Manual changes to any file on Enforce or Detection servers are ignored
search cancel

Manual changes to any file on Enforce or Detection servers are ignored


Article ID: 186272


Updated On:


Data Loss Prevention Network Monitor and Prevent for Email and Web


You are trying to increase the sensitivity of the logging, either on Enforce or Detection servers by manually editing the appropriate files, eg:
  • etc
Even after restarting the appropriate service however, the changes made in the * file are ignored. Only INFO, WARNING and SEVERE level log messages continue to appear in the log file.


Release : 15.x, 14.6


The logging level has, at some point in the past, been set from the Enforce console from the System | Servers and Detectors | Logs menu by selecting the Configuration tab and choosing 'Restore Defaults' from the Diagnostic Logging Setting drop-down menu.


1. Locate the relevant file path:
Enforce Server: C:\ProgramData\Symantec\DataLossPrevention\EnforceServer\15.5\LoggingConfigurationOverwrite
Detection Server: C:\ProgramData\Symantec\DataLossPrevention\DetectionServer\15.5\LoggingConfigurationOverwrite

2. Delete the LoggingConfigurationOverwrite folder and its contents
3. Restart the SymantecDLP service(s)

You can now make manual changes to the files you need and they will be active after the corresponding DLP service has been restarted.