Bypass proxy configuration in Trend Vision One Cloud Endpoint Service (xES) sensor

Product / Version includes:

Trend Vision OneAll

Last updated: 2023/09/26

Solution ID: KA-0015373

Category: Configure

Summary

Trend Micro Vision One Endpoint (Cloud Endpoint, Endpoint Response) fails to connect to the backend services in proxy enabled environment causing the following errors:

"failed to install"

"failed to enable XES"

Trend Micro Vision One Endpoint (Cloud Endpoint, Endpoint Response) leverages cURL to communicate with backend services, such as download installer / policy and upload telemetry / detection. In situation where it is proxy configured, the following HTTP error can be see in the communication payload from the agent debug log:

"http_error": {

        "net_status": 56,

        "network_status_message": "Failure when receiving data from the peer",

        "status": 0,

        "status_category": 0

    },

There are situations where the proxy server is configured, but responses from the proxy server cannot be understood by the endpoint's cURL module. It is suggested to bypass the *.trendmicro.com FQDN in the proxy and let the communications not pass through the proxy server.

In Endpoint Basecamp in similar cases, "*.trendmicro.com" in bypass proxy setting is suggested, but note that "*.trendmicro.com" with asterisk "*" is not supported by cURL module.

Based on this information it is suggested to add another item "trendmicro.com" to support cURL module if adding "*.trendmicro.com" has already been suggested.

Follow these steps to mitigate the issue:

Set up the bypass_proxy setting manually on the target endpoint to let the communication.
For Windows 11:
1. Click Start, then navigate to Settings > Network & Internet > Proxy.
2. Under "Manual proxy setup" next to "Use a proxy server", select Set up.
3. In the "Edit proxy server" dialog box, locate the field "Use the proxy server except for addresses that start with following entries..." and add the new item "trendmicro.com".
4. Click Save.
For Windows 10:
1. Click Start, then navigate to Settings > Network & Internet > Proxy.
2. Verify that "Manual proxy setup" has already been turned on.
3. In the field "Use the proxy server except for addresses that start with following entries..." and add the new item "trendmicro.com".
4. Click Save.
General setup for Windows:
1. Open the Control Panel, click Network and Internet then select Internet Options.
2. Go to the Connections tab and click LAN settings.
3. Under Proxy Server, turn on "Use a proxy server for your LAN".
4. In the field "Use the proxy server except for addresses that start with following entries..." and add the new item "trendmicro.com".
5. Click Save.
Trigger the Trend Micro Vision One Endpoint install to check if the function returns to normal.
Trigger the feature from Trend Micro Vision One Console again to check if the function returns to normal.

Was this article helpful?

Featured

Automation Center

Education Portal

Online Help Center

Service Status

TrendConnect

Bypass proxy configuration in Trend Vision One Cloud Endpoint Service (xES) sensor

Bypass proxy configuration in Trend Vision One Cloud Endpoint Service (xES) sensor

Product / Version includes:

Summary