How do I collect diagnostic information for the SEP for Linux client/agent?

All Linux distributions

For SEP agent version 14.3 RU1 and later:

You can use the GetAgentInfo script (also called GAI) to collect all log files into a ZIP file that you can send to customer support.

1. Login to Symantec Linux Agent system.
2. Navigate to /opt/Symantec/sdcssagent/IPS/tools/
3. Run ./getagentinfo.sh as root. A ZIP file will be created in /tmp/ directory.
4. The name of the file will look similar to 20201208_#####_0001_CU_######-rhel8.zip
   -out <directory> lets you change the location and the name of the generated ZIP file.

For SEP client version 14.3 MP1 and earlier:

There are two methods for gathering diagnostic information on Linux clients:

1. sadiag.sh (preferred)
   See: How to collect diagnostic information for the SEP for Linux client. This utility is installed with the SEP client. It is found on a Linux client at /opt/Symantec/symantec_antivirus/sadiag.sh, by default. This option creates a tar.bz2 file.
2. Symdiag for Linux
   You can download this utility through the following article: Download SymDiag to detect Symantec product issues
   This option creates a .sdbz file which can be analyzed by Symantec Support.

For information on viewing individual log files and configuring additional logging options on a Linux client, see Overview of log and configuration files in Symantec Endpoint Protection for Linux.