Microsoft Windows 2008 or Microsoft Windows 2003 servers are acting as Domain Controllers in an Active Directory environment. What files and folders need to be excluded from Symantec Endpoint Protection's AV scanning so that SEP won’t impact the Domain Controller performance?
The Symantec Endpoint Protection client software automatically detects the presence of certain third-party applications: Active Directory Domain Controller is one such application. After the SEP client detects that it is running on a Domain Controller (DC), it automatically creates the necessary exclusions for sensitive files and folders. These files and folders are excluded from all antivirus and antispyware scans.
Steps to verify the exclusions for Domain Controllers:
Symantec recommends that you examine the Microsoft article below for additional exclusions.
Virus scanning recommendations for computers that are running Windows Server 2008 R2, Windows Server 2008, Windows Server 2003, Windows 2000, Windows XP, or Windows Vista