deepblue/windows-itpro-docs
1
0
Fork 0
mirror of https://github.com/MicrosoftDocs/windows-itpro-docs.git synced 2025-06-19 04:13:41 +00:00
Code Issues Actions 3 Packages Projects Releases Wiki Activity

fix linter warnings

Browse Source
This commit is contained in:
MatiG
2021-01-04 19:31:35 +02:00
parent 19aa1f6eb9
commit ca98df17c4
1 changed files with 26 additions and 22 deletions
Download Patch File Download Diff File Expand all files Collapse all files

32
windows/security/threat-protection/microsoft-defender-atp/linux-support-perf.md
View File

@ -23,7 +23,6 @@ ms.topic: conceptual
[!INCLUDE [Microsoft 365 Defender rebranding](../../includes/microsoft-defender.md)] [!INCLUDE [Microsoft 365 Defender rebranding](../../includes/microsoft-defender.md)]
**Applies to:** **Applies to:**
- [Microsoft Defender for Endpoint for Linux](microsoft-defender-atp-linux.md) - [Microsoft Defender for Endpoint for Linux](microsoft-defender-atp-linux.md)
@ -43,6 +42,7 @@ The following steps can be used to troubleshoot and mitigate these issues:
```bash ```bash
mdatp config real-time-protection --value disabled mdatp config real-time-protection --value disabled
``` ```
```Output ```Output
Configuration property updated Configuration property updated
``` ```
@ -71,6 +71,7 @@ The following steps can be used to troubleshoot and mitigate these issues:
```bash ```bash
mdatp config real-time-protection --value enabled mdatp config real-time-protection --value enabled
``` ```
```Output ```Output
Configuration property updated Configuration property updated
``` ```
@ -80,6 +81,7 @@ The following steps can be used to troubleshoot and mitigate these issues:
```bash ```bash
mdatp diagnostic real-time-protection-statistics --output json > real_time_protection.json mdatp diagnostic real-time-protection-statistics --output json > real_time_protection.json
``` ```
> [!NOTE] > [!NOTE]
> Using ```--output json``` (note the double dash) ensures that the output format is ready for parsing. > Using ```--output json``` (note the double dash) ensures that the output format is ready for parsing.
@ -90,6 +92,7 @@ The following steps can be used to troubleshoot and mitigate these issues:
```bash ```bash
wget -c https://raw.githubusercontent.com/microsoft/mdatp-xplat/master/linux/diagnostic/high_cpu_parser.py wget -c https://raw.githubusercontent.com/microsoft/mdatp-xplat/master/linux/diagnostic/high_cpu_parser.py
``` ```
The output of this command should be similar to the following: The output of this command should be similar to the following:
```Output ```Output
@ -102,10 +105,13 @@ The following steps can be used to troubleshoot and mitigate these issues:
100%[===========================================>] 1,020 --.-K/s in 0s 100%[===========================================>] 1,020 --.-K/s in 0s
``` ```
4. Next, type the following commands: 4. Next, type the following commands:
```bash ```bash
chmod +x high_cpu_parser.py chmod +x high_cpu_parser.py
``` ```
```bash ```bash
cat real_time_protection.json | python high_cpu_parser.py > real_time_protection.log cat real_time_protection.json | python high_cpu_parser.py > real_time_protection.log
``` ```
@ -116,18 +122,18 @@ The following steps can be used to troubleshoot and mitigate these issues:
```Output ```Output
... > python ~/repo/mdatp-xplat/linux/diagnostic/high_cpu_parser.py <~Downloads/output.json | head -n 10 ... > python ~/repo/mdatp-xplat/linux/diagnostic/high_cpu_parser.py <~Downloads/output.json | head -n 10
27432 None 76703 27432 None 76703
73467 actool     1249 73467 actool     1249
73914 xcodebuild 1081 73914 xcodebuild 1081
73873 bash 1050 73873 bash 1050
27475 None 836 27475 None 836
1    launchd    407 1    launchd    407
73468 ibtool     344 73468 ibtool     344
549  telemetryd_v1   325 549  telemetryd_v1   325
4764 None 228 4764 None 228
125  CrashPlanService 164 125  CrashPlanService 164
``` ```
 
To improve the performance of Defender for Endpoint for Linux, locate the one with the highest number under the `Total files scanned` row and add an exclusion for it. For more information, see [Configure and validate exclusions for Defender for Endpoint for Linux](linux-exclusions.md). To improve the performance of Defender for Endpoint for Linux, locate the one with the highest number under the `Total files scanned` row and add an exclusion for it. For more information, see [Configure and validate exclusions for Defender for Endpoint for Linux](linux-exclusions.md).
>[!NOTE] >[!NOTE]
@ -136,5 +142,3 @@ The following steps can be used to troubleshoot and mitigate these issues:
5. Configure Microsoft Defender ATP for Linux with exclusions for the processes or disk locations that contribute to the performance issues and re-enable real-time protection. 5. Configure Microsoft Defender ATP for Linux with exclusions for the processes or disk locations that contribute to the performance issues and re-enable real-time protection.
For more information, see [Configure and validate exclusions for Microsoft Defender ATP for Linux](linux-exclusions.md). For more information, see [Configure and validate exclusions for Microsoft Defender ATP for Linux](linux-exclusions.md).