Recent Searches

No recent searches

    Popular Articles

      Articles
      View all
        Topics
        View all
          Tickets
          View all
            no results

            Sorry! nothing found for

            Quick Start | Validating Your Field Effect Setup

            Introduction

            Your managed Field Effect security solution consists of robust threat monitoring, detection, and response technology that’s compatible across any combination of cloud assets, endpoints, on-premises networks, and operating systems. 


            The following tools are available to validate that your Field Effect deployment has proper connectivity and is functioning as intended.


            Windows Agent Validation 

            Prerequisites: 

            1. Your Active Response policy must not be set to “Off” for blocking/terminating to function properly.
            2. A Windows system with the Field Effect agent installed.


            Validation

            Command line instruction

            Expected Result

            Desktop notifications + AROs(1)

            cmd.exe /C echo “CovEICARNotify”

            The “CovEICARNotify” string will be echoed to the command line. 

             

            A “Service Validation Test – Endpoint Event” ARO will be generated in the portal.

            Block Windows processes + AROs(1)

            cmd.exe /C echo “CovEICARBlock”

            The command will be blocked, and the string will not be echoed to the command line.

             

            A “Service Validation Test – Endpoint Event” ARO will be generated in the portal.

            Block & terminate Windows processes + AROs(1)

            cmd.exe /C echo “CovEICARTerminate”

            The command will be blocked, the source process will be terminated, and the string will not be echoed to the command line. 

             

            A “Service Validation Test – Endpoint Event” ARO will be generated in the portal.

             

            1. These validation rules are designed to only allow one ARO for each endpoint to be active at a time. While the endpoint will behave as expected (blocking, terminating), running an additional test command won’t generate a new ARO if an existing Service Validation Test ARO is open, or has been previously dismissed, for that endpoint.


            Network Validation 

            This test will validate that your Field Effect appliance has proper connectivity and Field Effect is providing network coverage:

            Prerequisite: 

            1. This test must be performed from an endpoint device connected to the network being tested.


            ValidationURLExpected Result

            Network coverage + ARO

            Navigate to https://verify.fieldeffect.net/ and select Network Coverage test.

            A “Service Validation Test – Network Event” ARO will be generated in the portal

             

            DNS Firewall Validation 

            ValidationURLExpected Result

            DNS Firewall configuration

            Navigate to http://phishing.d-zone.ca/

            Your browser will display a Field Effect message that the page was blocked due to Malware/Phishing.

             

            Additional References:

            Was this article helpful?

            That’s Great!

            Thank you for your feedback

            Sorry! We couldn't be helpful

            Thank you for your feedback

            Let us know how can we improve this article!

            Select at least one of the reasons
            CAPTCHA verification is required.

            Feedback sent

            We appreciate your effort and will try to fix the article

            Preview
            0 of 0