Installation logs
Applies To: Forefront Client Security
The following tables list installation log files, their locations, and the components that use them.
For the server components of Client Security, the installation log files are located in the installation folder on each computer in your topology. If you used the default location during Setup, the log files are in the following location:
%Program Files%\Microsoft Forefront\Client Security\Server\Logs
If you chose a different installation folder during Setup, the log files will be in that folder, in the Client Security\Server\Logs path.
| Log file | Used during |
|---|---|
Serversetup_YYYYMMDD_HHMMSS.log |
Client Security installation (by serversetup.exe) |
ServerConfig_YYYYMMDD_HHMMSS.log |
Configuration wizard log file |
MOMReporting.log |
MOM reporting installation |
MOMServer.log |
MOM 2005 server installation |
MOMConsole.log |
MOM 2005 server console installation |
MOMDB.log |
Collection database installation |
FCSCS.log |
Collection server component setup |
FCSUA.log |
Client Security Update Assistant installation |
FCSDWH.log |
Client Security reporting database installation |
FCSMS.log |
Client Security management server component installation |
Qnnnnnn.log |
Hotfix installation, where nnnnnn is the hotfix number |
For the client components of Client Security, the log files are located in the installation folder on the client. If you used the default location when running clientsetup.exe, the log files are in the following location:
%Program Files%\Microsoft Forefront\Client Security\Client\Logs
If you chose a different installation folder during Setup, the log files will be in that folder, in the Client Security\Client\Logs path.
| Log file | Used during |
|---|---|
Clientsetup.log |
Installation procedures (by clientsetup.exe) |
MOMAgent.log |
MOM 2005 agent installation |
FCSSSA.log |
Security State Assessment Service installation log |
FCSAM.log |
Antimalware Service installation |
The log files that correspond to the installation of the individual components of Client Security can be used in conjunction with the serversetup.log and clientsetup.log files to pinpoint the cause of component installation failure.
To drill down in the log files
Open the appropriate serversetup_YYYYMMDD_HHMMSS.log file and search for the term "fail". In the same date-time block as the occurrence of the term "fail" will be the name of the component that failed to install.
Using the preceding table of log files, open the log file that corresponds to the failed component and search for the word "fail" followed by an error code. You can use the error code to determine the cause of the failure.