What are the recommended settings for ESET NOD32 Antivirus installed on a server? (4.x)

KB Solution ID: SOLN2144|Last Revised: January 27, 2014

 

Important!

ESET File Security for Microsoft Windows Server is now available. ESET File Security for Microsoft Windows Server (EFSW) is designed specifically to replace ESET NOD32 Antivirus Business Edition and ESET Smart Security Business Edition for use on servers (domain controller).

If you are currenly running ESET Smart Security Business Edition or ESET NOD32 Antivirus Business Edition on your server, we highly recommend upgrading to ESET File Security for Microsoft Windows Server. For more information about ESET File Security for Microsoft Windows Server and how to upgrade, visit the following Knowledgebase article. 

 


The settings described in this article are considered "best practices" when installing ESET NOD32 Antivirus 4.x onto a server operating system or desktop computer used in a server role. These settings are designed to limit disruptions of normal server processes and potential conflicts with other applications, and will not limit the protection of your server.

  1. All settings will be configured in the Advanced Setup window. Press the F5 key to open this window.
     
  2. From the Advanced Setup tree, click Antivirus and antispyware Real-time file system protection and deselect the Network drives check box. Click the Setup... button next to ThreatSense engine parameter setup.



    Figure 1-1


    Important!

    Step 3 causes ESET to only scan files that contain executable code.  If the server is used to browse the web or perform other workstation tasks, then skip to step 5.

  3. Click Extensions and deselect the Scan all files check box. If this server is being used to run Microsoft Exchange, select EDB, TMP and EML from the extension list and click Remove.



    Figure 1-2

  4. Click OK to close the ThreatSense engine parameter setup window and save your settings.
     
  5. Click Email Protection Email clients from the Advanced Setup tree and deselect the Received email, Sent email, and Read email options.



    Figure 1-3

  6. Click POP3, POP3S from the Advanced Setup tree and deselect the Enable email checking option.
     
  7. Click Web access protection from the Advanced Setup tree and deselect the Enable web access protection option. Then click HTTP, HTTPS from the Advanced Setup tree and deselect the Enable HTTP checking option.

The final settings which need to be configured will vary depending on the software that is installed on the server. For instance, database and backup software should be excluded from the Real-time and On-demand scanners. When entering the directory paths, make sure that the entire folder is excluded. As an example, the following directory paths should be excluded if the server is running Microsoft Exchange:

Important!

You must use the absolute path (e.g. C:\Program Files\Microsoft\Exchange Server\) when adding exclusions. The relative paths below are used below to match your system configuration, but cannot be copied and pasted. Do not use relative paths (%Program Files%, etc) when adding exclusions.

%Program Files%\Exchsrvr\MDBData*.*
%Program Files%\Exchsrvr\Mtadata*.*
%Program Files%\Exchsrvr\Server_Name.log
%Program Files%\Exchsrvr\Mailroot*.*
%Program Files%\Exchsrvr\Srsdata*.*
%System Root%\System32\Inetsrv*.*
%Program Files%\Exchsrvr\IMCData*.*

Rate this article:
1 2 3 4 5
Please comment on your rating...
We cannot respond to feedback from this form. Requests for assistance should be submitted through your normal support channel.
5 - Definitely
4 - Mostly
3 - Somewhat
2 - Not Really
1 - Not At All