Just wondering what others are doing in regards to best practices for installing antivirus agents on vDesktops. Are most installing the typical AV software that they would install on physical machines, or are you utilitzing vShield Endpoint ?
we currently have enable on access scanning turned on
you can create policies within the sophos management console and then link the policies to specific desktop or even desktop groups (i.e. per floor, etc)
Mike, here is a link to a AV whitepaper that VMware put out earlier in the year, http://www.vmware.com/files/pdf/VMware-View-AntiVirusDeployment-WP-en.pdf. As far as endpoint I haven't read anything to indiciate that a lot of people are adopting this at a fast pace. If I'm not mistaken Trend is the only company that has released something that is compatible with endpoint.
We are using Trend OfficeScan 10.5 on our virtual desktops. AV is something we have fought with for a couple of years in the VDI realm. OfficeScan 10.5 has been a huge help and gives us a way to keep AV on the system without fear of AV scans or updates taking the system down. I am not aware of a similar AV product out there yet.
thanks buckethead. This is different than Trend Deep Security 7.5. OfficeScan 10.5, I'm assuming is your typical AV agent that can be installed on every physical or virtual desktop, whereas Deep Security 7.5 is more for VMware's Endpoint solution. Is that correct?
Yes, Trend Deep Security and Trend OfficeScan 10.5 are two different products. We have used Trend OfficeScan/ ServerProtect as our company email for years. You are correct that OfficeScan can be used for Virtual and Physical systems. We have been very happy with it and even run some AV Scan tests to see how it would affect our Storage and it has had little affect.
I think Deep Secuirty is just for virtualized systems. I have seen a demo on it but have not played with it yet.
hello, we are using sophos endpoint security in our VDI deployment and haven't had any issues. we deploy using a GPO so that helps when we do a recompose the client is easily pushed back out and communication is re-established with the management server. we went with sophos because of it's light footprint and low resource consumption.
we currently have enable on access scanning turned on
you can create policies within the sophos management console and then link the policies to specific desktop or even desktop groups (i.e. per floor, etc)
