Command line options for the Sisipsconfig Tool

Products

Critical System Protection Data Center Security Server Data Center Security Server Advanced Endpoint Security for Servers Endpoint Security Cloud Workload Protection

Issue/Introduction

This document covers the command line options available to the sisipsconfig tool.

Environment

Critical System Protection (CSP)
Cloud Workload Protection - Compute (CWP)
Data Center Security Server (DCS)
Data Center Security Server Advanced (DCS:SA)
Symantec Endpoint Protection - Symantec Linux Agent (SEP Linux)

The agent config tool is located in the following directories on an agent computer:

Windows agents named sisipsconfig.exe

Location CSP: C:\Program Files\Symantec\Critical System Protection\agent\ips\bin
Location for DCS: C:\Program Files (x86)\Symantec\Data Center Security Server\Agent\IPS\bin

UNIX agents named sisipsconfig.sh

You will need to su to sisips to run this tool
- Change to root, then run the following
  - su - sisips
  - /opt/Symantec/sdcss/IPS/sisipsconfig.sh -v
- You can run this as a single line as root
  - su - sisips -c '/opt/Symantec/sdcssagent/IPS/sisipsconfig.sh -v'
Location for CSP: opt/Symantec/scspagent/IPS
Location for DCS and SEP: opt/Symantec/sdcssagent/IPS

Resolution

SEP Linux, CWP Linux and DCS:SA Linux agent cmdline tool options

sisipsconfig tool options	Descriptions	SEP Linux	CWP Linux	DCS:SA
-view (-v)	Prints the values configurable by this tool	Yes	Yes	Yes
-utilport (-u)	Sets the Utilities service port (1-65535)	N/A	Yes	Yes
-setpolicy (-s)	Replaces the current policy with the applied policy	N/A	Yes	Yes
-resetpolicy (-r)	Replaces the current policy with the default policy	N/A	Yes	Yes
-toggleipsstate (-i)	This option is deprecated now. Please use -ipsstate on/off instead	N/A	Yes	Yes
-ipsstate on/off	Enables or Disables state of the IPS Driver	N/A	Yes	Yes
-overridetimeout (-o)	Timeout value (in seconds) for policy translation during policy override	N/A	N/A	Yes
-trace	Turns Trace to the desired value	Yes	Yes	Yes
-rollagent (-a)	Forces the Agent log file to rollover	Yes	Yes	Yes
-rollcsv (-csv)	Forces the CSV log file to rollover	Yes	Yes	Yes
-retranslate (-n)	Forces a policy retranslation	N/A	Yes	Yes
-export (-export)	Prints out the config file	Yes	Yes	Yes
-rtfim on/off	Turn RealTime FIM on or off	N/A	Yes	Yes
-rtnfsc on/off	Turn RealTime FIM NFS Client watch on or off	N/A	Yes	Yes
-kstat	Driver Stats	N/A	Yes	Yes
-apstate on/off	Enables or Disables state of AP Driver	Yes	Yes	Yes *
-amd on/off	Enables or Disables AP feature	Yes	Yes	Yes *
-approfile 10/20	Enable AP profiling for 10 or 20 minutes	Yes	Yes	Yes
-host (-h)	Sets the target Management Server hostname. This could be a comma separated list of multiple servers	N/A	N/A	Yes
-port (-p)	Sets the target Management Server port (1-65535)	N/A	N/A	Yes
-certfile (-c)	Sets the path to the SSL client certificate file	N/A	N/A	Yes
-failbackinterval	Sets the failback interval for the agent to try to communicate with the Primary Management Server	N/A	N/A	Yes
-test (-t)	Tests the connection information with the Nth server in the Server List	N/A	N/A	Yes
-forcereg	Forces the Agent to re-register with the server	N/A	N/A	Yes
-upgradeagentnow	Upgrades agent and sdcss-kmod package(s)	N/A	N/A	Yes
-agentautoupgrade	Enables or Disables Agent Automatic Upgrade feature	N/A	N/A	Yes

* Note: - apstate and -amd are for DCS Linux Agents (Not DCS Windows Agents)

How to use the sisipsconfig tool on Linux/Unix systems

Type "sisipsconfig.sh -help <option>" for a detailed help page for each option.

(i.e. sisipsconfig -help -export)

Examples:
This example prints out the config file
sisipsconfig -export

This example rolls over the Agent and CSV log files:
sisipsconfig -a -csv

This DCS Windows example returns the Security Group
sisipsconfig -v | findstr "Security Group"

Additional Information

This utility can be used in safe mode.