Sign In with your
Trend Micro Account
Need Help?
Need More Help?

Create a technical support case if you need further support.

Enabling Anti-Malware Solution Platform (AMSP) debug logs on Deep Security Agent (DSA)

    • Updated:
    • 8 Feb 2016
    • Product/Version:
    • Deep Security 9.5
    • Deep Security 9.6
    • Platform:
    • Windows 2003 Server R2
    • Windows 2008 Enterprise
    • Windows 2008 Enterprise 64-bit
    • Windows 2008 Server R2
    • Windows 2008 Server R2 Enterprise
    • Windows 2008 Standard
    • Windows 2008 Standard 64-bit
    • Windows 2012 Datacenter R2
    • Windows 2012 Enterprise
    • Windows 2012 Standard R2
    • Windows 8.1 32-bit
    • Windows 8.1 64-bit
Summary
Enable AMSP debug logs to gather more information when troubleshooting issues related to the Anti-malware feature of the DSA.
Details
Public

To enable the Anti-Malware Solution Platform debug logs, follow the procedure for your respective product version.

In Deep Security 9.5, enabling the AMSP debug logs on DSA is now done through agent trace file. DSA 9.5 and higher versions write their log information to disk automatically. All of the tracing and error/warning/information messages go to a disk file named ds_agent.log. This disk file gets rotated automatically and is included in an agent diagnostic package.

The trace settings can be changed on-the-fly via a protocol command. The sendCommand utility can be used to send the trace command to the agent with an argument format of:

trace=<new settings>
trace+=<settings to add>
trace-=<settings to remove>

To configure the trace settings, go to C:\Program Files\Trend Micro\Deep Security Agent and execute the command that corresponds to the action you want to do.

  • To check the current trace settings:

    sendCommand --get Trace

  • To enable AMSP debug:

    sendCommand --get Trace trace+=AM,AMSP,dsp.am.*

  • To get a complete debug logs including other modules:

    sendCommand --get Trace trace+=*

  • To disable AMSP debug:

    sendCommand --get Trace trace-=AM,AMSP,dsp.am.*

The log files are kept in the diag subdirectory under the agent's main data folder location:

For Vista+: C:\ProgramData\Trend Micro\Deep Security Agent
For Windows older version: C:\Documents and Settings\All Users\Application Data\Trend Micro\Deep Security Agent

  1. Log into the DSA machine and go to C:\Program Files\Trend Micro\AMSP\AmspConfig.ini folder.
  2. Open the AmspConfig.ini file and change the value of [DebugLevel] accordingly.
    For your reference, see the meaning of the values below:

    0: Disable = No log
    1: Performance = Performance testing data
    2: Info = Detailed information
    3: Warning = Acceptable error
    4: Event (Always output to AMSP_Event.log) = Critical event
    5: Error = Unexpected input or return error 6: Fatal = System or unrecoverable error

  3. Save the changes.

The debug log will be show in C:\program files\trend micro\amsp\debug\Amsp_DebugLog.log.

Premium
Internal
Rating:
Category:
Configure
Solution Id:
1105491
Feedback
Did this article help you?

Thank you for your feedback!

To help us improve the quality of this article, please leave your email here so we can clarify further your feedback, if neccessary:
We will not send you spam or share your email address.

*This form is automated system. General questions, technical, sales, and product-related issues submitted through this form will not be answered.

If you need additional help, you may try to contact the support team. Contact Support


To help us improve the quality of this article, please leave your email here so we can clarify further your feedback, if neccessary:
We will not send you spam or share your email address.

*This form is automated system. General questions, technical, sales, and product-related issues submitted through this form will not be answered.


Need More Help?

Create a technical support case if you need further support.