What exclusions are necessary for Symantec Management Platform (SMP) to function correctly with an anti-virus (AV) solution installed?
The following folders in C:\ProgramData\Symantec\SMP\EventQueue should be excluded from active protection in the AV client:
Note: The files in the EvtInbox folder are zero-footprint inventory files from client machines Note: The files in the EvtQ* folders are generally inventory and notification data from client machines Note: The files in the Temp folder are temporary files that the system is using
As well, in certain situations you should consider for excluding the Windows %temp% folder, typically found at C:\Windows\Temp, but its location can change for some of the Windows operating systems. In this folder, exclude .tmp files.
Note:These .tmp files can be .nse files that IIS may temporarily store (either created, compressed or uncompressed) at this location before placing them in the NScap queues.
Note: A consideration to exclude the <install drive>:\Program Files\Altiris\Symantec Installation Manager\Installs\Altiris folder for .msi files can be made if the AV client will modify or block the .msi files used for installations.
If SQL is on the same computer as the Notification Server, consider excluding the database files (files with extensions of .ldf, .mdf, and .bak).