GlobalProtect HIP check fails to detect Cybereason Anti-Malware... - Knowledge Base - Palo Alto Networks

GlobalProtect HIP check fails to detect Cybereason Anti-Malware on Linux

20406

Created On 05/14/20 21:22 PM - Last Modified 09/24/22 02:44 AM

Anti-spyware

Antivirus

GlobalProtect Agent

GlobalProtect App

HIP

HIP Match Log

Deployment

Threat Prevention

GlobalProtect

Traps

Symptom

As seen from firewall GUI

From GlobalProtect Logs, PanGPA.log:

<hip-report name="hip-report">
        <generate-time>04/24/2020 16:40:08</generate-time>
        <hip-report-version>4</hip-report-version>
        <categories>
            <entry name="host-info">
                <client-version>5.1.2-26</client-version>
                <os>Linux Ubuntu 19.10</os>
                <os-vendor>Linux</os-vendor>
                ---- cut for brevity ---
            </entry>
            <entry name="anti-malware">
                <list/>                  <<<<<<<<<<<<< No Cybereason
            </entry>

Environment

PANOS
GlobalProtect HIP
GlobalProtect app version 5.1.0 and above
Linux endpoints all flavors (verified on Ubuntu v19.10 and CentOS v8.1.1911)

Cause

Currently, OPSWAT does NOT support Cybereason Anti-Malware application on Linux platforms (all flavors).

Resolution

Per OPSWAT support, Cybereason Anti-Malware will be supported in future OPSWAT release.

Additional Information

Please refer to this link for currently supported anti-malware on Linux and future updates for anti-malware applications as added by OPSWAT.

Other users also viewed:

How to download GlobalProtect from the Customer Support Portal

Download and Install the GlobalProtect App for Windows

Resource List: GlobalProtect Configuring and Troubleshooting

PAN-OS Software Updates

Where to find the current preferred software versions? (PAN-OS, GlobalProtect, User-ID Agent, Plugins)