Sign In with your
Trend Micro Account
Need Help?
Need More Help?

Create a technical support case if you need further support.

Verifying the connection between the Server and Security Agent in Worry-Free Business Security (WFBS)

    • Updated:
    • 5 Oct 2015
    • Product/Version:
    • Worry-Free Business Security Standard/Advanced 7.0
    • Worry-Free Business Security Standard/Advanced 8.0
    • Worry-Free Business Security Standard/Advanced 9.0
    • Platform:
    • Windows 2000 Advanced Server
    • Windows 2000 Professional
    • Windows 2000 Server
    • Windows 2003 Enterprise
    • Windows 2003 Server R2
    • Windows 2003 Small Business Server
    • Windows 2003 Small Business Server R2
    • Windows 2003 Standard
    • Windows 2008 Enterprise
    • Windows 2008 Essential Business Server
    • Windows 2008 Server R2
    • Windows 2008 Small Business Server
    • Windows 2008 Standard
    • Windows 2011 Small Business Server Essentials
    • Windows 2011 Small Business Server Standard
    • Windows 2012 Enterprise
    • Windows 2012 Server Essentials
    • Windows 2012 Standard R2
    • Windows 2012 Web Server Edition
    • Windows 7 32-bit
    • Windows 7 64-bit
    • Windows 8 32-bit
    • Windows 8 64-bit
    • Windows 8.1 32-bit
    • Windows 8.1 64-bit
    • Windows Mobile 5 Pocket PC
    • Windows Vista 32-bit
    • Windows Vista 64-bit
    • Windows XP Home
    • Windows XP Professional
    • Windows XP Tablet PC
Summary

Verify that the server and Security Agents are able to communicate successfully. These steps will benefit the following:

  • Isolating pattern and scan engine update issues
  • Troubleshooting clients/agents that appear offline or disconnected, or are missing in the console
  • VPN connection check

For WFBS 7.0, refer to the article: Performing connection checks.

Details
Public

To investigate communication issues between the server and the agent, you need to verify the connection:

 
  • Use the same server and client/agent for all the steps.
  • Make sure to take screenshots of all the results you get.
  • To enable the telnet command in Windows 7, follow the steps in the Microsoft article: Enabling telnet client in Windows 7.
  1. From the Security Server, ping the IP address of the client/agent that has the issue.
  2. On the Client Security Agent, open the Registry Editor (regedit.exe).
     
    Important: Always back up the whole registry before making any modifications. Incorrect changes to the registry can cause serious system problems.
     
    In 64 bit environments, the product is always found in the HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Note\TrendMicro\PC-cillinNTCorp\CurrentVersion hive.
  3. Go to the HKEY_LOCAL_MACHINE\SOFTWARE\TrendMicro\PC-cillinNTCorp\CurrentVersion hive and take note of the value for the registry key "LocalServerPort". This is the client/agent port. Use the decimal value.
  4. Go back to the Security Server, then open a command prompt and run this command:

    telnet<space><client IP address><space><value of the client port>

  5. Open Internet Explorer then type the following in the address bar:

    http://<client's IP address>:<local server port>/?CAVIT

    Example: http://192.168.16.10:12345/?CAVIT

    If you get a result "!CRYPT!...", it means that the port is open in the client/agent and the connection from server to client/agent should work. Otherwise, there is a problem with the connection.

  6. On the Client Server Security Agent, open the Registry Editor (regedit.exe).
     
    Important: Always back up the whole registry before making any modifications. Incorrect changes to the registry can cause serious system problems.
  7. Go to the HKEY_LOCAL_MACHINE\SOFTWARE\TrendMicro\PC-cillinNTCorp\CurrentVersion hive and take note of the values of the following registry keys:
    • "Server" - This is the server name the /agent is reporting to.
    • "ServerPort" - This is the server port number of the Security Server. Use the decimal value.
  8. If you are using WFBS 8.0 and 9.0, perform steps a-d. Otherwise, go to Step 9.
     
    Steps 8a-8d are only necessary for issues with the Smart Scan feature, which is only available in WFBS versions 7.0 and above.
    1. Go to the HKEY_LOCAL_MACHINE\SOFTWARE\TrendMicro\PC-cillinNTCorp\CurrentVersion\iCRC\Scan Server hive.
    2. Take note of the value for the "LocalScanServerUrl" registry key. This is the server name of the client/agent.
    3. To verify if the Smart Scan server is available, open Internet Explorer, then type the following URL in the address bar:
      https://<server>:<port>/tmcss/?LCRC=08000000AC41080092000080C4F01936B21D9104

      Example:

      https://10.10.12.171:4345/tmcss/?LCRC=08000000AC41080092000080C4F01936B21D9104

      If the browser returns a File Download Security Warning pop-up window, the Scan Server is enabled and accessible:

      File Download: Security Warning
      Do you want to save this file?
      Name: tmcss
      Type: Unknown File Type, 4 bytes
      From: <Server_name>
      Verify Scan Server Connection Result

       
      When using this test, the "Do not save encrypted page to disk" setting must be disabled as shown below. Otherwise, the test will fail.



      TMCSS in Internet Options

      Make sure to use the port you find in your registry:

      For WFBS 8.0 or 9.0 the port normally found in the registry is 8082.

    4. Go to Step 10.
  9. From the agent, ping the server name of the Security Server.
    telnet<space><server name><space><value of the server port>
     
    For the server name, make sure to use the full name you find in the registry key "Server".

    To enable the telnet command in Windows 7, follow the steps in the Microsoft article: Enabling telnet client in Windows 7.

  10. Open Internet Explorer then type the following URL in the address bar:
    • For OfficeScan: "http://<server name>:<value of the server port>/officescan/cgi/cgionstart.exe"
    • For WFBS: "http://<server name>:<value of the server port>/SMB/cgi/cgionstart.exe"

    If the next screen shows "-2", this means the client/agent can communicate with the server. Otherwise, there is a problem with the connection.

  11. Send the screenshots of the results to Trend Micro Technical Supportfor further analysis.
     
    For WFBS 7.0 or later, also send the file you obtained in Step 8c.

For offline agents, run the following command to check if the tmlisten port is open:

netsh firewall show state

Example:

firewall status

Premium
Internal
Rating:
Category:
Configure; Troubleshoot
Solution Id:
1112365
Feedback
Did this article help you?

Thank you for your feedback!

To help us improve the quality of this article, please leave your email here so we can clarify further your feedback, if neccessary:
We will not send you spam or share your email address.

*This form is automated system. General questions, technical, sales, and product-related issues submitted through this form will not be answered.

If you need additional help, you may try to contact the support team. Contact Support


To help us improve the quality of this article, please leave your email here so we can clarify further your feedback, if neccessary:
We will not send you spam or share your email address.

*This form is automated system. General questions, technical, sales, and product-related issues submitted through this form will not be answered.


Need More Help?

Create a technical support case if you need further support.