How to install Exchange Server 2016 CU3 or later on Windows Server 2016, including pre-requisite installation and antivirus exclusions for Windows Defender.
Installing Exchange Server 2016 on Windows Server 2016
Tag: Antivirus
Exchange 2016 Antivirus Exclusions
It is a recommended practice to configure any antivirus software running on Exchange servers to exclude specific paths, processes, and file types.
Advanced Threat Protection Notes from the Field
Here's my experience using the Advanced Threat Protection features in Exchange Online Protection to protect my Office 365 tenant.
PowerShell Script to Generate Antivirus Exclusions List for Exchange Server 2013
A PowerShell script to generate the list of exclusions to configure in antivirus software running on Exchange Server 2013 servers.
MSExchangeRepl Error: "The process cannot access the file because it is being used by another process."
An Exchange database may failover when the Exchange replication service is unable to access a transaction log file that is in use by another process.
Vircom modusGate and directQuarantine Review
modusGate by Vircom is an email security product that includes anti-spam and anti-virus protection, as well as a range of other useful security and administrative features that are configurable to an impressive depth.
End of life for CA InoculateIT AV Engine in Microsoft Forefront products
From the Forefront Server Security blog:
Engine and definition updates for the Computer Associates (CA) InoculateIT engine will end on September 29th, 2008.
On January 16th, 2007, the Computer Associates (CA) InoculateIT engine was combined with the Computer Associates VET engine. Since the engines were merged, Microsoft has continued to provide engine updates for the InoculateIT engine as a courtesy to customers using the engine.
If you are still using the InoculateIT engine for antivirus scanning, you should disable it for all scan jobs and discontinue engine and definition updates for the engine. For information about engine updating, please read our documentation on TechNet.
· For Antigen: http://technet.microsoft.com/en-us/library/bb914037.aspx
· For Forefront for Exchange: http://technet.microsoft.com/en-us/library/bb795083.aspx
· For Forefront for SharePoint: http://technet.microsoft.com/en-us/library/bb795192.aspx
Symantec Endpoint Protection is a Network Performance Threat
I recently removed the Network Threat Protection component from the Symantec Endpoint Protection installation on all of the servers and desktops on a customer network. Here is a list of things that happened as a result:
- Backup throughput increased by 50% (using Symantec Backup Exec 11d)
- Exchange backups stopped failing due to the remote agent becoming disconnected
- Performance of SQL-based applications improved
- Group Policy processing time at desktop startup decreased
- LDAP search query times for the Exchange server improved (System Center Essentials was raising alarms for these taking over 6000ms sustained for 5 minutes, with the alarm threshold being 100ms)
- RPC latency for the Exchange server improved (SCE was raising alarms for average latency being over 70ms sustained for 5 minutes)
- Office applications opening files on network shares became more responsive
- Desktops stopped rebooting randomly throughout the day
Seriously, what a piece of junk.