Sign In with your
Trend Micro Account
Need Help?
Need More Help?

Create a technical support case if you need further support.

Disabling self-protection of Deep Security Agent (DSA) or Deep Security Relay (DSR) Agent via command line

    • Updated:
    • 8 Feb 2017
    • Product/Version:
    • Deep Security 8.0
    • Deep Security 9.0
    • Deep Security 9.5
    • Deep Security 9.6
    • Platform:
    • VMware ESX 4.1
    • VMware ESX 5.0
    • VMware ESXi 4.1
    • VMware ESXi 5.0
    • VMware vCenter 5.0
    • Windows 2003 Enterprise
    • Windows 2003 Enterprise 64-bit
    • Windows 2003 Standard
    • Windows 2003 Standard 64-bit
    • Windows 2008 Enterprise
    • Windows 2008 Enterprise 64-bit
    • Windows 2008 Server R2
    • Windows 2008 Standard
    • Windows 2008 Standard 64-bit
    • Windows 7 32-bit
    • Windows 7 64-bit
    • Windows Vista 32-bit
    • Windows Vista 64-bit
    • Windows XP Professional
    • Windows XP Professional 64-bit
Summary

The self-protection of the DSA or DSR Agent prevents agent uninstallation when the DSM is no longer available, so the hardening mechanism must be disabled.

Details
Public

To disable the hardening mechanism via command line:

  1. Open the Command Prompt.
  2. Navigate to the installation folder:
    • For DSA: ..\Deep Security Agent
    • For DSR Agent: ..\Deep Security Relay
  3. Enter the command appropriate to your product version to disable the hardening:
    • For Deep Security 9.5 and 9.6:

      dsa_control –s=0

      where the value of "s" is:

      • s = 1 - to enable self-protection (default)
      • s = 0 - to disable self-protection

      If the DSA installation is password-protected, use the following command instead:

      dsa_control –s=0 –p "password_in_clear_test"

      Disable self-protection

    • For Deep Security 9.0 and below:
      • dsa_control.exe /H:0
      • dsa_control.exe /H 0
      • dsa_control -–harden=0 --passwd=<password>
       
      If the agent is in a Linux system, use –H:0 instead of /H:0. For example: ./dsa_control –H:0.
  4. Continue uninstalling the agent via Windows Control Panel.

Afterwards, the agent's hardening mechanism should now be disabled.

Premium
Internal
Rating:
Category:
Configure
Solution Id:
1060690
Feedback
Did this article help you?

Thank you for your feedback!

To help us improve the quality of this article, please leave your email here so we can clarify further your feedback, if neccessary:
We will not send you spam or share your email address.

*This form is automated system. General questions, technical, sales, and product-related issues submitted through this form will not be answered.

If you need additional help, you may try to contact the support team. Contact Support


To help us improve the quality of this article, please leave your email here so we can clarify further your feedback, if neccessary:
We will not send you spam or share your email address.

*This form is automated system. General questions, technical, sales, and product-related issues submitted through this form will not be answered.