ENS has support for CAVA. CEE and CAVA are a framework running on a Windows platform. The framework enables third-party antivirus engines to scan files that are stored on a
Dell EMC Celerra, VNXe, VNX, Unity,
or VMAX eNAS and NAS array. This article describes how to install ENS to work with
CAVA.
To install ENS with support for CAVA, the CAVA switch is needed.
Add this switch for local installations as shown below:
setupEP.exe ADDLOCAL="tp,fw,wc" /CAVA
For managed installations, change the McAfee Agent deployment task parameters for ENS Threat Prevention. In the
Command Line field, type the following switch:
/CAVA
The CAVA switch disables the blocking cache in the on-access scanner, increases the number of on-access scanner scanning threads to 200, and enables network scanning. These setting changes are needed to make sure that the on-access scanner scans all files from CAVA.
NOTE: For managed systems, make sure to enable the network scanning option in the On-Access Scan (OAS) policy for ENS Threat Prevention. In the OAS policy, click
Show advanced, and make sure that the option
On Network Drives is selected for
What to scan. Whether you're using the Default (Standard) or the option for Standard/Low/High-risk process policies, the "On Network Drives" feature only needs to be enabled on the Standard tab for Process Types. This configuration makes sure that the "On Network Drives" feature configured at the time of ENS installation using the CAVA switch doesn't get disabled once the managed policy enforces on the system. Also, you must configure the ENS Threat Prevention on-access scanner to scan on read. Either leave the default "Let McAfee decide" option enabled, or select "Let Me decide" and make sure that "When reading from disk" is enabled.
By default, 200 scanning threads are made available in ENS. If this number is too many or too few for the system, you can change the value for the number of scanning threads during installation. Use the following command:
For local installations: setupEP.exe ADDLOCAL="tp,fw,wc" /CAVA="<number of scanning threads>"
For managed installations: SetupTP.exe /CAVA="<number of scanning threads>"
Example:
For local installations:
setupEP.exe ADDLOCAL="tp,fw,wc" /CAVA="100"
For managed installations, use this switch in the deployment task
Command Line field:
/CAVA="100"
To change the number of scanning threads after installation:
{GENRD.EN_US}
- Disable the ENS self-protection policy. This step is to allow the following registry key for scanning threads to be modified.
- Change the number of scanning threads:
- Press Windows+R, type regedit.exe, and click OK to open the Windows registry editor.
- Navigate to the following registry key:
HKEY_LOCAL_MACHINE\SOFTWARE\McAfee\AVSolution\EM\EM\dwEMThreadCount
- Change the number of scanning threads.
- Exit the registry editor.
- Re-enable the ENS self-protection policy.
- Restart the system.
