cancel
Showing results for 
Search instead for 
Did you mean: 
bigbang63
Level 7

DLP on low-speed clients

Jump to solution

Hi everyone

I want to protect my fileserver by using DLP, but coz we use VDI almost all clients are low-speed (they have minimum hardware that they require). Is there a way in which we can run mcafee without comsuming a lot of resources.

For just testing I installed DLP on a PC with 4G RAM and It is obvious that whenever I try to open fileserver or working with file sharing, the system lags.

Is there a way in which I just install DLP on clients without antivirus?

thanks

Message was edited by: bigbang63 on 7/15/13 12:53:53 AM CDT
0 Kudos
1 Solution

Accepted Solutions
keithdrone
Level 10

Re: DLP on low-speed clients

Jump to solution

If you want to lower impact, you can run discoveries and just rely on applied Tagging.   The on-access scans will certainly lag you down, but you end up with a blind-spot too (but you also do on-access scans for items that do NOT have tags, only).    We don't run VDI and we still get issues on file shares, and McAfee can't seem to tell us why.  

Additionally, ensure that your rules are not to broad.  For example, you may wish to consider excluding some temp folders, IE cookies folder, *.tmp files, etc from the scans - but that depends on your environment and how risky you wish to play.

For intalling on clients without AV, I suggest using queries in EPO, maybe tagging the systems without AV for an install task of DLP?

1 Reply
keithdrone
Level 10

Re: DLP on low-speed clients

Jump to solution

If you want to lower impact, you can run discoveries and just rely on applied Tagging.   The on-access scans will certainly lag you down, but you end up with a blind-spot too (but you also do on-access scans for items that do NOT have tags, only).    We don't run VDI and we still get issues on file shares, and McAfee can't seem to tell us why.  

Additionally, ensure that your rules are not to broad.  For example, you may wish to consider excluding some temp folders, IE cookies folder, *.tmp files, etc from the scans - but that depends on your environment and how risky you wish to play.

For intalling on clients without AV, I suggest using queries in EPO, maybe tagging the systems without AV for an install task of DLP?