cancel
Showing results for 
Search instead for 
Did you mean: 

SCCM 2012 DISM McAfee issue

There are known issues with McAfee, SCCM 2012 and DISM.

See also the article:

https://kc.mcafee.com/corporate/index?page=content&id=KB76867&cat=CORP_PRODUCTS&actp=LIST

http://social.technet.microsoft.com/Forums/en-US/mdt/thread/fbbc45f7-9d21-4e29-a154-c85486bef856

But disabling Access Protection ois not a solution for us since it is against the security rules we have.

How can be solve this or how can this be solved ?

8 Replies
McAfee Employee wwarren
McAfee Employee
Report Inappropriate Content
Message 2 of 9

Re: SCCM 2012 DISM McAfee issue

There is no other workaround.

Others have already explored potentially feasible options, without success.

We cannot say why the Microsoft app decides to fail, all we can be confident in is that we're not causing it to fail - it somehow reached that conclusion by us simply being present.

William W. Warren | S.I.R.R. | Customer Success Group | McAfee

Re: SCCM 2012 DISM McAfee issue

I am having the exact same problem,I am using SCCM 2012 SP1 and in my SCCM server there was McAfee Virus Scan Enterprise 8.8 installed due to which the boot images present in SCCM where not getting updated,i then disabled the Access protection and everything worked fine.

But we need to have a solution for this as it's causing problem where McAfee is centrally managed & we don't have rights to disable Access Protection.

as i have added the folder exclusion in On access scan ,Full Scan & on demand scan but it's of no use.

Is there any option to exclude folders in Access protection.

Please Suggest.

Thanks,

Pranay.

McAfee Employee wwarren
McAfee Employee
Report Inappropriate Content
Message 4 of 9

Re: SCCM 2012 DISM McAfee issue

If there was something the McAfee code was actively 'doing' to the operation, then there would be opportunity for us to make product enhancements somewhere in our code. But for situations where failures occur simply from our code being present, we cannot solve that within our code (since our code will obviously still be present).

Related to this, I have seen product enhancement requests (PER) submitted before (and repetition doesn't hurt) seeking for a way to allow users a temporary "visa" - allowing them some short-lived access to protected areas of the system.

i.e. an alternate to disabling the feature, and enabling it again.

I cannot say if a feature such as this has been committed for future releases in the roadmap, but having the PER submissions ensures the product management staff are aware of the need.

William W. Warren | S.I.R.R. | Customer Success Group | McAfee

Re: SCCM 2012 DISM McAfee issue

One of my colleagues is now seeing this behavior. We have talked with Microsoft and they confirm that the only current work around is to disable Access Protection. What I don't understand is the following line from the reply above:

"all we can be confident in is that we're not causing it to fail - it somehow reached that conclusion by us simply being present."

If the scenario fails simply by Access Protection being present, then why does disabling this feature - yet leaving it installed on the system, thus the code still simply being present on the machine - have any effect at all?

Have you reached out to Microsoft to work directly with them to try and better understand what is happening?

Re: SCCM 2012 DISM McAfee issue

Sorry. No did not contact MS on this issue. I now disable Access Protection for a moment...but that is not as it should be and really a temporary workaround I hope...

Re: SCCM 2012 DISM McAfee issue

Apologies for the confusion. I meant has McAfee reached out to Microsoft to work directly with them to better understand what is happening.

It seems that this needs to be resolved between McAfee and Microsoft. Since this would specifically benefit McAfee customers I think they should be the ones to reach out and work with Microsoft on a more complete solution.

Re: SCCM 2012 DISM McAfee issue

Not that I am aware of..

Re: SCCM 2012 DISM McAfee issue

My company is working on implementing SCCM 2012, we are currently evaluating software center and running into some issues with our Access Protection and temp folder restrictions. I am not sure if this will help anyone or not but here is a post I found on TechNet that specifies some exclusions. Again we are just now going through the implementation process but I figured I would post just in case.

SCCM 2012 Antivirus Exclusions for Servers and Workstations