We migrated to McAfee ENS 10.7 some weeks ago, since this migration, our Citrix team is complaining about performance issues and slowness (application / startup/ ...).
We implemented "best practices from Citrix KBs" (process and files/folders exclusions) and only scan on write.
It seems that this configuration is now the best.. Should we use "let McAfee decide" and trust all citrix certificates ?
Somebody who protect a citrix infrastructure (xendesktop and xenapp) with McAfee ENS 10.7 can give us advice / best config to minimize impact for users ?
Kindly use the option "let McAfee decide" and trust all citrix certificates. IF all the recommended standard exclusions are in place, there should be any issue .
Also with ENS 10.7 , Adaptive threat prevention also gets install , So you may disable that and check if that makes any difference .if so then i would recommend you to connect to McAfee Technical Support with Procmon data .
Thanks for this answer,
With Let McAfee decide, did you also implement all process and folder exclusions from Citrix (ex : https://docs.citrix.com/en-us/tech-zone/build/tech-papers/antivirus-best-practices.html) ?
For the moment we didn't deploy ATP on Citrix infrastructure, they only complains about on-access scan which use too much CPU and seems to introduce slowness.
Also, sometimes mfevtp process use about 15 % CPU, how to check why ?
I am experiencing this same issue with Citrix Xen Desktop 7.15 1912 LTSR and McAfee ENS 10.7 On-Access Scan policy. There is a lag during our log on sessions to Citrix. When the OAS is disabled there is no lag at all. I allowed the Citrix certificate and set the ENS On-Access Scan policy to write to disk instead of selecting let McAfee decide. I have added all the exclusions Citrix recommended for anti-virus, and still experience a lag when launching applications. Any suggestions would be help at this point.
ENS 10.7 April 2020 Update with Hotfix 199847, AMCORE 4245