Below are the information about the compatibility depending on the license keys:

• NSX 6.2.3 and higher versions are activated by NSX Advanced or Enterprise license keys.
  This is compatible with Deep Security 9.5 Service Pack (SP) 1 and 9.6 SP1. You may refer to the detailed Deep Security and VMware compatibility matrix table. Note that Deep Security 10.0 and above only supports NSX 6.2.4 or later version.
• NSX 6.2.3 and higher versions are activated by NSX for vShield Endpoint or Standard license key.
  In general, it is compatible with Deep Security 9.5 SP1 and 9.6 SP1, and higher versions. Note that Deep Security 10.0 and above only supports NSX 6.2.4 or later version. However, there are known limitations:
  • Before Deep Security Manager 11.0, when deploying DSVA from NSX manager with NSX for vShield Endpoint license, the "VMware Network Fabric" missing dependency alert will pop up. It is suggested to ignore the alert and force the DSVA deployment by clicking Failed and then click Resolve. The DSVA deployment will be successful, but the status of Trend Micro Deep Security still shows "Failed". You can ignore it as no Deep Security function actually fails.

    

    

  • The Event-Based Task of default NSX Security Group Change will not be triggered until manually synchronized with vCenter/NSX Manager. For example, when a computer is moved from an unprotected security group to a protected security group, the protection will not be triggered automatically until the next manual NSX sync. The reason is that Deep Security Manager cannot reliably determine the NSX Security Group membership with NSX for vShield Endpoint and Standard licensed. Therefore, Event-Based Tasks using this property of the virtual machine (VM) is not supported.

    

    

  • When you need to use Deep Security Firewall, DPI, WRS, and Log Inspection function, it is required to implement Combined Mode.