This content has been marked as final. Show 4 replies
Can you just set that policy to not enforce for that machine/group?
Access protection rules may block them switching off scanning from the systray interface, so you may need to alter these rules to allow it (see below)
As an added security feature in VirusScan Enterprise 8.5i, Access Protection has been updated with the ability to deny access to users or applications attempting to stop McAfee services. This feature can be disabled throught the VirusScan Console.
Use one of the following options to open the VirusScan Console:
From the system tray - right-click the VirusScan Enterprise icon in the system tray.
From the Start menu - click Start, Programs, Mcafee.
Select VirusScan Console.
Double-click Access Protection.Uncheck Prevent McAfee Services from being stopped and click OK.
Close the VirusScan Console.
In the system tray, right-click the VirusScan icon and select Disable On-Access Scan.
Apart from that just use the user interface policies to password access to the disable OA scanning selection and then give your developers the password.
Just tell them to check every xxx(policy enforcement interval) and make sure its off again as EPO will kick it in (or temp turn off framework service too)
I would figure out which applications they are running and utilize high and low risk groups.
Disabling on access makes no sense as these developers will be surfing the web and other things which are common threat vectors.
Most likely they are using clearcase, perforce, etc. and experiencing performance issues that can be tuned out.
what if my on-access scanner will not be disabled? I have already unchecked the box and it still won't be disabled, are there other ways to disable the OAS?