IMPORTANT: This solution requires an upgrade of Application and Change Control to a version listed below. After the upgrade is completed, a configuration change must be made to make sure that proper operation is maintained. You can make this configuration change through the Standalone or ePolicy Orchestrator (ePO) Managed methods, also listed below.
- Upgrade to one of the following Application and Change Control versions:
- 6.1.3.419 or later
- 6.2.0.458 or later
- 7.0.0.666 or later
- 8.0.0.651 or later
- After the upgrade, change the configuration:
- Standalone:
- Recover the Solidifier command line interface (CLI).
- Run the command:
If 8.2.1.114 or earlier: sadmin config set SrvThreadBypassConfig=1
If 8.2.143 or later: sadmin config set RemoteFileModificationBypassConfig=1
- ePO managed:
- Create a run command client task with the argument:
If 8.2.1.114 or earlier: sadmin config set SrvThreadBypassConfig=1
If 8.2.143 or later: sadmin config set RemoteFileModificationBypassConfig=1
- Push the task to one or more clients.
NOTE: The feature
SrvThreadBypassConfig=1 resolves a deadlock thread issue with MACC and Windows Oplock (Opportunistic Locks). Enabling this feature configures MACC to bypass thread checks. Bypassing these thread checks prevents this type of deadlock from occurring and does not result in any loss of MACC product functionality.
NOTE: In 8.2.1.114 and later, the following two configurations replace
SrvTheadBypassConfig:
- RemoteFileModificationBypassConfig - This config has the same function as SrvTheadBypassConfig. By default, it only bypasses non-binaries file modifications/access, avoiding checksum mismatches if a binary is modified remotely.
- RemoteBinaryModificationBypassConfig - Turning on this config, if the previous one is also enabled, bypasses binaries to modified/accessed remotely.
