on 12-17-2014 8:55 PM
I've SAP ECC, PI, BI, SEM, etc .. all running on vm's with MS windows and sql 2008 server. Can I run any antivirus sw such as mcafee or symantec etc ... Any know issues you have encountered with anti-virus sw running on SAP servers?
>>Any know issues you have encountered with anti-virus sw running on SAP servers?
yes, a lot!
In general there are no errors. But we hit different situations where the stability of the system was damaged by faulty AV-Software. This faults are very difficult to analyze and often lead into escalation situations in the support process.
Nevertheless - there is no discussion, whether AV is necessary or not: It is!
SAP distinguishes two different scenarios when talking about AV-Software.
hope this helps.
kind regards
Peter
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
I can attest to NOD running on Trex 7.1 patch lvl 60 (and a failed PL 61 and SAP recommending we roll back) would cause issues with indexing overall and caused drives to blow out due to multiple 80+ GB txt files being created due to Trex not being able to access the main indexes to place the new indexed data into.
Still till this point we haven't found a solution to the issue, and the Trex systems themselves haven't had a hiccup.
Its related as it is AV - http://www.eset.com/us/home/products/antivirus/
As for bringing up my experience with Trex and this AV, I was providing an example of just how badly it can impact an SAP system.
Hi Billy,
sorry for my first answer. I interpreted NOD as typo for NOT
Therefore including a link would be more precise...
The problem is, that it is not possible to generalize those conclusions.
I am working in the windows platform development/support. In this function we are normally in the game, when such problems are occuring.
The big problem is, that the AV-Software functionality is implemented in filter drivers. Without performing Windows Kernel debugging, you are not able to point out culprits, when programs or the operating system is missbehaving in certain situations. So at this point SAP sits also between the chairs (operating system / anti virus software).
Following kind of errors have been observed during incident analysis:
All this was fixed by newer AV-Software versions. But at the moment this software is causing errors you are in trouble. It is extremely expensive to perform root cause analysis in such situations.
I think, that the problem is often caused bei improper software design and or improper AV-Software selection. AV-Software is often tested and designed for Windows Desktop machines. If it is also used in the server world, it has to handle 200+ CPUs build on top of a complex NUMA architecture. A typical workstation still has less than 8 CPUs...
Another problem is, that most tests in professional journals do primarily concentrate on virus detection rates and detection speed - on workstations.
I can not imagine when I have seen the last numbers for huge servers including the performance degradation on normal file operations (including degradation of operations on AV-scan-excluded files)
regards
Peter
PS: On linux you do not have this kind of problems. They (Linux forums etc) still argue that the operating system is more robust and does not need AV... Well: keep on dreaming and hopefully got awake before the reality has passing you.
Hi,
I am Chetan Savade from Symantec Technical Support Team.
You can configure Symantec (SEP) but just need to make necessary exceptions to work it flawless.
What scan exclusions could be applied in Symantec Antivirus or Symantec Endpoint Protection on a server running SAP?
http://www.symantec.com/docs/TECH134382
Best Regards,
Chetan
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
Hi Rakesh,
You can go through and find SAP recommended Anti Virus software for your SAP Applications.
Protecting SAP systems using antivirus softwares - Basis Corner - SCN Wiki
106267 - Virus scanner software on Windows
639486 - Anti-virus protection within SAP applications (BC-SEC-VIR)
http://blogs.msdn.com/b/saptech/archive/2010/06/21/sap-on-windows-and-anti-virus-scan.aspx
Regards,
V Srinivasan
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
Hi Rakesh
Yes, You can install the any antivirus software only for Virus & Spyware protection not on network protection. we have installed in our environment in the same way using Symantec Endpoint protection.
BR
SS
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
Hi Rakesh,
Please follow SAP doc at Which files and directories should be a part of Antivirus exclusion list on Windows - Basis Corner -...
As per me you can set antivirus for not to scan database files and log files.
Regards,
Gaurav
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
User | Count |
---|---|
82 | |
10 | |
10 | |
9 | |
6 | |
6 | |
5 | |
5 | |
4 | |
3 |
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.