About automatic exclusions of Microsoft Exchange server files and folders in Symantec AntiVirus 10.1 and Symantec Client Security 3.1

Article:TECH101713  |  Created: 2006-01-28  |  Updated: 2010-10-14  |  Article URL http://www.symantec.com/docs/TECH101713
Article Type
Technical Solution

Product(s)

Environment

Issue



You have a Microsoft Exchange server, on which you plan to install Symantec AntiVirus 10.1 or Symantec Client Security 3.1. You need to know which steps you need to take to prevent conflicts between Symantec AntiVirus (or Symantec Client Security) and Microsoft Exchange.

 


Solution




Before you begin: Symantec AntiVirus 10.1 and Symantec Client Security 3.1 do not create exclusions for Microsoft Exchange 2007. For a list of recommended exclusions for Exchange 2007, read the Microsoft TechNet article File-Level Antivirus Scanning on Exchange 2007.

If you use different mail server software besides Microsoft Exchange, read Installing Symantec or Norton AntiVirus Corporate Edition on mail servers.
 




With Symantec AntiVirus 10.1 and Symantec Client Security 3.1, you do not have to create exclusions for Microsoft Exchange. The software creates the exclusions automatically.

If Microsoft Exchange servers, including clustered servers, are installed on the computer where you installed Symantec AntiVirus, Symantec AntiVirus automatically detects the presence of Exchange and creates appropriate file and directory exclusions for Auto-Protect and all other scans. Symantec AntiVirus checks for changes in the location of the appropriate Exchange files and directories at regular intervals. So if you install Exchange on a computer where Symantec AntiVirus is already installed, the exclusions are created when Symantec AntiVirus checks for changes. Symantec AntiVirus excludes both files and directories, so if a single file is moved from an excluded directory, the file remains excluded. Symantec AntiVirus creates file and directory scan exclusions for the following Microsoft Exchange versions:
 

  • Exchange 5.5
  • Exchange 2000
  • Exchange 2003


Symantec AntiVirus also creates appropriate file and directory scan exclusions for the following Symantec products when they are detected:
 

  • Symantec Mail Security 4.0, 4.5, 4.6, 5.0 and 6.0 for Microsoft Exchange
  • Symantec AntiVirus/Filtering 3.0 for Microsoft Exchange
  • Norton AntiVirus 2.x for Microsoft Exchange


However, there are two additional directories that must be manually excluded in Symantec Antivirus.

Assuming a default installation path for Mail Security on a 32-bit server:

C:\Program Files\Symantec\SMSMSE\6.0\Server\

On a 64-bit server:

C:\Program Files (x86)\Symantec\SMSMSE\6.0\Server\

 


Note: To see the exclusions that Symantec AntiVirus creates for Exchange for for Auto-Protect and all other scans, you can examine the contents of the HKLM\Software\Intel\LANdesk\VirusProtect6\CurrentVersion\Exclusions\Exchange Server registry key. For 64-bit clients the location is HKLM\Software\Wow6432Node\Intel\Landesk\Virusprotect6\CurrentVersion\Storages\Filesystem\RealTimeScan\NoScanDir. Do not edit these registry keys directly. Configure any additional exclusions using the Symantec System Center Auto-Protect, manual, and scheduled scan exclusion options. Symantec AntiVirus does not exclude the system temporary folders from scanning because doing so could create a significant security vulnerability on a computer.
 






 




Legacy ID



2006022816450148


Article URL http://www.symantec.com/docs/TECH101713


Terms of use for this information are found in Legal Notices