Skip to end of metadata
Go to start of metadata

You are viewing an old version of this page. View the current version.

Compare with Current View Page History

« Previous Version 3 Next »

Determining which policy is being applied to a process is useful when diagnosing whether a policy is being applied correctly. 

To determine if a policy is being applied to a process, do the following steps: 

  1. Open the Arellia Agent Logs (for instructions on opening and viewing agent logs, go to Viewing the Agent Logs).
  2. If a policy is being applied to a process, then you will see the following log message:
    "Policy {F289D632-9665-40B0-BC19-0FE8A899A107} (priority 45) applies to process 3468 via Process 3468 (C:\Location\NameOfApplication.exe)  Source: CASMonitor Module: ArelliaACSvc.exe Exe: ArelliaACSvc.exe."
  3. You can look up the policy in the Security Manager Console by using the GUID from the log message like so: http://NameOfServer/Ams/SecurityManager#/Policies/f289d632-9665-40b0-bc19-0fe8a899a107
  1. If a policy does NOT apply the log message will read: "No policies applies to process 2028 (C:\Location\NameOfApplication.exe)  Source: CASMonitor Module: ArelliaACSvc.exe Exe: ArelliaACSvc.exe"
  • No labels