Environment
- App Control (Formerly CB Protection) Agent: All Supported Versions
- Microsoft Windows: All Supported Versions
Objective
This document describes how to enable the Agent's kernel trace for logging
Resolution
- Open a command prompt and change directory to %ProgramFiles(x86)%\Bit9\Parity Agent
- Run the following commands in order:
dascli password <type the CLI or global password here>
dascli kerneltrace 4
- Run 'dascli status' to verify that the Kernel Level shows "4/0FFFFFFF"
- Reproduce the issue for logging
- Run the following commands to reset logging to default level:
dascli password <type the CLI or global password here>
dascli kerneltrace 2
6. Run 'dascli status' to verify that the Kernel Level shows "2/007FFFFFF"
7. Copy the latest ETL file located in C:\ProgramDATA\Bit9\Parity Agent\Logs if it’s Windows 7 or 2008 and C:\Documents and Settings\All Users\Application Data\Bit9\Parity Agent\Logs if it’s Windows XP or 2003
Additional Notes
Ensure that step 5 is followed every time, as high debugging logs can quickly fill up a hard-drive
Related Content