Our InfoSec team are requesting that we install CrowdStrike Falcon on our DMAs and Cube machines.
I can see that this question has been asked before (Crowdstrike - DataMiner Dojo), though the answer doesn't actually state what exceptions/adjustments are required to be able to run Crowdstrike.
Can anyone advise?
Hi Dave,
This is the list of folder we recommend to exclude from any antivirus operation:
C:\Skyline DataMiner
C:\Program Files\Cassandra
C:\ProgramData\Cassandra
C:\ProgramData\Skyline
C:\ProgramData\Skyline Communications
C:\Skyline DataMiner Backups
D:\ProgramData [In case you have the DB data in another disk]
C:\user\AppData\Roaming\Skyline
Hope it helps.
Hi Dave supplementing Edson's comment please have also a look on how we detect the SL* processes interference from various antivirus applications on the link below:
https://community.dataminer.services/documentation/check-antivirus-dlls/?hilite=%27antivirus%27
CrowdStrike included.
("BPA test is available on demand. You can run it in System Center (on the Agents > BPA tab, available from DataMiner 9.6.0 CU23, 10.0.0 CU13, 10.1.0 CU2 and 10.1.4 onwards). From DataMiner 10.1.4 onwards, it is available by default.")
Kind regards
About CrowdStrike AV installed on Cassandra and Elastic cluster machines using Linux Ubuntu TLS version 20.04 operating system, does anyone have experience? How to configure these exceptions?