Support other Antivirus products in Malware Assessment
I added the Malware Assessment Intelligence Pack today, and it seems to be listing all of my servers as not having any real time AV protection. The servers in question are running Symantec Endpoint Protection. I looked in the description of the intelligence pack to see what AV products it works with, but didn't find that info.
[Edited during forum migration: comments/responses in the old forum included Symantec and Sophos]
Allena Domnus commented
I've been using Kaspersky Total Security on my primary systems for several years now and have found it to be one of the best I have ever run. Being a tech, I'm fortunate to have several systems running at any time, so I am able to run different security products on a couple of my lab systems for comparison. In that regard, I have found Kaspersky currently to offer the best protection, with the least problems otherwise. Get the latest updates regarding features here https://www.criticthoughts.com/security/kaspersky-total-security-review/
Any timeline as to when Sophos will be included?
Jon Bruce commented
We would like to see the CrowdStrike falcon agent added.
Mark Johns commented
We would like to see ESET added
Alex Brothman commented
Would like to see ESET added.
Peter Selch Dahl commented
Great news with the support for Symantec and Trend Micro. https://blogs.technet.microsoft.com/msoms/2017/01/19/oms-security-malware-assessment-adds-support-for-more-antimalware-vendors/
I hope you will also add support for other products like McAfee and BitDefender
Johannes F. Maritz commented
Hi Microsoft. When is the anticipated date for using information from the Windows Security Center to collect status from non-Microsoft antimalware products.
Has there been further work on adding in support for other AV clients? I would still like to see support for F-Secure added in...
We have seen tons of false positive for a lack of malware detection software when TrendMicro is installed.
Appreciate if OMS can support Trend Mirco, as this will be very beneficial and valuable for us.
we need to add Trend Micro antimalware product please
So I recently started using Microsoft Operations Management Suite. I have no on-prem MOM. I have AVG on 3 of my servers and all 3 are presenting the event. And I'm getting:
ProtectionStatus : No real time protection
The full event looks like this:
5/4/2016 12:44:55.233 AM | ProtectionStatus
TimeGenerated:5/4/2016 12:44:55.233 AM
ThreatStatus:No threats detected
ProtectionStatus:No real time protection
ProtectionStatusDetails:No infection found
ScanDate:5/3/2016 8:00:00.000 PM
TypeofProtection:Malicious Software Removal Tool
Can AVG be added as there is real time protection?
Hi same issue with me, multiple servers and multiple customers.. all have MSAV client extension installed with realtime protection ON. Also multiple OMS dashboards. However OMS always reports no realtime protection. This does not look when we show customers we have set up OMS and MS AV extension on their servers. Is there a fix in progress for this one please ?
Antivirus False Positive - OMS engine does not detect Microsoft Security Essentials running on Windows Server 2008 R2 Standard x64 Edition
Wrong configuration is returned on OMS for ForeFront Endpoint protection
OMS says all my servers do not have real time protection while ForeFront Endpoint Protection is well configured for real time protection
Aaron Lawrence commented
It seems like a not very useful feature if it only detects one AV client.
Ross Martin commented
Urgently please add detection of the major 3rd party AV solutions
Having the portal flag "No Real Time Detection" is disingenuous and misleading
In no particular order, the following AV clients should be supported from the following vendors:
I reckon these covers large user base very quickly.
Bill Smith commented
Please add Sophos as well! I can't believe most of these aren't already added.