AnsweredAssumed Answered

Creating PC Control - Windows Snare Service

Question asked by JD44 on Sep 9, 2013
Latest reply on Sep 10, 2013 by mcalvi

I'm trying to create a Policy Control to detect that the Snare service (Windows logging application) is running. I believe I need to create an WMI Query Check. I've identified the service as "sc" in the following directory. Help assitance would be greatly appreciated!

 

 

C:\WINDOWS\system32\sc.exe

 

 

scquery [ServiceName] | findstr /i "STATE"

 

STATE                      :4 RUNNING

or

STATE                      : 1 STOPPED

Outcomes