Sign In with your
Trend Micro Account
Need Help?
Need More Help?

Create a technical support case if you need further support.

Trend Micro Apex One as a Service Update Agent Misconfiguration Notice

    • Updated:
    • 14 Dec 2021
    • Product/Version:
    • Apex One as a Service
    • Apex One as a Service
    • Apex One as a Service
    • Apex One as a Service
    • Apex One as a Service
    • Platform:
Summary

Trend Micro has received reports of high download traffic due to misconfiguration of the Update Agent. This advisory contains information on how to examine your Update Agents and tips to prevent any potential misconfiguration.

Assigned Update Agents will duplicate the selected component update, domain settings or Security Agent programs or hot fixes, which not only require more disk space to the Update Agent but also generates traffic to corporate environment if the Update Agents are not assigned correctly. Excessive Update Agents assignments can negatively impact overall performance, so it is recommended to only configure the Update Agents that are required.

Please refer to KB 1034989 for more details on Apex One Update Agents.

Details
Public

In the received reports, there are two typical misconfigurations observed:

  • Update Agent settings were accidentally enabled on a normal Apex One Security Agent policy.
  • Normal Apex One Security Agent policies inherited settings from a policy that enabled its Update Agent settings unintentionally.

To avoid this, users are advised to review the following recommendations to examine their Apex One Security Agent policy settings and correct possible misconfigurations:

  • Recommendation A - Examine the major parent policies or the policies that manages most of the Apex One agents to make sure Update Agent settings are configured as intended.

    1. Log on to the Apex One as a Service web console.
    2. Go to Policies > Policy Management > Apex One Security Agent.
    3. Examine the major policies or the policies that manages most of the Apex One agents.
    4. Uncheck the Update Agent settings if the policy targets are not expected to run as Update Agents.

      Update Agent

  • Recommendation B - Use a dedicated Apex One Security Agent policy to manage Update Agent settings

    1. Log on to the Apex One as a Service web console.
    2. Go to Policies > Policy Management > Apex One Security Agent.
    3. Create a new policy with dedicated Policy Name, for example, name it as "Update Agent".

      Create a new policy

    4. Click Update Agent in left panel, and configure the required distribution setting of the Update Agent.

      configure setting

       
      The policy of a normal Apex One agent should not check any settings in its Update Agent page.
       
Premium
Internal
Partner
Rating:
Category:
Configure; Troubleshoot
Solution Id:
000289945
Feedback
Did this article help you?

Thank you for your feedback!


*This form is automated system. General questions, technical, sales, and product-related issues submitted through this form will not be answered.

If you need additional help, you may try to contact the support team. Contact Support

To help us improve the quality of this article, please leave your email here so we can clarify further your feedback, if neccessary:
We will not send you spam or share your email address.

*This form is automated system. General questions, technical, sales, and product-related issues submitted through this form will not be answered.