Endpoint Agent Trouble Shooting

Below is a list of items to customer should provide Symantec Technical Support team when troubleshooting the Endpoint Agent.
1. Windows event logs, both system and application
2. edap_ext0.log
3. ks.ead
4. sto.ead
5. If possible a procmon capture when the agent loads and locks up the machine
6. If possible a memdump capture of the edpa service.

2-4 will be in the agent directory
5-6 are both sysinternals tools and can be found, along with syntax here: https://technet.microsoft.com/en-us/sysinternals/bb842062.aspx
Was this article helpful?
0 out of 0 found this helpful
Have more questions? Submit a request


Please sign in to leave a comment.