Capture Client- Interoperability with Veritas Backup Exec (Symantec Backup)
03/26/2020
4 People found this article helpful
426,140 Views
Description
This is a workaround to address Capture client Interoperability issues with Veritas Backup( Symantec Backup).
NOTE: If you deploy this solution, the Capture client (S1 Agent) will not be able to protect the affected endpoints from exploits directed at the application vulnerabilities.
Resolution
1) Go to https://captureclient.sonicwall.com and login to using your MysonicWALL credentials
2) Navigate to Security Policies>capture client policies and add a custom capture client policy (if there are not custom policies already) and also add one custom threat protection policy (Ex:Veritas Exclusions)
![Image](https://sonicwall.rightanswers.com/portal/app/portlets/results/onsitehypermedia/090180523395317.png?linkToken=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJpc3MiOiJzb25pY3dhbGwiLCJleHAiOjE3NTM0OTk4NjIsImlhdCI6MTcyMTk2Mzg2Mn0.CjOV9tEDETrRESiQkCk6cmRkTTTaKR6-Tb8wZdH4rOE)
3) Navigate to Security Policies>Threat Protection policy>click on edit button on that custom policy and elect exclusion type as Path and specify Veritas path, type in description and select OS type and click on Add. Turn Off the Monitor option for each of Exclusions added.![Image](https://sonicwall.rightanswers.com/portal/app/portlets/results/onsitehypermedia/090180523167082.png?linkToken=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJpc3MiOiJzb25pY3dhbGwiLCJleHAiOjE3NTM0OTk4NjIsImlhdCI6MTcyMTk2Mzg2Mn0.CjOV9tEDETrRESiQkCk6cmRkTTTaKR6-Tb8wZdH4rOE)
![](upload/images/sonicwall/090180706807956.png)
4) Repeat the step 3 to add all the following Veritas folders under exclusions.
C:\Program Files\Symantec\Backup Exec\
A more detailed and granular list that is less aggressive than the summary above is to exclude these files:
C:\Program Files\Symantec\Backup Exec\beremote.exe
C:\Program Files\Symantec\Backup Exec\beserver.exe
C:\Program Files\Symantec\Backup Exec\benetns.exe
C:\Program Files\Symantec\Backup Exec\pvlsvr.exe
C:\Program Files\Symantec\Backup Exec\BackupExec.exe
C:\Program Files\Symantec\Backup Exec\backupexecmanagementservice.exe
C:\Program Files\Symantec\Backup Exec\bedbg.exe
C:\Program Files\Symantec\Backup Exec\pdvfsservice.exe
C:\Program Files\Symantec\Backup Exec\spad.exe
C:\Program Files\Symantec\Backup Exec\spoold.exe
C:\Program Files\Symantec\Backup Exec\pddb\bin\pg_ctl.exe
5) Navigate to Security Policies>Threat Protection and click edit button on the policy you have added (Ex:Veritas Exclusions) and associate the capture client policy to which you would like to have the exclusions applied.
![Image](https://sonicwall.rightanswers.com/portal/app/portlets/results/onsitehypermedia/090180523264331.png?linkToken=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJpc3MiOiJzb25pY3dhbGwiLCJleHAiOjE3NTM0OTk4NjIsImlhdCI6MTcyMTk2Mzg2Mn0.CjOV9tEDETrRESiQkCk6cmRkTTTaKR6-Tb8wZdH4rOE)
6) Navigate to Protect>Devices and update the policy to which you would like to have the exclusion policy pushed.
Related Articles
Categories