I am looking for recommendations and feedback on users experience running antivirus software on machines running ArcGIS Enterprise.
Our IT department uses Sophos antivirus and we have all the exclusions set per the technical paper in the ArcGIS Trust Center referenced in this post..
However we still were experiencing issues with ArcSOC processes getting killed off and orphaned causing the server to start consuming dangerously large amounts of RAM to the point where the machine becomes unresponsive.
At one point we had over 300 ArcSOCs tied to a single service even though the max number of instances for that service was set to 10.
We are set up with Portal, 1 federated hosting Server with DataStore and 1 additional federated Server that is also licensed for Image Server. Version 10.8.1
I am looking for input from others who are using antivirus on their Enterprise systems.
I am also looking for any recommendations for antivirus solutions that does not disrupt the ArcGIS Enterprise software from functioning properly.
We forced our IT department to remove Sophos from the servers running ArcGIS Enterprise. They were not happy about it, but we had no choice since the two pieces of software do not seem to play well together. We are still looking for a good Antivirus solution that does not interfere with ArcGIS Enterprise. Our IT department is looking into CrowdStrike, but I have yet to find any information on it's compatibility with ESRI software.
If you are running ArcGIS Enterprise version 10.8 (or 10.8.1) there is a server patch you can install that may help with the orphaned services.
ArcGIS Server Orphaned Processes Patch