Just Published! Threat Report: Exposing Malware in Linux-Based Multi-Cloud Environments | Download Now

Carbon Black Cloud: Linux Sensor Generates No Events or Alerts

Carbon Black Cloud: Linux Sensor Generates No Events or Alerts

Environment

  • Carbon Black Sensor: All Supported Versions
  • Linux: All Supported Versions

Symptoms

  • Linux sensor installed successfully
  • The sensor checks in
  • No events or alerts are seen in the Carbon Black Console related to that sensor
  • No policy actions are taken

Cause

Event collection, alert generation, and policy actions are features only supported on sensor versions 2.7.0.187460 and Higher with some Linux Operating Systems
 

Resolution

  • Confirm the sensor version is 2.7.0.187460 and Higher
  • Confirm the OS is listed under "Enterprise EDR Supported Distributions and Kernel Versions"  or  "Endpoint Standard Supported Distributions and Kernel Versions" here

Additional Notes

Parity with the Windows and Mac sensor is currently under development and additional OS versions may be added in the future. 

Related Content


Was this article helpful? Yes No
67% helpful (2/3)
Article Information
Author:
Creation Date:
‎09-09-2020
Views:
1653
Contributors