AV software can be a bit of a pain sometimes, then again often it is also a necessity considering the growing importance of cybersecurity.
The key concerns are typically making sure that the AV doesn't take away too much of the computing resources that the DMA needs, or blocks certain things that are vital for the proper functioning of the DataMiner System. To a large extent I guess this is mainly a matter of properly configuring the AV software in the first place, so that it can happily coexist with the DataMiner software and doesn't negatively impact it, and there are some guidelines/recommendations for that in the DataMiner System Requirements.
But I was wondering if aside from those guidelines, anybody had any further practical experiences to share on that specific topic? What kind of AV products have you seen being used on DMAs? What kind of typical issues, if any, have you seen? And what caused those issues and how were they resolved? Any further recommendations or past experiences that can help people to use AV in symbiosis with DataMiner?
I remember a situation where a severe memory leak in one of the the AV processes running on the DataMiner server caused unexpected restarts of our software every few weeks.
Therefore, if you know there's AV software running on the system, I'd say it's good practice to also monitor those processes in DataMiner in a similar way as we normally do for our own SL* processes (CPU, VM size, handles, ...).
Great input Ruben. Thanks!