Anti-Virus Exclusions

 1 Replies
 0 Subscribed to this topic
 27 Subscribed to this forum
Sort:
Author
Messages
eldredgd
Basic Member
Posts: 9
Basic Member
    We are in the process of standing up all new server hardware for our Applications and Environment upgrade to 9.0.1. We currently run Trend Anti-Virus on our servers and in our current environment we find that the anti-virus slows down processing considerably. An example of this would be huge overhead on compiles and installations. I would like to know if anyone out there has a guideline for an exclusions or procedures when it comes to your Lawson Environment and Database?

    I opened a ticket with Lawson for this and was simply told they do not certify anything for Anti-Virus as it is third party. In addition they do not recommend real time scanning and that you unload the scan when compiling or installing. Any feedback from the community would be much appreciated.

    Thank you!
    George
    Basic Member
    Posts: 5
    Basic Member
      I am new to Lawson support, more familiar with support of other vendors' software products and systems, and I am surprised Lawson hasn't stepped up to make some general recommendations other than to turn off antivirus...

      There are two non-answer threads on the mylawson.lawson.com community forum as well. Other than LBP installation guide (which is over-general by recommending to exclude from scanning most of the entire LBP file system). I don't find anything in the remaining Lawson documentation either.

      In the real world of malware-assisted system intrusions, zero-day exploits, cyberwarfare, and daily news of high-profile hacking, it is just plain inconceivable that a company's financial assets could be run on systems without good infrastructure security including antivirus. For now in our implementation of Lawson on Windows servers, we have real-time scanning (Symantec Endpoint Protection v11 patch MP3). We exclude from scanning a number of general file extensions and the IBM70 (WebSphere) and LBP application directories. Servers are set to scan only on file modify (not file access).