It is important to add antivirus and firewall exclusions for these CPTRAX components. It is best to set these exclusions in each piece of the Antivirus/Malware packages. The most common being on access scanning as well as Host Intrusion Prevention System (HIPS).
C:\Windows\System32\Drivers\CPTW_K64.SYS
C:\Windows\System32\Drivers\CPTWK646.SYS
C:\Windows\SysWow64\CPTLWA32.DLL
C:\Windows\SysWow64\CPTLWA64.DLL
C:\Windows\SysWow64\CPT_SA2.DLL
C:\Windows\SysWow64\CPT_X64B.DLL
C:\Windows\SysWow64\CPT_X64A.EXE
C:\Windows\SysWow64\CPTRAXW.EXE
Create firewall exceptions for TCP/UDP Port 4060.
If using a WAN accelerator, must add pass-through rule for all inbound/outbound port 4060 traffic.
This will download the install package of the CPTRAX Console. Double Click downloaded package to launch installer and follow the install prompts
NOTE: The console can be installed on any server or workstation in your environment.
Share Name? Commonly used is CPTRAX_Logs (it can be what you wish)
Share permissions? It's common to share with Domain Users.
Where to create? It's best to place this share on a file server where the logs will reside as logs sizes will increase as the agent collects more data.
NOTE: You can enable windows file compression on this folder to save space
Follow the Install Server Agent Wizard to add the agent to server(s)
Home Tab > Install Server Agent > click here to begin
The wizard allows you to deploy the agent, define where logs are stored, and register your token(s) remotely.
If you are auditing more than one server, use the Install Server Agent wizard for each server. See Step 4
If you are using more than one CPTRAX module, add the appropriate
tokens to each server.
Click the Agents tab -> Expand Servers Installed > Select server > Add Token at the
upper right of the first field and select the appropriate .TKN file
See the following sections of the Administrator's Guide for further configuration:
It is important to add antivirus and firewall exclusions for these CPTRAX components. It is best to set these exclusions in each piece of the Antivirus/Malware packages. The most common being on access scanning as well as Host Intrusion Prevention System (HIPS).
C:\Windows\System32\Drivers\CPTW_K64.SYS
C:\Windows\System32\Drivers\CPTWK646.SYS
C:\Windows\SysWow64\CPTLWA32.DLL
C:\Windows\SysWow64\CPTLWA64.DLL
C:\Windows\SysWow64\CPT_SA2.DLL
C:\Windows\SysWow64\CPT_X64B.DLL
C:\Windows\SysWow64\CPT_X64A.EXE
C:\Windows\SysWow64\CPTRAXW.EXE
Create firewall exceptions for TCP/UDP Port 4060.
If using a WAN accelerator, must add pass-through rule for all inbound/outbound port 4060 traffic.
Be sure to close the CPTRAX Console before updating.
During installation, accept the license agreement and 'Install'.
The Console pushes the updated agent(s) to your server(s).
Click the Agents tab > Expand Servers Installed -> Select a Server > Click Update CPTRAX Server Agent
on the right side of the console.
You can choose to....
Initialization may take up to 5 minutes
After 5 minutes select the server and choose Refresh selected Server details (live)
Make sure the version on the server's status reflects the
current version