Monday, May 12, 2014

Antivirus scanning exclusion list for Lync Server 2010 and 2013

We heard that Exchange file must be exclude from the Antivirus scanning and most of we are following, Now if you talk about the Lync Server we also follow the same rule in Lync server in our production environment.

I have observed couple of issues which was occurred because of antivirus. Sometime antivirus will quarantine some Lync processes or configuration file which are necessary to Lync Server operation.

Make a best practice always excludes the following execution file and path from Antivirus file level scanning.
It also depends on the Lync servers roles:
There are many services and installation path which we need to exclude from Antivirus scanning. Like file level scanning.
1.     Lync Server 2010 antivirus exclusion list:
a.     Lync Server 2010 processes:
o    ASMCUSvc.exe
o    AVMCUSvc.exe
o    DataMCUSvc.exe
o    DataProxy.exe
o    FileTransferAgent.exe
o    IMMCUSvc.exe
o    MasterReplicatorAgent.exe
o    MediaRelaySvc.exe
o    MediationServerSvc.exe
o    MeetingMCUSvc.exe
o    MRASSvc.exe
o    OcsAppServerHost.exe
o    QmsSvc.exe
o    ReplicaReplicatorAgent.exe
o    RTCArch.exe
o    RtcCdr.exe
o    RTCSrv.exe
b.     IIS processes:
o    %systemroot%\system32\inetsrv\w3wp.exe
o    %systemroot%\SysWOW64\inetsrv\w3wp.exe
c.      SQL Server processes:
o    %ProgramFiles%\Microsoft SQL Server\MSSQL10.MSSQLSERVER\MSSQL\Binn\SQLServr.exe
o    %ProgramFiles%\Microsoft SQL Server\MSRS10.MSSQLSERVER\Reporting Services\ReportServer\Bin\ReportingServicesService.exe
o    %ProgramFiles%\Microsoft SQL Server\MSAS10.MSSQLSERVER\OLAP\Bin\MSMDSrv.exe
d.     Directories and files:
o    %systemroot%\System32\LogFiles
o    %systemroot%\SysWow64\LogFiles
o    %systemroot%\Windows\Assembly\GAC_MSIL
o    %programfiles%\Microsoft Lync Server 2010
o    %programfiles%\commonfiles\Microsoft Lync Server 2010
o    %SystemDrive%\RtcReplicaRoot
o    File share store (specified in Topology Builder). File stores are specified in Topology Builder.
o    SQL Server data and log files, including those for the back-end database, user store, archiving store, monitoring store, and application store. Database and log files can be specified in Topology Builder. For details about the data and log files for each database, including default names, see SQL Server Data and Log File Placement in the Deployment documentation.
2.     Lync Server 2013 Exclusion List: 

1.     %ProgramFiles%\Microsoft Lync Server 2013\Web Components\Mcx\Ext
2.     %ProgramFiles%\Microsoft Lync Server 2013\Web Components\Mcx\Int
3.     %ProgramFiles%\Microsoft Lync Server 2013\Web Components\Ucwa\Int
4.     %ProgramFiles%\Microsoft Lync Server 2013\Web Components\Ucwa\Ext
5.     %Windows%\Microsoft.NET\Framework64\v4.0.30319\Config

No comments:

Post a Comment