Endpoint Protection

 View Only

SEP 12.1.2 Best Practices on Citrix Virtual Desktops ( Provisioning Services) -Part 1- 

Jun 25, 2013 10:18 AM

A few days ago I did a little research about possible configurations when we are using SEP 12.1.2 under Citrix Provisioning Services.

I share with you the first part of this research that used as a sources: Citrix and Symantec web sites.

Scenario 1

Symptoms>

  • The Target Device seems sluggish or generally slower than normal after installing or upgrading your antivirus client.
  • You notice prolonged high CPU use.
  • You notice a significant change in the write cache Disk I/O Performance. For example, if the percentage of disk write time or disk write queue length increase significantly.

Best Practices:

  • Set up the Manager content revisions to at least 45
  • Create a new SEPM Domain for just the Citrix Virtual Desktops ( Provisioning Services)
  • Create a new Group in this new SEPM Domain (For example could be: My Company>Default>Citrix Environment
  • Move from the old Domain all the Citrix Virtual Desktops to the new
  • --> At this point you could have two situations:
  • ----> Fresh Installation:
  • ---------> Then Create the Domain and add the SEP clients directly
  • ----> Existing Installation:
  • ---------> Then Use SylinkDrop
  • ---------------> it is recommended that you use the SylinkDrop included on the second installation download (Tools and Documents, \Tools\SylinkDrop)
  • ---------------> Or Export Communication Settings from the group recently created ( Citrix Environment)
  • In the Group for Citrix Environment set the communicatiosn to
    •  
      • Use Pull Mode
      • Use a Heartbeat of 120 minutes
      • Enable Download Randomization
  • Exclude the following files/process/drivers from all types of Scanning
  •  
    •  Write Cache
    • Process: BNDevice.exe
    • Following Drivers: BNNS.sys, BNNF.sys, BNPort.sys, bnistack.sys, and BNITDI.sys  ó bnistack6.sys,CvhdBusP6.sys, CFsDep2 .sys
      • Can be found at:   <systemroot>\windows\system32\drivers
    • At Provisioning Service:
      • StreamService.exe, StreamProcess.exe and the soapserver.exe
  • Apply  Virtual Exception Tool
  • Use Active Scan instead of  Full --> Update June 2014:  Some colleagues told me that a Schedule Scan ( Active, Full, etc) could not be necessary with an implemented Virtual Desktops environment, the reason?  Virtual Desktops Image will return to a basic state when the user shut down the terminal. That means a schedule or ondemand probably will review the same files every time.
    But ... Remember, if you do a new Base/Master Image,,, it's highly recommended that before deployment you execute a Full Scan to the image.
  • Enable Random  Scan  in the Antivirus Policy of this Group
  • Enable Shared Insight Cache

I hope this helps

Information Source :

 Virtualization Best Practices

http://www.symantec.com/business/support/index?page=content&id=HOWTO81060

http://www.symantec.com/business/support/index?page=content&id=TECH173650

https://www-secure.symantec.com/connect/sites/default/files/Virtualization_Best_Practices.pdf

 

Statistics
0 Favorited
1 Views
0 Files
0 Shares
0 Downloads

Tags and Keywords

Comments

Apr 22, 2014 11:59 AM

Gracias Rolo !!! Pura Vida !!!

Feb 12, 2014 11:19 PM

Thanks for the posting here man !

Feb 10, 2014 01:13 PM

Good, concise article.

Jan 15, 2014 03:12 AM

Good article.

Jan 09, 2014 09:26 AM

Nice job.

Sep 12, 2013 01:22 PM

Awesome article.  Thumbs up

Sep 09, 2013 10:27 AM

Respect. +1

Aug 28, 2013 05:55 AM

1 up for being precise and informative.

Aug 21, 2013 04:49 AM

Thank you.Wonderful and to the point.

Jul 29, 2013 11:47 PM

Nice one it will going to help us....Grt one.

Thumbsup !!

Jul 29, 2013 11:37 PM

Where is part 2?

Jun 26, 2013 12:30 PM

Hello,

This is such a wonderful and much needed series of Best Practice..!! 

Thank you.

Related Entries and Links

No Related Resource entered.