Agent package integrity check

Workload Security verifies the signature on the Deep Security Agent to ensure that the software files have not changed since the time of signing. An integrity check occurs when:

  1. You're upgrading the Deep Security Agent.
  2. You're enabling a new security module so the kernel support is being updated. If the validation fails, plugin installations and agent upgrades are blocked.

Troubleshoot

ID Event Reason Solution
5302

Agent/Plugin package signature download failed.

The signature files used to check the integrity of the agent are not available in your update source. Your Deep Security Relay might not be upgraded to the required version.

If you do not have a Deep Security Relay in your environment:

  1. Create a diagnostic package and logs and send it to the Trend Micro support team.

If you have a Deep Security Relay in your environment:

  1. On the Alerts page, check for the "Relay Upgrade Required For Agent Integrity Check" alert. If the alert exists, see Supported Deep Security Relay versions and Upgrade Deep Security Relay accordingly. Confirm signature files sync to your update source.
  2. Confirm your signature files have synced to your update source.
  3. Attempt to upgrade your agent or send your updated policy again.
  4. If the issue isn't resolved, Create a diagnostic package and logs and send it to the Trend Micro support team.
5300 Agent/Plugin package signature validation failed. The agent package might have been tampered with or something is wrong on the package. Create a diagnostic package and logs and send it to the Trend Micro support team.
5301 Agent/Plugin package validation failed.
5303 Agent/Plugin package signature mismatch with the one in our policy.

Supported Deep Security Relay versions

  Deep Security 20 Deep Security Feature Release Deep Security 12
Supported Deep Security Relay version Deep Security Agent 20

Windows - Deep Security Agent FR 2020-04-16 (12.5.0.834)

Linux - Deep Security Agent FR 2020-05-19 (12.5.0.936)

Deep Security Agent 12.0 update 8 (12.0.0.967)