Interoperability with third-party Security solutions on Windows assets
Xshield is designed to co-exist with third-party Security solutions. For some Security solutions, you must tune the configuration of the Security solution to install the agent and protect the asset with Xshield policies.
Workload assets
On Windows server assets of supported OSes, you must tune the default Security configuration as follows.
| Third-party solution |
Interoperability |
| Symantec Endpoint Protection Manager |
.Yes. Move the workloads to a new Child Server Group with Policy Inheritance turned OFF and apply a cloned version of the Firewall Policy to the new group. The Windows Integration setting for the Firewall Policy must be set to Restore if Disabled (enables the Windows Firewall at startup). |
User assets
On Windows user assets of supported OSes, you must tune the default Security configuration as follows.
| Third-party solution |
Interoperability |
| AVG Antivirus |
Yes |
| Bitdefender Total Security |
Yes. To use SUA features successfully, go to Protection > Advanced Threat Detection tile, click Settings > Manage Exceptions, and add conhost.exe, netsh.exe, and powershell.exe processes as exceptions. |
| Bullguard Antivirus |
Yes |
| Fortinet |
Yes |
| Kaspersky Anti-Virus |
Yes |
| Symantec Endpoint Protection client |
Yes. To use all Xshield features, go to Add or remove programs, click Modify and disable the Firewall feature for Symantec Endpoint Protection, and restart the asset. |
| Malwarebytes |
Yes. To use SUA features successfully, go to Dashboard, and Turn OFF the Web protection service. |
| Windows Defender (Ransomware Protection disabled) |
Yes |
| Windows Defender (Ransomware Protection > Controlled folder access enabled) |
Yes. Only if 'Controlled folder access' is not enabled for C:\Program Files or the C drive. ) |
| Windows-native settings enabled (App & browser control, Firewall & network protection, and Device security) |
Yes |