Hi,

As far as I'm aware, this could works however I deployed DS8 SP1 after upgrading my vCenter to 5 managing esx 4.1 hypervisors.

At this time, I have following:

One ESXi 5 running both

• vCenter 5 (5.0.0 build 455964)
  
• vShield manager 5  (5.0.2 build 791471)
  

2 ESXi 4.1 (4.1.0 build 721871 which should be close Update2) with vShield Endpoint activated (installed) running

• a dsva virtual appliance (one per ESX)
  
• several protected machines
  

All 3 ESXs are managed by the vCenter 5.

In each protected machine;

• I have installed vmware tools (VMware-tools-8.6.0-446312-x86_64) downloaded from http://packages.vmware.com/tools/esx/5.0p01/windows/index.html
  
• During installation I have fololwed "To install the Endpoint vShield drivers" as documented in "Deep Security™ 8.0 Getting Started and Installation Guide" (page 42) so that to make sure Endpoint drivers as installed
  
• I have also installed DS Notifier (DeepSecurity 8 Notifier-Windows-8.0.0-1733.i386).
  This is not mandatory but this provide feedback to user in case a virus or something is detected.
  See "Installing the Deep Security Notifier" on page 82 of the above referenced DS8 started guide.
  Here is a video I made : http://youtu.be/KMheWEYvrac 
  

This done, all DS8 features well work (anti-malware, web reputation, firewall...) only Log inspection is not available unless you also deploy DS agent in a VM (this is named coordinated approach).

My DS8 manager (Deep Security Manager (Version 8.0.2224)) and the SQL database are both located on another Vmware environment.

Hope this will help

Regards

Bernard