Loading...

Knowledge Center


How to check the status of the VirusScan Enterprise On-Access Scanner
Technical Articles ID:   KB77262
Last Modified:  11/10/2016
Rated:


Environment

McAfee VirusScan Enterprise 8.8

Summary

VSE provides information to the ePolicy Orchestrator (ePO) database that represents the status of the On-Access Scanner (OAS). This information is considered near live, which means it depends on how long it has been since the data was collected from the client. This could be "very recent" if a property collection was just forced to occur on the system.

VSE 8.8 Patch 4 (and later) reports the status of the OAS in the ePO console. Alternatively, you can run the following query to list the systems that have the OAS enabled:
  1. Ensure that Hotfix 820636 (or later) has been deployed to the environment. See KB77043 for details on Hotfix 820636.
     
    NOTE: This hotfix improves the reliability of the information being returned by client systems to ePO.
     
  2. Use the following SQL query:
     
    NOTE: When you enter the database name for the USE command, do not include the < > signs. Example: USE [ePO_ePOtestserver].

    USE [<database name>]
    GO

    SELECT
       [EPOLeafNode].[NodeName] AS ServerName, 
       CASE WHEN rsOASEnabled.value IS NOT NULL THEN rsOASEnabled.value ELSE 'Unknown' END AS OASEnabled
    FROM
       [EPOLeafNode]
       INNER JOIN [EPOProductProperties] ON [EPOLeafNode].[AutoID] = [EPOProductProperties].[ParentID]
       LEFT JOIN [dbo].EPOProductSettings AS rsOASEnabled ON (EPOProductProperties.AutoID = rsOASEnabled.ParentID AND
                                                                                                                      rsOASEnabled.SectionName = N'On-Access General' AND
                                                                                                                      rsOASEnabled.SettingName = N'bEnabled')
    WHERE 
       EPOProductProperties.ProductCode LIKE 'VIRUSCAN%'
    GO

     
Output from the query above will look similar to the following:
 
NOTE: The 1 entry in the OASEnabled column means the OAS is enabled for that system.
 
  ServerName OASEnabled
1 SystemName1 1
2 SystemName2 1
3 SystemName3 1

Rate this document

Did this article resolve your issue?

Please provide any comments below

Affected Products


VirusScan Enterprise 8.8

Beta Translate with

Select a desired language below to translate this page.

Glossary of Technical Terms


Highlight Glossary Terms

Please take a moment to browse our Glossary of Technical Terms.