From dd316c122ee73677ed74854040d80fa305f300be Mon Sep 17 00:00:00 2001 From: jcaparas Date: Mon, 9 May 2016 17:55:12 +1000 Subject: [PATCH] Update other-troubleshooting.md --- windows/keep-secure/other-troubleshooting.md | 46 -------------------- 1 file changed, 46 deletions(-) diff --git a/windows/keep-secure/other-troubleshooting.md b/windows/keep-secure/other-troubleshooting.md index a21b628ff6..01853ea7e5 100644 --- a/windows/keep-secure/other-troubleshooting.md +++ b/windows/keep-secure/other-troubleshooting.md @@ -67,49 +67,3 @@ Event ID | Message | Resolution steps 7 | Windows Advanced Threat Protection service failed to read the onboarding parameters. Failure code: _variable_ | Ensure that the Windows Defender ATP endpoint has internet access, then run the onboarding script again. 15 | Windows Advanced Threat Protection cannot start command channel with URL: _variable_ | Ensure that the Windows Defender ATP endpoint has internet access. -Check the startup type in the services console: - -1. Open the services console: - - a. Click **Start** and type **services**. - - b. Press **Enter** to open the console. - -2. Scroll through the list of services until you find **Connected User Experiences and Telemetry**. - -3. Check the **Startup type** column - the service should be set as **Automatic**. - -ASK ALON HOW SET TO AUTOMATIC IF IT'S NOT SET FROM THE CONSOLE. - -Check that the service is running from the command line: - -1. Open an elevated command-line prompt on the endpoint: - - a. Click **Start** and type **cmd**. - - b. Right-click **Command prompt** and select **Run as administrator**. - -2. Enter the following command and press **Enter**. - - sc query diagtrack - - If the service is running, the result should look like the following screenshot: - ![Result of the sc query command for sc query diagtrack](images/windefatp-sc-query-diagtrack.png) - -3. If the service **STATE** is not set to **RUNNING**, then you'll need to enter the following command and press **Enter**: - - sc start diagtrack - -4. A success message is displayed. Verify the change by entering the following command and press **Enter**: - sc query diagtrack - -### Ensure that the Windows Defender ATP endpoint has internet connection - -The Window Defender ATP sensor requires Microsoft Windows HTTP (WinHTTP) to be able to report telemetry and communicate with the Windows Defender ATP service. - -WinHTTP is independent of the Internet browsing proxy settings and other user context applications and must be able to detect the proxy servers that are available in your particular environment. - -To ensure that sensor has service connectivity, follow the steps described in the [Verify client connectivity to Windows Defender ATP service URLs](configure-proxy-internet-windows-defender-advanced-threat-protection.md# -Verify-client-connectivity-to-Windows-Defender-ATP-service-URLs) topic. - -If the verification fails and your environment is using a proxy to connect to the internet, then follow the steps described in [Configure proxy and Internet connectivity settings](configure-proxy-internet-windows-defender-advanced-threat-protection.md) topic.