McAfee QUICKCLEAN 3.0 Guide de l'utilisateur télécharger pdf (Page 28)

How VM-based scan configuration works

Using the VM‑based scan configuration setting, the McAfee ePO administrator can enforce unique scan

policies to different groups, resource pool, or specific virtual machines protected by MOVE‑SVA on a

hypervisor, even when McAfee Agent is not deployed to the client systems.

The Scan policy can be applied to SVA machines or to a specific virtual machine, or group. When you

enable the VM‑based scan configuration setting, all VMs are protected by the Scan policy, which is assigned

to VM or group. However, when this is disabled, the Scan policy that is assigned to SVA would be

enforced to individual virtual machines.

The Scan policy can be assigned to the system using system‑based assignment or rule‑based

assignment in McAfee ePO.

Enable the VM-based scan configuration setting

When you install the McAfee MOVE AntiVirus Agentless extension, the default Scan policy is assigned to

the My Organization group, and the same is enforced to every VM under this group. However, to enforce a

unique Scan policy to individual virtual machines or group, you need to assign the unique Scan policy to

a specific VM or group, then enable the VM‑based scan configuration option present under the SVA policy.

Before you begin

• Make sure you have appropriate permissions to perform this task.

• Make sure that you have installed the Data Center extension and Data Center Connector

for vSphere extension.

Task

For option definitions, click ? in the interface.

Create a new SVA policy or edit an existing SVA policy and assign it to the target SVA(s). For details

see Create an SVA policy .

In the Scan Settings tab of the Policy Settings page of the newly‑created or edited policy, select VM‑based

scan configuration and click Save. The VM‑based scan configuration setting is now active. These policies are

enforced to SVA within the default policy collection interval, which is 60 minutes.

Follow these steps if you want to run the policy collection immediately:

Click Menu | Configuration | Server Settings, then click MOVE AV [Agentless] under Setting Categories.

Click Run. The Policy collection completed successfully message appears on successful collection of the

policies.

Enabling the Policy collector option periodically updates the target SVA(s) with the latest Scan

policies. You can change the policy enforcement interval by navigating to Menu | Configuration |

Server Settings | Setting Categories | MOVE AV [Agentless] | Edit. You can also view the task log for policy

collection by navigating to Menu | Automation | Server Task Log.

Send an agent wake‑up call to the target SVA(s).

Monitoring and managing

How VM-based scan configuration works

McAfee MOVE AntiVirus 3.0.0 Product Guide

1 2 ... 23 24 25 26 27 28 29 30 31 32 33 ... 40 41

Pas de commentaire

McAfee QUICKCLEAN 3.0 Guide de l'utilisateur Page 28