Scenario:
- There are instances when there are unsupported antivirus, anti-Spyware, etc, on the ESAP product list.
- In such a scenario, there may be clients trying to connect to PCS/PPS with a unsupported application on their computer. The user may be connecting to a protected role and he or she may not connect as expected; while they might see a non-compliance message on their browser by Host Checker.
- To overcome this situation, an PCS/PPS administrator can use the process check feature provided by the PCS/PPS OS.
- If the work around is accepted, Perform the procedure mentioned in the Solution section to configure the PCS/PPS for process check, which will effectively inspect if the respective process is running for a particular application on a computer. If the process check succeeds, the host check completes and if it fails, the end user will not be able to logon to PCS/PPS.
Example:
If a realm
or role is configured with host check for the
mcafee.exe process, every time a client connects to
PCS/PPS, the end user computer's memory is inspected for the
mcafee.exe process. Host Check will pass, only if this process is running.
Note: The code that performs the AV/Spyware detection for us is a third-party code sourced from a vendor called OPSWAT. The packages we support are the packages they support. Additionally, the semantics of 'passing the AV checks' are largely determined by OPSWAT and not by us.