cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Highlighted

There is NO Process Exclusions in MOVE Agentless

Hi Guys,

I am stuck in the middle of my MOVE Agentless scan policy configuration.

I am not able to exclude Process exclusions in MOVE SCAN Policy. I had raised the concern with McAfee support they just asked me to raise PER(product enhancement) for the same.

I don’t know what they will do with this case.

Can someone please suggest me how I can exclude processes from MOVE Scan
policy, I have around 50-60 process exclusions.

Your any comment will be highly appreciated

Thanks

Pankaj BM


 
 
 
 
 
 
 
 
 
 
 
 

7 Replies
Highlighted
Reliable Contributor
Reliable Contributor
Report Inappropriate Content
Message 2 of 8

Re: There is NO Process Exclusions in MOVE Agentless

Hi,

you are absolutely right. Configuring process exclusions is not possible when using Move Agentless.

Move is connecting via vShield API to the ESX host. The VmWare vShield does not provide process information. Therefore configuring process exclusions is not possible.

Cheers

Highlighted

Re: There is NO Process Exclusions in MOVE Agentless

moving to Move forum

Highlighted

Re: There is NO Process Exclusions in MOVE Agentless

Thank you Troja for information

Do you have any idea whether we can exclude below processes.

If we dont add these exclusions in scan policy we may face lot of issues like system and database performance issues.

.bak
.lck
.ldb
.ldf
.log
.mdb
.mdf
.mdw
.myd
.myi
.ndf
.bkf
.nsf
.ora
.ost
.pst
.stm
.trm
.trn
.vmdk
.vmem
.vmsd
.bkp
.vmsn
.vmx

  

Thansk

Pankaj BM

Highlighted
Reliable Contributor
Reliable Contributor
Report Inappropriate Content
Message 5 of 8

Re: There is NO Process Exclusions in MOVE Agentless

Hi,

do you mean file-extension exclusions? 🙂

There are several wildcards possible. There is an knowledgebase article available which describes it in detail.

https://kc.mcafee.com/corporate/index?page=content&id=KB82110

Cheers

Highlighted

Re: There is NO Process Exclusions in MOVE Agentless

I was told to use MOVE Multi-Platform if I wanted control over exclusions, so we went that route.

Highlighted
McAfee Employee
McAfee Employee
Report Inappropriate Content
Message 7 of 8

Re: There is NO Process Exclusions in MOVE Agentless

The MOVE Agentless does not have process exclusions and this is a limitation with VMware API.

The MOVE Multiplatform does have the process exclusions.

Highlighted

Re: There is NO Process Exclusions in MOVE Agentless

Hi Scott/Rajinp:

We have chosen agentless option to protect our virtual environment. this is
quite reliable over multiplatform, since it scans at hypervisor level that is
also good for server performance.

So, we are moving from Multiplatform to agentless solution.

It is very hard to skip agentless just because of process exclusions,
KB82110 tells how we can protect process in the form of its complete path
exclusions using wildcards.

Yes! I know it’s a pain to add each path against your process.

Thanks

Pankaj BM

You Deserve an Award
Don't forget, when your helpful posts earn a kudos or get accepted as a solution you can unlock perks and badges. Those aren't the only badges, either. How many can you collect? Click here to learn more.

Community Help Hub

    New to the forums or need help finding your way around the forums? There's a whole hub of community resources to help you.

  • Find Forum FAQs
  • Learn How to Earn Badges
  • Ask for Help
Go to Community Help

Join the Community

    Thousands of customers use the McAfee Community for peer-to-peer and expert product support. Enjoy these benefits with a free membership:

  • Get helpful solutions from McAfee experts.
  • Stay connected to product conversations that matter to you.
  • Participate in product groups led by McAfee employees.
Join the Community
Join the Community