Environment
- App Control Agent: All Supported Versions
- Microsoft Windows: All Supported Versions
Objective
To completely stop/start the App Control Agent for testing purposes.
Resolution
Disable Agent:
- Using an administrative command prompt on the endpoint, execute the following commands:
cd "C:\Program Files (x86)\Bit9\Parity Agent"
dascli password GlobalCLIPassword
dascli tamperprotect 0
net stop parity
fltmc unload paritydriver
- Perform test.
- NOTE: When the Agent is not running it will be unable to monitor the creation of new files.
- Any File Creation Control Rule will not be able to properly issue Local Approvals and may cause issues in execution once the Agent is enabled again.
Enable Agent:
- Using an administrative command prompt on the endpoint, execute the following commands:
fltmc load paritydriver
net start parity
cd "C:\Program Files (x86)\Bit9\Parity Agent"
dascli status
- Verify the Agent shows as Connected with Tamper Protection Enabled.
Additional Notes
Running the commands in Step 1 will do the following:
- Prevent the Agent from communicating with the App Control Server
- Prevent the Agent from tracking any file operations
- Prevent the Agent from taking any actions
- Allow the Agent to be uninstalled
Related Content
