Verifying EDR Activation using Command Line

Once you meet the EDR prerequisites, perform the steps to verify if the EDR is activated:

Run the following command to download the log files:
grep -m1 EDR_SYSTEM_RT /var/log/qualys/qualys-cloud-agent.log*
Run the following command to verify EDR manifest is downloaded:
ls -l /usr/local/qualys/cloud-agent/edr/manifests/code>
Run the following command to verify EDR data is generated by Agent:
ls -l /var/spool/qualys/edr/ ls -ld /var/spool/qualys/edr/
Run the following command to verify if the Agent succesfully uploads the EDR data:
grep upload /var/log/qualys/edr.log*| grep -v FIM

Was this topic helpful?

Thank you! We're glad to hear that this topic was useful.

We appreciate your feedback. We'll work to make this topic better for you in the future.