search cancel

How can I dump the Endpoint Agent configuration for review?

book

Article ID: 160391

calendar_today

Updated On:

Products

Data Loss Prevention Endpoint Prevent Data Loss Prevention Endpoint Discover

Issue/Introduction

How can I dump the Endpoint Agent configuration for further investigation?

Resolution

Transfer vontu_sqlite3.exe to the endpoint machine.  This tool is included with the Symantec_DLP_X.X_Agent_Win-IN  package located on the Broadcom support portal (https://support.broadcom.com). See TECH249541 for details.

To run this tool, copy vontu_sqlite3.exe into the Endpoint Agent directory where the ks.ead file is located.  The default path for windows endpoint agents is C:\Program Files\Manufacturer\Endpoint Agent

Open a command prompt, change directory to the Endpoint Agent directory and then execute:

vontu_sqlite3 -db=<database file> [-p=<password>]

Example: 

vontu_sqlite3 -db=cg.ead -p=VontuStop

This will bring up a sql prompt from which sql commands may be executed. 

Run the following commands to dump all configuration settings to a file called cgdump.txt in the same directory.

.header on
.mode csv
.once cgdump.txt
.dump
.exit

The cgdump.txt contains all of the configuration data. Provide this .txt file to support as needed.