cancel
Showing results for 
Search instead for 
Did you mean: 

DLP on low-speed clients

Jump to solution

Hi everyone

I want to protect my fileserver by using DLP, but coz we use VDI almost all clients are low-speed (they have minimum hardware that they require). Is there a way in which we can run mcafee without comsuming a lot of resources.

For just testing I installed DLP on a PC with 4G RAM and It is obvious that whenever I try to open fileserver or working with file sharing, the system lags.

Is there a way in which I just install DLP on clients without antivirus?

thanks

Message was edited by: bigbang63 on 7/15/13 12:53:53 AM CDT
1 Solution

Accepted Solutions

Re: DLP on low-speed clients

Jump to solution

If you want to lower impact, you can run discoveries and just rely on applied Tagging.   The on-access scans will certainly lag you down, but you end up with a blind-spot too (but you also do on-access scans for items that do NOT have tags, only).    We don't run VDI and we still get issues on file shares, and McAfee can't seem to tell us why.  

Additionally, ensure that your rules are not to broad.  For example, you may wish to consider excluding some temp folders, IE cookies folder, *.tmp files, etc from the scans - but that depends on your environment and how risky you wish to play.

For intalling on clients without AV, I suggest using queries in EPO, maybe tagging the systems without AV for an install task of DLP?

1 Reply

Re: DLP on low-speed clients

Jump to solution

If you want to lower impact, you can run discoveries and just rely on applied Tagging.   The on-access scans will certainly lag you down, but you end up with a blind-spot too (but you also do on-access scans for items that do NOT have tags, only).    We don't run VDI and we still get issues on file shares, and McAfee can't seem to tell us why.  

Additionally, ensure that your rules are not to broad.  For example, you may wish to consider excluding some temp folders, IE cookies folder, *.tmp files, etc from the scans - but that depends on your environment and how risky you wish to play.

For intalling on clients without AV, I suggest using queries in EPO, maybe tagging the systems without AV for an install task of DLP?

More McAfee Tools to Help You
  • Subscription Service Notification (SNS)
  • How-to: Endpoint Removal Tool
  • Support: Endpoint Security
  • eSupport: Policy Orchestrator
  • Community Help Hub

      New to the forums or need help finding your way around the forums? There's a whole hub of community resources to help you.

    • Find Forum FAQs
    • Learn How to Earn Badges
    • Ask for Help
    Go to Community Help

    Join the Community

      Thousands of customers use the McAfee Community for peer-to-peer and expert product support. Enjoy these benefits with a free membership:

    • Get helpful solutions from McAfee experts.
    • Stay connected to product conversations that matter to you.
    • Participate in product groups led by McAfee employees.
    Join the Community
    Join the Community