To enable the Anti-Malware Solution Platform debug logs, follow the procedure for your respective product version.
In Deep Security 9.5, enabling the AMSP debug logs on DSA is now done through agent trace file. DSA 9.5 and higher versions write their log information to disk automatically. All of the tracing and error/warning/information messages go to a disk file named ds_agent.log. This disk file gets rotated automatically and is included in an agent diagnostic package.
The trace settings can be changed on-the-fly via a protocol command. The sendCommand utility can be used to send the trace command to the agent with an argument format of:
trace+=<settings to add>
trace-=<settings to remove>
To configure the trace settings, go to C:\Program Files\Trend Micro\Deep Security Agent and execute the command that corresponds to the action you want to do.
- To check the current trace settings:
sendCommand --get Trace
- To enable AMSP debug:
sendCommand --get Trace trace+=AM,AMSP,dsp.am.*
- To get a complete debug logs including other modules:
sendCommand --get Trace trace+=*
- To disable AMSP debug:
sendCommand --get Trace trace-=AM,AMSP,dsp.am.*
The log files are kept in the diag subdirectory under the agent's main data folder location:
For Vista+: C:\ProgramData\Trend Micro\Deep Security Agent
For Windows older version: C:\Documents and Settings\All Users\Application Data\Trend Micro\Deep Security Agent
- Log into the DSA machine and go to C:\Program Files\Trend Micro\AMSP\AmspConfig.ini folder.
- Open the AmspConfig.ini file and change the value of [DebugLevel] accordingly.
For your reference, see the meaning of the values below:
0: Disable = No log
1: Performance = Performance testing data
2: Info = Detailed information
3: Warning = Acceptable error
4: Event (Always output to AMSP_Event.log) = Critical event
5: Error = Unexpected input or return error 6: Fatal = System or unrecoverable error
- Save the changes.
The debug log will be show in C:\program files\trend micro\amsp\debug\Amsp_DebugLog.log.