To enabling debug logging for the Security Agent:
-
Copy the contents of the LogServer folder (except for the
Log subfolder) to a new location on the target
endpoint.
Locate the LogServer folder as follows:
-
For new Security Agents: C:\Program Files (x86)\Trend Micro\Security Agent\Temp\LogServer\
-
For upgraded Security Agents: C:\Program Files (x86)\Trend Micro\OfficeScan Client\Temp\LogServer\
-
On the Apex One server: \Program Files (x86)\Trend Micro\Apex One\PCCSRV\Private\LogServer
-
-
Modify the content of the LogServer\ofcdebug.ini file as
follows:
Debuglog=C:\ofcdebug.log
debugLevel_new=D
ForceStopOtherLogserver=1
Optionally increase the maximum split size from the default 10MB by altering: debugSplitSize=10485760
Optionally modify the maximum number of logs files by altering: DebugMaxSplit=100
- Save the file.
-
On the target endpoint, run LogServer.exe using
Run as administrator.
The tool creates the ofcdebug.log file.
- Reproduce the issue.
- Close the LogServer.exe window to stop the debug log collection.
- Collect all the .log and .7z log files created during the debug logging and move to another location.
- Delete all the files copied during step 1.