EDR Server: Syslog alerting stops after restarting services in 7.5.0
search cancel

EDR Server: Syslog alerting stops after restarting services in 7.5.0

book

Article ID: 290160

calendar_today

Updated On:

Products

Carbon Black EDR (formerly Cb Response)

Issue/Introduction

After restarting services, syslog alerts are no longer firing

Environment

  • EDR Server: 7.5.0

Cause

A regression in syslog handlers for 7.5.0 stops evens from firing

Resolution

  • Upgrade to 7.5.1 and above
  • As a work, toggle the "Log to syslog" switch on one of the watchlists
Powered by Wolken Software