Exclusions by Executable:
The first thing you want to exclude is the .exe file. Be careful when doing this as excluding executable can cause unwanted side-effects such as preventing other undesirable programs from being identified. The executable is the same for both 2007 and 2012:
- monitoringhost.exe
When setting up exclusions for directories be sure to include real-time scans, scheduled scans and local scans. I will be putting in the default directories in this segment. You may have to adjust the locations in the exemptions if you did not use the defaults. Also, if the directory has greater than 8 characters you will need to put both the long and short directory names into the exclusions list (required by some AV programs to traverse the subdirectories).
SQL Database Servers
These exclusions include the SQL Server database files that are used by Operations Manager components and the system database files for the master database and for the tempdb database. To exclude these files by directory, exclude the directory for the .ldf and .mdf files such as:
- C:\Program Files\Microsoft SQL Server\MSSQL.1\MSSQL\Data
- D:\MSSQL\DATA
- E:\Program Files\Microsoft SQL Server\MSSQL.1\MSSQL\Log
- MDF
- LDF
These exclusions include the queue and log files that are used by Operations Manager.
For 2007
- C:\Program Files\System Center Operations Manager 2007\Health Service State\Health Service Store
- C:\Program Files\System Center Operations Manager 2012\Health Service State\Health Service Store
- C:\Program Files\System Center 2012\Operations Manager\<Component>\Health Service State\Health Service Store (<Component> will vary depending on if the server is an Agent or Server for Operations Manager)
- EDB
- CHK
- LOG
For additional information on AV exclusions refer to KB975931
More to come!
No comments:
Post a Comment