When I deploy 3rd party Antivirus i am getting alerts as below
Data: Custom Script Monitor : Standard Output: Windows Defender is disabled and Up-to-date
ESET Endpoint Antivirus is Enabled and Up-to-date
whats the best way to over come this? Can this be edited to not monitor Defender/Security Essentials or can the alerts be change so that it alerts if all of installed AV are disabled or not up to date
I have sites that have different antivirus solutions, some eset,some sophos etc…
What i ideally need is a script (or multiple scripts, one for each AV solution) that would check to make sure that installed AV at site is enabled and up to date and then alert if another 3rd party AV is installed excluding defender/security essentials as this is now included in windows 10
I will then create a separate monitor for each site depending on what AV they use.
this should then alert me if the site wide AV is disabled / not up to date or if there is another 3rd party AV installed.
I see where you’re coming from. Having multiple AVs to monitor would require a different kind of set-up. We have coordinated with our Script Developers on how we can achieve your goal. Please provide the vendors of the AV you have on those sites and we’ll forward it for analysis.