The following table outlines some considerations you should be
aware of before switching the scan method that Security Agents use.
Considerations When Switching to Smart Scan
|
Consideration
|
Details
|
||||
|
Product license
|
Ensure that you have activated all required licenses
for the new scan method.
|
||||
|
Apex One server
|
Ensure that agents can connect to the Apex One server. Apex One only notifies online
agents to switch scan methods. Offline agents get notified when they become online.
Independent
agents are notified when they become online or, if the agent has scheduled update
privileges,
when scheduled update runs.
Also verify that the Apex One server has the latest
components to ensure that Security Agents can download the correct patterns from the server.
|
||||
|
Number of Security Agents to
switch
|
Switching a relatively small number of Security Agents at a time
allows efficient use of the Apex One server and Smart Protection Server resources. These servers can perform
other critical tasks while Security Agents change scan methods.
|
||||
|
Timing
|
When switching scan methods, Security Agents need to
download full versions of the required pattern files for the new scan method.
Consider switching during off-peak hours to minimize the
impact to network bandwidth and interruption to end user daily operations. Trend Micro
recommends disabling "Update Now" on Security Agents during the conversion process.
|
||||
|
IPv6 support
|
Smart scan agents send scan queries to smart protection
sources.
A pure IPv6 smart scan agent cannot send queries directly to
pure IPv4 sources, such as:
Similarly, a pure IPv4 smart scan agent cannot send queries
to pure IPv6 Smart Protection Servers.
A dual-stack proxy server that can convert IP addresses,
such as DeleGate, is required to allow smart scan agents to connect to the sources.
|
||||
|
Smart Protection Services
|
If you are switching Security Agents from
conventional scan to smart scan, ensure that you have set up Smart Protection Services.
|
