McAfee Active Response Debug Data Collection (Client-side issues)
Last Modified: 2022-06-29 09:30:10 Etc/GMT
Affected Products
Languages:
This article is available in the following languages:
Trellix CEO, Bryan Palma, explains the critical need for security that’s always learning.
As per Gartner, "XDR is an emerging technology that can offer improved threat prevention, detection and response."
Trellix announced the establishment of the Trellix Advanced Research Center to advance global threat intelligence.
Trellix Advanced Research Center analyzes threat data on ransomware, nation-states, sectors, vectors, LotL, MITRE ATT&CK techniques, and emails.
As of May 14, 2024, Knowledge Base (KB) articles will only be published and updated in our new Trellix Thrive Knowledge space.
Log in to the Thrive Portal using your OKTA credentials and start searching the new space. Legacy KB IDs are indexed and you will be able to find them easily just by typing the legacy KB ID.
McAfee Active Response Debug Data Collection (Client-side issues)
Technical Articles ID:
KB92004
Last Modified: 2022-06-29 09:30:10 Etc/GMT Environment
Data Exchange Layer 4.x and 5.x McAfee Active Response (MAR) 2.x Summary
When logging a case with Technical Support for a MAR client-side issue, perform the following data gathering before opening your support case. Gathering troubleshooting information before you submit your case speeds up the resolution process. NOTE: Technical Support might request further data, depending on the issue: First enable debug logging on the client. Modify the client's policy on your ePolicy Orchestrator (ePO) server:
To fully understand an issue, you need logging from the client and server sides of the conversation. It's important that we have logs from both the Active Response Client and Active Response Server, which cover the same time period and show the issue. An MER from both the client and server is needed if the logging alone doesn't fully explain the issue. Many times, data included in the MER is needed, which includes the following:
Affected ProductsLanguages:This article is available in the following languages: |
|