agents separately and those can be downloaded from the following links:
Rules Installer 1.8CB Protection 8.5.0 Windows Agent
For all other downloads and documentation, please see the 8.x repository
Just an FYI that we will be cleaning up the past comments since a new version has been posted, making older comments obsolete.
Is there a reason that the Linux agent link points to v7.4.0 instead of v7.4.6?
While trying to download an error is received :
HTTP Status 500 -
type Status report
description The server encountered an internal error that prevented it from fulfilling this request.
Please try a different browser or an incognito browser.
Looking for instructions, specifically on how to upgrade from 8.1.6 to 8.5.2
@dcvl not sure if the installation guide has any detail on that: https://community.carbonblack.com/t5/Documentation-Downloads/VMware-Carbon-Black-App-Control-Server-...
Hello @dcvl, i have done 3 upgrades and used this steps:
!!! But be aware that version 8.5.2 brokes capability to send events to SIEM and Syslog server, this is a known issue and VMware Carbon Black team is actually working on it !!!
What brought this to your attention (version 8.5.2 brokes capability to send events to SIEM and Syslog server) and/or how did you validate this?
I have the same problem with logs no longer being sent to our SIEM after an upgrade to 8.5.2. I validated this with PCAPs on both the CbAC server and on the SIEM where no syslog traffic was found. VMware is aware of this problem and I have a case in, awaiting a solution.
Everyone upgraded to this version have same issue, and there is CB_Support post regarding issue
@dkatsiashvili - @xstuartbarrettx
Thanks for sharing this information and please be sure to share any progress or fix to this challenge once there is more information to share.
please see "sending syslog message" fix
\Program Files (x86)\Bit9\Parity Server\Reporter\NLog.config
For the Agent Packages in CB Protection getting reset upon upgrading to the 188.8.131.52 version on the Site Server
This is the workaround for the Folks who have upgraded to the CB Protection 184.108.40.206 on their Site Servers and it then breaks the ability of the SIEM to capture or upload log files from the CB Protection Solution
App Control: Syslog stops sending traffic after upgrade to 8.5.2
Syslog events are sent to the local 127.0.0.1 regardless of configuration due to defect: EP-11687
App Control: Syslog Parsing Errors After Upgrade to 8.5.2
App Control: Syslog Parsing Errors After Upgrade to 8.5.2
Parsing of syslog is incorrect after upgrade to 8.5.2
The Product name and vendor within the output has changed from CB Protection to Carbon Black App Control. The configuration may not be parsing the new values correctly
Update your SIEM using the new configurations, in the Events Integration guide. Making note of the name change:
i have tried from different browsers but still I'm getting the same error
Not able to download, clicking the download "here" link throws an error page starting with below give error. Tired two different comptuers, chrome and firefox browsers, and incognito mode. Same result.
FreeMarker template error (HTML_DEBUG mode; use RETHROW in production!)
The following has evaluated to null or missing:
==> http_client_request.content.href [in template "custom-smartfile-integrations.ftl" at line 14, column 5]
Tip: It's the step after the last dot that caused this error, not those before it.
Tip: If the failing expression is known to be legally refer to something that's sometimes null or missing, either specify a default value like myOptionalVar!myDefault, or use <#if myOptionalVar??>when-present<#else>when-missing</#if>. (These only cover the last step of the expression; to cover the whole expression, use parenthesis: (myOptionalVar.foo)!myDefault, (myOptionalVar.foo)??
@UZ can you please try an incognito browser?
I am unable to download installer for Linux. It says page has been archived. Can anyone suggest
This is very frustrating. even after trying in different browser or incognito mode it says 403/unauthorized error. Though 3 days back I was able to download it but cancelled it by mistake not after multiple attempts I am not able to do it.
@ndhyani - I am checking with the team why that document was archived.@piyushsingh - Apologies for the issue. I am unable to reproduce on my end which makes troubleshooting difficult. If you have a location where I can upload the file for you to download while we continue to investigate this issue, please drop me a line at email@example.com.
@ndhyani I've updated the post to point to the latest repository where you can find all documentation and downloads.
Here's the link to the latest Linux agent - https://community.carbonblack.com/t5/App-Control-Documents/Announcing-General-Availability-of-the-VM...
@lhowarth - Thanks. It worked now
EDIT: The hyperlink works now.
I cannot download the installer.
Earlier today when I tried that I got an HTTP 403.
Right now I am getting HTTP 500!
Please fix this. Thanks.
Yup, having the same issue trying to download, even in incognito. Guess I'll try again later, sounds like that's what's working for other folks.
@esullivan Same issue. Is it a cert problem or something?
Don't believe so. I have been investigating this issue for months and have not been able to determine why the link works for some but not others.I am in the process of switching the backend we use to host the installers which will hopefully clear up any issues for all users.
@esullivan Thanks bro and I got an error message printed in red "File or directory has been removed." I tried at around 10:26 UTC+8.
By the way, the previous link (which I reported with HTTP 403 / 500 error) does work sometimes. I didn't test it seriously but I managed to download the installer one day morning (UTC+8 again). Before that, I had tried multiple times getting the error while all of them were in the afternoon.
@cfsup thank you for the additional details. That's the frustrating part as the exact same link seems to work sometimes, but not others. Makes it difficult to troubleshoot. And for me, the link always works. Hopefully we will be on our new backend platform soon and this will no longer be an issue.
sflinks.carbonblack.com has an incomplete certificate chain. Any chance that could be fixed?
@ilovetacos I have raised this with the platform vendor, thank you.
Hi I am getting the 403 error again. :(
this is by far the most frustrating download I have ever seen. we cant simply download when we want. all of sudden it works sometimes.
Please update the installers somewhere else as well so that we can download it directly.
I cannot download the installer yet again. I get the HTTP 500 error.
I've tried 3 different browsers (Chrome, Firefox, IE) and incognito mode on both Chrome and Firefox.
The last time this happened I got it going by using good old IE but even that isn't working this time.
Getting http status 500 error while trying to access 8.6.0 download link from all browsers
Anyone roll with 220.127.116.11 yet?
In the past I have watched the discussions on new server releases to get a sense of when to do the upgrade. The previous comments here, while not saying run, do not have people saying "Go For It".
Can you tell me what percentage of customers have upgraded or at the least is there a general level of success?
@cool_breeze sorry that is not information that is available to me.
The download link in the original article don't work.
This one does https://sflinks.carbonblack.com/tpVJXwI-EYQ/
@DerekT sorry, we just cutover to a new backend and there was an issue that has since been resolved.