CSA/SA self-protection is a feature that prevents malicious programs from modifying or terminating essential components of the CSA/SA on 32-bit operating systems. This feature is enabled by default.
You can disable this feature when:
- You want to manually stop/start/restart the CSA/SA services
- You want to kill CSA/SA processes
- Troubleshooting
To disable the client self-protection feature:
- Log in to the WFBS console.
- Go to the Security Settings tab.
- On the left pane, select the specific group of the computers.
- Click Configure > Client Privileges.
- Scroll down and look for the Client Security section then untick the Prevent users or other processes from modifying Trend Micro program files, registries and processes option.
- Click Save. The Security Agent will automatically get the update.
Once you have disabled Client Self-protection, re-enable Self-Protection. To do this, just tick Prevent users or other processes from modifying Trend Micro program files, registries and processes.
To force the update on a Security Agent, do either of the following:
- Right-click the Security Agent icon on the system tray and select Update Now.
- Open command prompt and run the following:
\\<wfbs server name>\Ofcscan\autopcc.exe
If you need technical assistance, contact Trend Micro Technical Support.
- Log in to the WFBS console.
- Go to Security Settings > Group (Configure) > Client Privileges.
- Under the Client Security section, select Normal.
- Click Save. The Security agent will automatically get the update.
Once you have disabled client self-protection, enable self-protection again. To do this, repeat the procedure above, but select High in Step 3 instead of Normal.
To force the update on a SA, do either of the following:
- Right-click the Security Agent icon on the system tray and select Update Now.
- Open command prompt and run the following:
\\<wfbs server name>\Ofcscan\autopcc.exe