Views:

To enabling debug logging for the Security Agent:

  1. Copy the contents of the LogServer folder (except for the Log subfolder) to a new location on the target endpoint.

    Locate the LogServer folder as follows:

    • For new Security Agents: C:\Program Files (x86)\Trend Micro\Security Agent\Temp\LogServer\

    • For upgraded Security Agents: C:\Program Files (x86)\Trend Micro\OfficeScan Client\Temp\LogServer\

    • On the Apex One server: \Program Files (x86)\Trend Micro\Apex One\PCCSRV\Private\LogServer

  2. Modify the content of the LogServer\ofcdebug.ini file as follows:

    Debuglog=C:\ofcdebug.log

    debugLevel_new=D

    ForceStopOtherLogserver=1

    Optionally increase the maximum split size from the default 10MB by altering: debugSplitSize=10485760

    Optionally modify the maximum number of logs files by altering: DebugMaxSplit=100

  3. Save the file.
  4. On the target endpoint, run LogServer.exe using Run as administrator.

    The tool creates the ofcdebug.log file.

  5. Reproduce the issue.
  6. Close the LogServer.exe window to stop the debug log collection.
  7. Collect all the .log and .7z log files created during the debug logging and move to another location.
  8. Delete all the files copied during step 1.