Endpoint Detection and Response (EDR)

  • Private Community
 View Only

  • 1.  Symantec EDR Manager is currently unavailable

    Posted Sep 25, 2025 07:48 AM

    Hello everyone,

    I am experiencing significant issues after upgrading EDR to version 4.11.0-220.
    1. For several days now, /dev/mapper/atp_extended-esdata_lv   88G   84G  132K 100% /var/lib/elasticsearch. The upgrade was done six months ago.
    2. So I decided to restart, and for several hours now I have been getting the message 'Symantec EDR Manager is currently unavailable.'

    Please help.



    -------------------------------------------


  • 2.  RE: Symantec EDR Manager is currently unavailable

    Posted Sep 25, 2025 08:31 AM
    Hello Tomasz,
     
    You can try to be delete old log files into /var/lib/elastic search on edr cmdline with "delete" command. After the deletation, reboot edr appliance again and login the cmdline console then use status_check command.
    For example:
    list -t /var/log/elasticsearch | more
    delete /var/log/elasticsearch/gc.log.10
    -------------------------------------------

    Original Message


  • 3.  RE: Symantec EDR Manager is currently unavailable

    Broadcom Employee
    Posted Sep 26, 2025 05:46 PM

    Tomasz, 

    Thanks for using the Broadcom Community. 

    To better assist you kindly open a ticket with Support who can help.   We'll need to review your logs to determine the best path forward. 

    Thanks,

    Russ_V

    -------------------------------------------

    Original Message