Hi Community,
Looking for feedback on any observed issues or recommendations with implementation of CrowdStrike EDR on FSM6 on-prem servers.
Thanks as always.
Richard
Answer
Feedback on CrowdStrike implementation on FSM6 servers
Best answer by roklde
Hi RIchard,
there is no specific recommendation regarding CrowdStrike EDR. However, the following general recommendation is shared in the Installation Guide:
We’d also recommend to exclude Application server log files for IIS, Metrix Service and mobile logs on the FSM Application Servers.
For the database servers, excluding database files is recommend.
- For SQL Server see here.
- For Oracle: exclude data files, log files, control files, archive files and backup files.
Best regards
Roman
+27Hi RIchard,
there is no specific recommendation regarding CrowdStrike EDR. However, the following general recommendation is shared in the Installation Guide:
We’d also recommend to exclude Application server log files for IIS, Metrix Service and mobile logs on the FSM Application Servers.
For the database servers, excluding database files is recommend.
- For SQL Server see here.
- For Oracle: exclude data files, log files, control files, archive files and backup files.
Best regards
Roman
+14Hi
We have Crowdstrike on our FSM / PSO on-prem servers.
No issues whatsoever, other than THE issue July 2024.
As Roman states scans are all down during the sleepy hours. But if you want anything specific answering, although I might not be able to answer it, I can go away and speak with our InfoSec team.
Ady
Enter your E-mail address. We'll send you an e-mail with instructions to reset your password.