logo

Knowledge Base

Access official resources from Carbon Black experts

IMPORTANT ANNOUNCEMENT: On May 6, 2024, Carbon Black User eXchange (UeX) and Case Management will move to a new platform!
The Community will be in read-only mode starting April 19th, 7:00 AM PDT. Check out the blog post!
You will still be able to use the case portal to create and interact with your support cases until the transition, view more information here!

EDR: Endpoint panic/reboot when sensor upgrade to 7.1.0

EDR: Endpoint panic/reboot when sensor upgrade to 7.1.0

Environment

  • EDR (CB Response) Server: All Supported Versions
  • EDR Sensor: prior to 7.1.0
  • Linux: All Supported Versions
  • Third Party Antivirus

Symptoms

Endpoint reboots when sensor is upgraded to 7.1.0 sensor version.

Cause

There is an interoperability issue in EDR sensor with other security products.

Resolution

  • Fix is planned to be released in 7.1.1 sensor version under CB-39216 / PSCLNX-10255.
  • As a workaround, the safest way to upgrade the sensor to 7.1.0 is to stop other security products on the endpoint before the upgrade and restart them after upgrade is complete.
  • Example:
1. run command 'lsmod' check what all modules are on top of cbsensor
2. Stop Trend Micro service
3. run command 'lsmod' check the difference with output in step 1.
4. Once it is confirmed that other security modules have been unloaded.
5. Upgrade EDR sensor to 7.1.0

Related Content


Labels (1)
Labels:
Tags (2)
Was this article helpful? Yes No
No ratings
Article Information
Author:
CB_Support
Creation Date:
‎05-18-2022
Views:
266
Contributors
logo

Copyright © 2005-2023 Broadcom. All Rights Reserved. The term “Broadcom” refers to Broadcom Inc. and/or its subsidiaries.