We have a group of systems that use a program that stores files on a virtual drive. The vendor is recommending that we don't let McAfee scan this virtual drive. What is the best way to exclude this virtual drive especially if it changes drive letters.
It only affects about 5 systems so I am thinking that I can do a custom rule on each workstation. Don't want to do it via ePO since I don't want the exclusion to go to other systems managed via ePO.
Re: How to exclude ENS from scanning a virtual drive
ENS On Access Scan works based on CPU Read/Write activity. We must first understand which process is doing the Read/Write activity when the program you use is accessing the Virtual Hard disk.
If possible we could add the process to low risk profile and set the low risk profile not to scan while read or write.
If you could discuss with the vendor and provide us the list, we will help you in adding the exclusions. If you would like to do it all by yourself, you may run McAfee Profiler tool when you save or retrieve information from the virtual hard disk. Based on the output of the tool, we could decide the list of process that we could exclude.