Best practices for SecureAuth IdP antivirus exclusions list

Antivirus products can cause operational problems with IIS, such as returning empty files when compression is enabled or performance issues by recycling applications unnecessarily.

Since SecureAuth IdP runs on IIS, the application can be impacted by these issues. As a preventative measure, SecureAuth recommends excluding certain directories from antivirus solutions when performing real-time scanning on the appliance.

Applies to

SecureAuth IdP release	Server Operating System
SecureAuth IdP 9.2 or later	Windows Server 2016 Windows Server 2019

Paths to exclude

Add these paths to the antivirus exclusions list:

C:\Windows\Microsoft.NET\Framework

C:\Windows\Microsoft.NET\Framework64

C:\Windows\System32\inetsrv\config

C:\inetpub\wwwroot

C:\inetpub\temp

D:\inetpub\wwwroot

D:\inetpub\temp

D:\inetpub\wwwroot

D:\inetpub\temp

D:\SecureAuth

D:\SecureAuthScepService

D:\SecureauthWS

Additional resources

Technet: Windows Antivirus Exclusion Recommendations (Servers, Clients, and Role-Specific)
MSDN: ASP.net Anti-virus Exclusion List
Microsoft: Folders to exclude from antivirus scanning in ASP.NET apps

In this section:

Best practices for SecureAuth IdP antivirus exclusions list

Applies to

Paths to exclude

Additional resources

Search results