Just Published! Threat Report: Exposing Malware in Linux-Based Multi-Cloud Environments | Download Now

App Control: How to collect logs for Linux system crash

App Control: How to collect logs for Linux system crash

Environment

  • App Control Linux Agent: All Versions
  • Red Hat: All Supported Versions
  • CentOS: All Supported Versions

Objective

How to collect diagnostics after a Linux system crash

Resolution

  1. Please collect and zip the crash dump files that are written by default to: /var/crash
    tar cvfz /tmp/crash-logs.tgz /var/crash
    • If the vmcore files are missing, please verify that the Kdump service is active using steps in this KB
    • Please check if the default path for writing crash logs has been modified in the config file: /etc/kdump.conf
  2. Collect the agent logs:
    cd /opt/bit9/bin
    ./b9cli --capture /PATH/FILENAME.zip
  3. Output of the kernel version:
    uname -r
    

Related Content


Labels (1)
Tags (2)
Was this article helpful? Yes No
No ratings
Article Information
Author:
Creation Date:
‎01-19-2022
Views:
120
Contributors