![]() ![]() To disable On-Access Scan activity monitor:ġ0.6.5 & Prior: /opt/isec/ens/threatprevention/bin/isecav -oasactivitylog disableġ0.6. Note: Don't forget to stop the OAS activity monitor. To save the contents of this file in a text file:ġ0.6.5 & Prior: cat /opt/isec/ens/threatprevention/var/isectpdactivity.log | tee ENSLScanningFiles.txtġ0.6.6 & Later: cat /var/McAfee/ens/log/tp/mfetpdactivity.log | tee ENSLScanningFiles.txt To enable the On-Access Scan activity monitor:ġ0.6.5 & Prior: /opt/isec/ens/threatprevention/bin/isecav -oasactivitylog enableġ0.6.6 & Later: /opt/McAfee/ens/tp/bin/mfetpcli -oasactivitylog enableĬapture the above log for 5 min during high CPU utilization. If its still utilizes high CPU then you may refer following instruction to enable OAS activity Monitor and capture its logs to confirm the scanning request and try excluding those highest scanning request.Įnable and capture of logs for 5 min during the high CPU with following command:.Repeat steps 9–11 to add the rest of the extensions. ![]() Select File type (can include the ? wildcard) and type the first extension "arc" from the list above.Navigate to the Process Settings section, Exclusions list.Select Endpoint Security Threat Prevention from the Product drop-down list.Since the latest version of ENS does not support server Windows Server 2008, we will need to use VSE 8.8.x. Click Actions and select Agent, Modify Policies on a Single System. We are looking to build a new epo environment (v5.9) and we would like to use the latest version of ENS 10.5.x.Select a system where you need to modify the policy.To configure the above exclusions using ePO: Here is the list of default exclusions in ENSLTP: You apply the McAfee suggested default exclusions as mentioned below and test if its still utilizes the high CPU.Confirmed if ENSL Version and Kernel version is compatible. ![]()
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |