How to configure Windows Defender to scan Virtual Machine Backup sets with Backup Exec Malware scanner

book

Article ID: 100060575

calendar_today

Updated On:

Description

Best Practices

  • It is recommended to not have any other antivirus on Backup Exec if Windows Defender is enabled for malware scan.
  • It is recommended to keep Windows Defender virus definitions updated on the Backup Exec server when malware scan is used.
  • It is recommended to use default values in job and configuration sets while running the scan job.
  • Limitation of malware scan: Malware scan cannot be run if the backup set is created using the Faster Processing method for Hyper-V.

Error Message

An error occurred while trying to get the status of Microsoft Defender on the machine. This may be because the antivirus scan for Microsoft Defender is not properly configured.

How to Run a Malware Scan

To run a malware scan on a backup set:

  1. On the Backup and Restore tab or the Storage tab, double-click the VMware vCenter or Hyper-V server or the storage device that is related to the backup sets.
  2. In the left pane, click Backup Sets.
  3. To run malware scan for a single backup set, right-click the backup set.
  4. In Backup Sets, enter the malware scan job name.
  5. Details of the backup set and the backup set chain are displayed.
  6. In the left pane, click Schedule, and then select one of the following scheduling options:
    • Run now: Lets you run the malware scan job immediately.
    • Run on: Lets you set the date and time to run the malware scan job.
    • Create without a schedule: Creates the malware scan job without scheduling it. When you use this option, the scan does not run at the time of creation. The scan job remains unscheduled until you choose to run it.
    • Submit job on hold: Submits the malware scan job, but does not run the job until you change the job's hold status.
  7. In the left pane, select Notification, and then select recipients to notify when the malware scan job completes.
  8. Click OK.

Cause

Microsoft Windows Defender could be in a disabled state for various reasons. It could be due to organization policy, or it could get disabled when a 3rd party anti-virus scanner is installed. It could also have been manually disabled.

 

Resolution

1) Turn off any third-party scanner if enabled.

2) Refer to steps in the link below to turn on Microsoft Defender 
Turn on Microsoft Defender Antivirus on enrolled device | Microsoft Learn

3) To make sure MS Defender is active, run the following PowerShell command:
Get-MpComputerStatus | select AntispywareEnabled


 

Issue/Introduction

Backup Exec jobs pertaining to On-Demand Malware scan or Restore-with-scan fail with error "Microsoft Defender is not properly configured." Backup Exec 23 introduces Malware Scan for virtual machine backup sets
Backup Exec lets you run malware scan on VMware and Hyper-V virtual machine backup sets and can be triggered on an ad hoc basis or before the restore operation.
Backup Exec currently uses Windows Defender to run the malware scan.

Best Practices

  • It is recommended to not have any other antivirus on Backup Exec if Windows Defender is enabled for malware scan.
  • It is recommended to keep Windows Defender virus definitions updated on the Backup Exec server when malware scan is used.
  • It is recommended to use default values in job and configuration sets while running the scan job.
  • Limitation of malware scan: Malware scan cannot be run if the backup set is created using the Faster Processing method for Hyper-V.

Additional Information

ETrack: 4134337
Powered by Wolken Software