Antivirus exclusions for Operations Manager 2007

Hi All,

We had some customers ask what they should exclude in terms antivirus for Operations Manager 2007, I was passed this information from a colleage.

1. The database server could be treated similar to normal SQL servers.

Guidelines for configuring AV software on SQL servers along with clustering considerations

Some antivirus programs cause issues with MSCS, how to fully disable filter drivers from monitoring shared cluster disks.

2. For the application side, there is no official document for SCOM AV exclusions, however, the product team recommends you consider excluding the following folders:

I. Operations Manager Server:

“\Program Files\System Center Operations Manager\...\Health Service State” and all sub-directories

‘%windir\temp%’ or other directory depends on the directory store for the ETL files (defined in starttracing.cmd)

II. Operations Manager Agent:

“\Program Files\System Center Operations Manager\...\Health Service State” and all sub-directories

‘%windir\temp%’ or other directory depends on the directory store for the ETL files (defined in starttracing.cmd)

III. Database server:

OpsMgr /DW database directory and all other database directories

IV. OpsMgr Console:

\Documents and Settings\<USER>\Local Settings\...\Microsoft.MOM.UI.Console

V. In addition to the following directories:

%installdir%\Health Service State

%installdir%\Config Service State

%installdir%\SDK Service State

%installdir%\tools\tmf

%windir%\temp\OpsMgrTrace

VI. Additionally, checking https://blogs.technet.com/kevinholman/archive/2007/12/12/antivirus-exclusions-for-mom-and-opsmgr.aspx

VII. A recommendation about excluding File Type Extension of EDB, CHK, and LOG from the AV scanning scope.

Nick.