The Carbon Black EDR server uses log files extensively. These files provide reassurance of system health, and a record of activity under error conditions.
Server Logs Overview
The following table describes critical logs that reside on the Carbon Black EDR server.
| Log |
Description |
|---|---|
| /var/log/cb/nginx/access.log (and error.log ) |
|
| /var/log/cb/coreservices/debug.log |
Application logic for API traffic. |
| /var/log/cb/sensorservices/debug.log |
Application logic for sensor traffic. |
| /var/log/cb/datastore/debug.log |
Incoming sensor data cache. |
| /var/log/cb/solr/debug.log |
Sensor data storage, indexing, and queries. |
