Running Apex One/OfficeScan and Windows defender on the same machine can lead to the following effects:
- Slow login
- Application lockup
- Machine unresponsiveness/hang
You may refer to this documentation for updated Microsoft Window's Compatibility to 3rd party Antivirus. Recommended settings are indicated as well.
If any issue persists, Trend Micro recommends the following to resolve compatibility issues encountered with Windows Defender and Apex One/OfficeScan:
Trend Micro recommends deactivating Windows Defender to lessen resource consumption for your endpoints as well as ensure that Apex One/OfficeScan's security features works in optimal condition by eliminating potential conflicts with Windows Defender. The best way to do this is to deactivate Windows Defender globally via the Microsoft Group Policy Management (GPO) when using Apex One/OfficeScan.
On the Server Manager Dashboard, click Tools, then click Group Policy Management.
You may also use Windows key + R > gpmc.msc to open the Group Policy Management folder.
Navigate to Group Policy Management > Forest > Domains > your Domain > Group Policy Objects then go to the Policy that needs to be adjusted.
Right-click the target policy, then click Edit. The Group Policy Management Editor window will appear.For illustration purposes, the image shows making changes to the Default Domain Policy. You may create an additional policy instead of modifying the Default Domain Policy.
Navigate to Computer Configuration > Policies > Windows Settings > Administrative Templates Policy definitions > Windows Components > Windows Defender.In the Windows 10 April 2018 Update, this path was changed from Windows Defender to Windows Defender Antivirus. The path listed here was subject to change along with the Windows update. Please get the GPO reference file from Microsoft and look for correct path here: Group Policy Settings Reference for Windows and Windows Server.
The Windows Defender page will appear.
Under Settings, click Turn off Windows Defender. When the Turn off Windows Defender window appears, tick the Enabled radio button, click Apply then click OK.
The Domain member machines will pick up the settings after the next reboot or you can update them immediately using ‘Windows key + R’ > ‘gpupdate /force’.
Refer to the following Microsoft articles for proper configuration of machines with tamper protection: