Microsoft Forefront Server Protection Blog

The official blog of the Forefront Server Protection product team.

Recommendations For Customers Still Scanning With CA InoculateIT Engine

Recommendations For Customers Still Scanning With CA InoculateIT Engine

  • Comments 1
  • Likes

Hi, my name is Molly Gilmore and I’m a program manager on the Forefront Rapid Response Engineering team on Long Island. I spend a lot of time working with our Engine Partners and wanted to follow-up on a few changes we recommended when CA deprecated their CAInoculateIT engine earlier this year.

When Antigen/FSS originally partnered with CA to distribute their antivirus products, CA supported two different antivirus engines, each providing different features for threat protection. We distributed these two CA engines within FSS and Antigen under the CA InoculateIT and CA Vet product names.

Last January, CA announced that they would combine the features of both engines under a single engine and would maintain the name CA Vet for this new antivirus product. A KB Article was created that outlined the change and the associated product benefits communicated by CA http://support.microsoft.com/kb/931373).

The recommendation was to disable the CA InoculateIT engine.  Customers would maintain their current level of protection provided previously in two CA engines in the single, new CAVet engine. Forefront Security Server Customers would then have the option of selecting another AV Engine for additional protection.

In order to support Customers who have CA InoculateIT enabled and did not receive our original message, we re-packaged the CA Vet engine as the CA InoculateIT engine so it would be loaded by FSS/Antigen as CA InoculateIT but updated with CA Vet signatures.  As a result, Customers who have both CA InoculateIT and CA Vet enabled for scanning, are scanning with two instances of the same engine, CA Vet.

The purpose of this blog is to outline the steps needed remove the CA InoculateIT engine from the FSS/Antigen product which includes disabling the CA InoculateIT engine from the FSS/Antigen Scan Jobs and disabling the scanner updates for CAInoculateIT through the FSS/Antigen Client Administrator.

Another great way for Customers to accomplish this is to upgrade to the most recent service packs available for each of our products;  Antigen 9.0 SP1 for Antigen for Exchange Customers, FSSE SP1 for Forefront Security for Exchange Server Customers and FSSSP SP1 for Forefront Security for SharePoint Customers. These product versions are shipped without the CA InoculateIT engine and will remove the CA InoculateIT scanner update scheduled jobs during the installation process.

Steps to Disable the CA InoculateIT Engine From Scan Jobs

 

§  Open The Forefront/Antigen Administrator Client.

§  Under Settings, Click On “Antivirus”.

§  Deselect The CA InoculateIT Engine Under “File Scanners” For Each Scan Job.

§  Click the Save button.

 

 

Remove Scanner Update Scheduled Jobs for CA InoculateIT

 

1)      Open The Forefront/Antigen Administrator Client.

2)      Under Settings, Select Scanner Updates.

3)      Select CA InoculateIT and click the Disable button on the right-hand side to disable scheduled updates for this engine.

CA InoculateIT Signature Updates

In several months, we will discontinue signature update support for the CA InoculateIT engine so it is advised that Customers upgrade to the most recent service packs available for each product version (which include other enhancements) or, follow the instructions in this blog to disable the CA InoculateIT engine.

Attachment: fss-ui.JPG
Your comment has been posted.   Close
Thank you, your comment requires moderation so it may take a while to appear.   Close
Leave a Comment