Dell PowerStore 1200T Using the Common Event Enabler 8.x on Windows Platforms - Page 60

Non-SMB/CIFS protocols Restricted Group GPO When an infected FLR file is discovered, the resident AV engine records the presence of the infection and its location in the log file of the resident scan engine. Although an administrator cannot fix or remove the infected file, the file's read access can be restricted to make the file unavailable. The infected file can only be deleted after its retention date has passed. The scan-on-first-read functionality of CAVA does not detect a virus in an FLR file. The Dell antivirus solution is only for the clients running the SMB or CIFS protocol. If NFS or FTP protocols are used to move or modify files, the files are not scanned for viruses. CAVA requires the antivirus domain account (AV user account) to be in the local administrators group of a VNX for File SMB or CIFS server or a Dell Unity NAS server. If the SMB/CIFS server or NAS server has Restricted Group GPO enforced and the AV user account is removed from the local administrators group, after the next CAVA restart the status will change from ONLINE to AV_NOT_FOUND. To ensure that the CAVA status remains ONLINE, you must either include the corresponding AV user account in the Restricted Group, or remove the Restricted Group. CAVA and Data Mover or NAS server On Unity, you can configure a NAS server. On VNX, you can configure a CIFS server on a physical Data Mover or on a VDM. The CIFS servers are typically configured on a VDM (one or more VDMs on a physical Data Mover). However, for CAVA to work, you must have a CIFS server configured on the physical Data Mover against which the virus checking will be done, and the user rights or permissions must be assigned against this CIFS server. This is the global CIFS server or the default CIFS server on the physical Data Mover. NOTE: For VNX, all file systems or shares can be mounted on a VDM. However, CAVA will scan all the file systems on the physical Data Mover covering all VDMs and all CIFS servers. User interface choices The system offers flexibility in managing networked storage based on the support environment and interface preferences. This guide describes how to configure CAVA and CEPA on a VNX by using the command line interface (CLI). You can also perform some of these tasks by using the following management applications: ● Dell Unisphere® software ● Dell Unity/VNX/VNXe NAS Management snap-in ● Microsoft Management Console (MMC) snap-ins ● Active Directory Users and Computers (ADUC) extensions Installing Management Applications on VNX for File includes instructions on launching Dell Unisphere software, and on installing the MMC snap-ins and the ADUC extensions. For VNX and Dell Unity systems, this document also describes how to manually create a configuration file, assign the EMC Event Notification Bypass privilege to suppress third-party application events, and issue commands by using the CLI. The EMC VNX Command Line Interface Reference for File provides full descriptions of the commands. CAVA features When CAVA is used with one of the supported third-party antivirus applications listed in AntiVirus partners, the following features are available: ● Load balancing and fault tolerance ● Scan-on-first-read ● Updating virus definition files ● Scan on write ● CAVA sizing tool ● CAVA Calculator ● Virus-checking continuation 60 Unity and VNX CAVA Information