Threat Report: Exposing Malware in Linux-Based Multi-Cloud Environments | Download Now

App Control: How to Collect Historical Agent Logs (Remotely)

App Control: How to Collect Historical Agent Logs (Remotely)

Environment

  • App Control Console: All Supported Versions
  • App Control Agent: All Supported Versions

Objective

How to collect the Agent Historical Logs remotely.

Resolution

  1. Log into the App Control Console and navigate to Assets > Computers > relevant Computer.
  2. On the Computer Details page > right-hand menu > Other Actions > Upload diagnostic files > Go.
  3. Give the endpoint at least 15 minutes to generate and upload the Diagnostics to the application server.
  4. Navigate to Tools > Requested Files > Diagnostic Files. 
  5. Download the diagnostics with the matching computer name. 
  6. Upload the diagnostics to the Vault associated with your existing Support Case.
Note: By default the Agent will not automatically purge the diagnostic archive from the endpoint. It may be necessary to request the Agent delete them if the endpoint is sensitive to disk space.

Additional Notes

  • Agent Historical Logs (Diagnostics) are best for troubleshooting unexpected blocks, or potentially other issues that are difficult to recreate.
  • Windows Agent Diagnostics are generated "C:\ProgramData\Bit9\Parity Agent\Logs".
  • Linux Agent Diagnostics are generated in "/srv/bit9/data/Logs".
  • Mac Agent Diagnostics are generated in "/Library/Application Support/com.bit9.Agent/Logs".

Related Content


Labels (1)
Tags (2)
Was this article helpful? Yes No
No ratings
Article Information
Author:
Creation Date:
‎12-06-2018
Views:
11840
Contributors