Trend Micro Deep Security 9.5 ( Policies and Exclusions ) – Part 8

Pls check my previous blogs for the Trend  DSM , Relay Server , vSheild Endpoint, Filter Driver , DSVA, DSA and SSP Server. In this blog we can see the policy creation and applying it in the VMs with the exclusion list.

To create the Policy in the DSM go to the the Policy tab.

Policies – Click New Policy


Give the name for the Policy and we can choose the base policy as inherit or None.


We can place the new policy to the computers directly.

Pol4 pol5

In Case if we choose NO then we need to select the policy from the computer console.


Next we need to enable the Anti-Malware and other protection on the policy.



Next Remove the Default from the Real-Time Scan option and Select the Malware Scan configuration.Click Edit and create the new Exclusion Rule.



In Schedule always recommended to have it Every Day All Day option for the Real-Time Scan.



Select the Files and Folder as per our company scan exclusion policy.


Select the Extension Exclusion and the files extensions as per the requirements .


Next Select the Actions and choose appropriate actions .

Pol15 Pol16

Once the policy is set then next go the computer and select the computer in which policy have to be applied.

Note that  we can apply the policy to the group of computers also.

Go to the General – Policy – Select the Policy which we created ( TestPolicy )

Pol17 Pol18


Next Go to the Action tab and Activate the VM.



We can check the status in the General – Status section which will show the corresponding ESXi and the DSVA information.




Once the policy is applied , We can see the computers using the policy in the Policy tab.



Pls check the below KB for excluding UNC Path.


Scan Caching

Scan Caching improves the efficiency of on-demand scans performed by the Virtual Appliance. It eliminates the unnecessary scanning of identical content across multiple VMs in large VMware deployments.

In addition,

• Integrity Monitoring scan caching speeds up Integrity Monitoring scans by sharing Integrity Monitoring scan results.

• Anti-Malware on-demand caching speeds up scans on subsequent cloned/similar VMs

• Anti-Malware Real-time caching speeds up VM boot and application access time

• Concurrent Scan feature allows further overall scan time improvement by allowing multiple VMs to be scanned concurrently

scan cach

In the next blog we can see the VMtools installation with vShield Endpoint driver installation .

This entry was posted in Trend Micro Deep Security and tagged , , . Bookmark the permalink.

5 Responses to Trend Micro Deep Security 9.5 ( Policies and Exclusions ) – Part 8

  1. Pingback: Trend Micro Deep Security 9.5 ( VMtools Installation with vShield driver) – Part 9 | Techbrainblog

  2. Ollat JC says:

    I’m wondering if is it possible to have a hierachy of exclusion files in Deep Security ? for instance you want to exclude C:\temp in every servers and exclude C:\SQLDATA in every MSSQL Server. Thanks for your blog


  3. Joe says:

    Good Article.. When Trend is synced with Vcenter. Is there a way to exclude a folder of VM’s. So they do not get scanned?


Leave a Reply

Fill in your details below or click an icon to log in: Logo

You are commenting using your account. Log Out /  Change )

Facebook photo

You are commenting using your Facebook account. Log Out /  Change )

Connecting to %s