Configuring McAfee MOVE AntiVirus Configure McAfee MOVE AntiVirus settings to prevent malware access, keep your protection up to date, and scan for malware on client systems. McAfee MOVE AntiVirus provides two types of file scanning, on-access and on-demand. You can customize the scan settings based on your demands and requirements. The importance of creating a security strategy Protecting your virtual systems from malware requires a well-planned strategy: define threat prevention and detection, response to threats, and ongoing analysis and tuning. McAfee ePO features leveraged by McAfee MOVE AntiVirus McAfee MOVE AntiVirus leverages these features in the McAfee ePO environment. Automated installation and deployment Having multiple installation and deployment methods ensures that you can select the level of automation or customization that best suits your environment. Using policies in McAfee ePO Policies enable you to configure managed products and apply the configuration to systems in your network, all from the McAfee ePO console. Configuring permissions setsA permission set is a group of access rights granted to a user account for specific features of a product. Permission sets only grant permissions — they never remove a permission. Configuring McAfee MOVE AntiVirus settings Configure settings that apply to all components and features of McAfee MOVE AntiVirus in the MOVE AntiVirus Common 4.5.1 and MOVE AntiVirus 4.5.1 extensions. Scanning for threats on client computers Scanning files for threats when the user accesses them provides protection against intrusions when they occur. Periodically scanning areas of your system most susceptible to infection ensures complete protection. Configure deferred scan settings (Multi-Platform only) The deferred scan feature optimizes file scanning for files where the previous scanning timed out because of large file size, file structure, or file composition. Scan diagnosisYou can run the scan diagnostic tool or use McAfee ePO to calculate and display a list of files, extensions, and VMs that are scanned frequently. You can include these results in the path exclusion policies to exclude them from being scanned.