To eliminate the chance that AntiVirus, AntiMalware, and other security-related software cause corruption or lock up files in the Qlik environment, or cause issues during an installation/upgrade/patch, some folders should be excluded from live scanning.
Impact of AntiVirus/Endpoint Detection and Response (EDR)/Advanced Threat Protection (ATP) scans locking Qlik related files (such as .qvw files, binary Qlik Sense app files as well as NPrinting task files, etc...) can result in loading and refresh failures as well as performance issues.
Please note that usual anti-virus exclusions might not apply to the EDR and ATP setup, talk to the solution vendor to get the exclusions in place. As an example if you use Microsofts Advanced Threat Protection (Microsoft Defender for Endpoint), then the exclusion list is handled by Microsoft and you need to open a ticket with Microsoft to get an exclusion in place.
If Crowdstrike Antivirus monitoring is installed on any Qlik Server
- Start a support case with crowdstrike support
- Enable 'bypass mode' for any Qlik programs including
- ALL nodes in a cluster
- Postgres
- Storage Server
- Then retest any reported issues with 'bypass mode' enabled
Qlik Sense Enterprise all versions
Antivirus exceptions for Qlik Sense- McAfee, Symantec & Other Anti-Virus exclusions absolutely requi...
Qlik Sense Folder And Files To Exclude From AntiVirus Scanning
You can obtain a list of exclusions to use with your EDR or ATP system by running the following script:
$Scanfolders = @("C:\Program Files\Common Files\Qlik","C:\Program Files\Qlik","C:\ProgramData\Qlik")
Foreach ($i in $Scanfolders)
{
Get-ChildItem -Path $i -Recurse -Include "*.exe" | % {Get-FileHash $_.FullName -Algorithm MD5} | Out-File C:\temp\exclusion_findings.txt -Append -Width 1000
}
This script was uses Qlik Sense Enterprise on Windows as an example. Replace the defined folders, such as C:\Program Files\Qlik, should they not apply for the product you are using.
In addition, if you need to use a different hash than MD5, replace it by any of the available values:
- SHA1
- SHA256
- SHA384
- SHA512
- MD5
For generic information not necessarily related to Advanced Threat Prevention, see:
QlikView all versions
QlikView Folder And Files To Exclude From Anti-Virus Scanning
Qlik Replicate and Qlik Enterprise Manager
Qlik Replicate and Qlik Enterprise Manager directory to exclude from Anti-Virus scanning
NPrinting 17 and newer
NPrinting Server and NP Designer Anti Virus Folder Exclusions
Qlik Alerting
Qlik Alerting Anti Virus Folder Exclusion
Antivirus TroubleShooting and Upgrade
Troubleshooting your upgrade
