Enable CAF debug logging on Endpoint Protection Linux Agent
search cancel

Enable CAF debug logging on Endpoint Protection Linux Agent

book

Article ID: 234656

calendar_today

Updated On:

Products

Endpoint Protection

Issue/Introduction

How to enable CAF (cafservicemain) debug logging on Endpoint Protection Agent for Linux

Environment

SEP Agent for Linux version 14.3 RU1 and higher

Cause

CAF debug log provides information related to agent activities such as communication with the server, enrollment, commands, events, policy version, content version, etc.

The log is located at: /var/log/sdcss-caflog/sisamd_x.log

Resolution


- Navigate to /opt/Symantec/cafagent/bin
- Edit thecafservicemain.properties file 
- Under the # Loggers section, you will find:

logging.loggers.root.level = information 

- Change it to:

logging.loggers.root.level = debug

- To restart the service, run: systemctl restart cafagent

Additional Information

Available logging levels:

#        none (turns off logging)
#        fatal
#        critical
#        error
#        warning
#        notice
#        information
#        debug
#        trace
 

Powered by Wolken Software