Products
Applications
Support
Company
How To Buy
Skip to main content (Press Enter).
Sign in
Skip auxiliary navigation (Press Enter).
Register
Skip main navigation (Press Enter).
Toggle navigation
Search Options
Home
My Communities
Communities
All Communities
Application Networking and Security
Enterprise Software
Mainframe Software
Software Defined Edge
Symantec Enterprise
Tanzu
VMware Cloud Foundation
Blogs
All Blogs
Enterprise Software
Mainframe Software
Symantec Enterprise
VMware
Events
All Events
Enterprise Software
Mainframe Software
Symantec Enterprise
VMware
Water Cooler
Betas
Flings
Education
Groups
Enterprise Software
Mainframe Software
Symantec Enterprise
VMware
Members
Blog Viewer
Carbon Black Cloud: How to Enable UMDH Logging (Windows)
By
CB_Support
posted
Feb 15, 2024 07:32 PM
0
Recommend
Environment
Carbon Black Cloud Console: All Versions
Microsoft Windows: All Supported Versions
Objective
How to Enable UMDH Logging (Windows)
Resolution
Open Regedit application.
Navigate to following Key path.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options
Create Key under “Image File Execution Options” by right clicking and name the key “repmgr.exe”
Click “repmgr.exe” to select the newly created Key.
Navigate the cursor to right pane. While in that pane, right click, and create new DWORD (32-Bit) Value key and rename the key to “GlobalFlag”.
Double click on “GlobalFlag” to display following dialog change Base to Decimal and enter 4096 in text box of Value Data.
Related Content
Using UMDH to Find a User-Mode Memory Leak - Windows drivers
#CarbonBlackCloud
#Container
#AuditandRemediation
#Workload
#EndpointStandard
#EnterpriseEDR
#ManagedDetectionandResponse
#ManagedDetection
#Prevention
0 comments
4 views
Permalink
Copyright 2019. All rights reserved.
Powered by Higher Logic