How to enable Network Access Control agent logging

  • Article ID: 111973
  • Updated: 09 Jan 2014

In the event of an issue with the Network Access Control (NAC) agent (for example Policy retrieval or Reporting errors) verbose logging may be required. Logging by default is turned off for the NAC agent.

You can activate logging with the steps below manually on the workstation or via amending the 'Agent Configuration Template' within the Compliance Manager (review our documentation within http://www.sophos.com/en-us/support/documentation.aspx regarding this method).

Note: 

  • This logging is only to be enabled at the request of Sophos Technical Support.
  • Verbose logging will require a reboot of the endpoint

Known to apply to the following Sophos products and versions

Sophos Simplified NAC
Sophos NAC Advanced 

What To Do

There are two logging types available, you will have been advised by Sophos Technical Support which level of logging is required.

Verbose logging

  1. Navigate to the Agent.ini located in one of these locations:
    • Windows XP
      • C:\Documents and Settings\All Users\Application Data\Sophos\Sophos Compliance Agent\Data\
    • Windows Vista / 7
      • C:\ProgramData\Sophos\Sophos Compliance Agent\Data\
  2. Right click on the Agent.ini and open with notepad.
  3. At the bottom of list within the Agent.ini add:
    LoggingEnabled=true
    Logging=3

  4. Once the changes have been made save the Agent.ini file. 
  5. Reboot the workstation to activate.
  6. Log back on to the workstation.
  7. Right click on the 'Sophos Compliance Agent' and select 'Check Compliance'.
  8. Then right click on the 'Sophos Compliance Agent' and select 'Show Results' to observe the error (if the policy is set to Report Only then no results will be shown in the box)
  9. Install the Sophos Diagnostic Utility from article 33533. The utility should gather the required logs however they can be found in:
    • Windows XP
      • C:\Documents and Settings\All Users\Application Data\Sophos\Sophos Compliance Agent\Logs\
    • Windows Vista / 7
      • C:\ProgramData\Sophos\Sophos Compliance Agent\Logs\
  10. Send the logs to Sophos Technical Support

Standard logging

  1. Right click on the 'Sophos Compliance Agent' located on the right hand side of the task bar, and select 'About Sophos Compliance Agent'.
  2. Tick the box marked as 'Enable logging'
  3. Right click on the 'Sophos Compliance Agent' and select 'Check Compliance'
  4. Then right click on the 'Sophos Compliance Agent' and select 'Show Results' to observe the error and take screenshots (if the policy is set to Report Only then no results will be shown in the box)
  5. Install the Sophos Diagnostic Utility from article 33533. The utility should gather the required logs however they can be found in:
    • Windows XP
      • C:\Documents and Settings\All Users\Application Data\Sophos\Sophos Compliance Agent\Logs\
    • Windows Vista / 7
      • C:\ProgramData\Sophos\Sophos Compliance Agent\Logs\
  6. Send the logs to Sophos Technical Support

 
If you need more information or guidance, then please contact technical support.

Rate this article

Very poor Excellent

Comments