logo

Knowledge Base

Access official resources from Carbon Black experts

IMPORTANT ANNOUNCEMENT: On May 6, 2024, Carbon Black User eXchange (UeX) and Case Management will move to a new platform!
The Community will be in read-only mode starting April 19th, 7:00 AM PDT. Check out the blog post!
You will still be able to use the case portal to create and interact with your support cases until the transition, view more information here!

Carbon Black Cloud: How to Setup Circular Logging on Procmon

Carbon Black Cloud: How to Setup Circular Logging on Procmon

Environment

  • Microsoft Windows: All Supported Versions

Objective

How to limit the size of procmon files by setting up circular logging

Resolution

  1. Download and install Process Monitor ( Process Monitor - Sysinternals )
  2. Open ProcMon
  3. Select Options > History Depth...
  4. Select "Limit to:" and specify a file size between 200 and 500 MB as desired e.g. Limit to 300 MB
  5. Select File > Backing Files...
  6. Select Limit "Use file named:" and enter desired file path and file name for procmon files e.g. C:\Temp\LogFile.PML
  7. Close Procmon and reopen when ready to begin replicating issue
  8. Once Procmon is reopened, observe that procmon files will automatically be generated in the specified file location with the specified name prefix e.g. C:\Temp\LogFile.PML, LogFile-1.PML, LogFile-2.PML, etc...

Related Content


Was this article helpful? Yes No
No ratings
Article Information
Author:
CB_Support
Creation Date:
‎10-05-2023
Views:
398
Contributors
logo

Copyright © 2005-2023 Broadcom. All Rights Reserved. The term “Broadcom” refers to Broadcom Inc. and/or its subsidiaries.