SYMANTEC TAMPER PROTECTION ALERT on Citrix Presentation Server 4.x
All farm Citrix Presentation Server 4.0 and later that make use of the CPU Utilization Management feature (in fact introduced by version 4.0 of Presentation Server) and use Symantec Antivirus Corporate Edition 10.x have had reports from the antivirus related to its new feature introduced by Ctrix.
The function of Tamper Protection Symantec Antivirus codci malicious server to intercept that could change the functioning of the antivirus.
The CPU Utilization Management is in effect change the way the system scheduler manages the processes and this is intercepted by Symantec Tamper Protection.
The document CTX113486 thoroughly analyze the problem and explains how to exclude certain processes (specifically those of Symantec Antivirus) by operating the CPU Utilization Management.
You must change the registry, by going under HKEY_LOCAL_MACHINE \ SOFTWARE \ Citrix \ CTXCPU and creating a new Multi-String Value in the format, whose name must be ProcessesToExclude. Situated inside this value must include all the processes to be excluded, compete with path, one per line.
Eventually you must restart the service Citrix CPU Utilization Mgmt / Resource Mgmt.
There are other articles on similar subjects.
