Sign In with your
Trend Micro Account
Need Help?
Need More Help?

Create a technical support case if you need further support.

Deep Security and VMware compatibility matrix

    • Updated:
    • 26 Sep 2016
    • Product/Version:
    • Deep Security 9.0
    • Deep Security 9.5
    • Deep Security 9.6
    • Platform:
    • VMware ESX 5.0
    • VMware ESXi 5.0
    • VMware ESXi 5.1
    • VMware ESXi 5.5
Summary

This compatibility matrix covers deployment options when the Deep Security Virtual Appliance (DSVA) is used to integrate with and protect VMware environments.

For each Deep Security release, the Deep Security version indicates the version of Deep Security Manager (DSM) being used. Each DSM version may support its current version as well as the older versions of DSVA.

Hypervisor-based Anti-malware and System Security (Integrity Monitoring) are enabled using VMware tools on Windows platforms. For the supported Windows platform, check the VMware article: Guest operating systems that are supported for vShield Endpoint Thin Agent (1036847).

Hypervisor-based protection using Anti-malware and System Security (Integrity Monitoring) are currently unavailable for Linux platforms.

Hypervisor-based Network Security (Intrusion prevention, Firewall, and Web Reputation) is available to protect both Windows and Linux platforms using NSX and vCNS.

Deep Security Agents (DSA) are also available to protect a wide variety of guest virtual machines. For more information, refer to the following documents:

For further information on VMware product compatibility, check the VMware product interoperability matrix.

Details
Public

vSphere 6.0

Deep Security integrates with the VMware vCNS or VMware NSX in the protection configurations described below:

vCloud Networking & Security (vCNS)

  • Hypervisor-based Anti-malware and System Security (Integrity Monitoring) using the 9.6 DSVA
  • Combined Mode

    Combined mode is a mode where the 9.6 DSVA and DSA are used together to offer full protection of a system. When using Combined mode, the 9.6 DSVA will be used for Anti-malware scanning and Integrity Monitoring scanning. The Deep Security agent will be used for Intrusion Prevention, Firewall, Web Reputation and Log Inspection.

Compatibility Matrix:

 ESXi
vCNS/vShield Manager
6.0 U26.0 U1b6.0 U1a6.0 U16.0
5.5.4.3YYYYY
5.5.4.2YYYYY
5.5.4.1YYYYY
5.5.4YYYYY
5.5.3.1NNNNN
5.5.3NNNNN
5.5.2.1NNNNN
5.5.2NNNNN
5.5.1NNNNN
5.5.aNNNNN
5.5NNNNN

NSX

  • Hypervisor-based Anti-malware, System Security (Integrity Monitoring) and Network Security using the 9.6 DSVA

Compatibility Matrix:

 ESXi
NSX6.0 U26.0 U1b6.0 U1a6.0 U16.0
6.2.4*YYYYY
6.2.3a*YYYYY
6.2.3*YYYYY
6.2.2YYYYY
6.2.1YYYYY
6.2YYYYY
6.1.7YYYYY
6.1.6YYYYY
6.1.5YYYYY
6.1.4YYYYY
6.1.3YYYYY
6.1.2NNNNN
6.1.1NNNNN
6.1NNNNN

* No limitation or known issues if NSX 6.2.3, NSX 6.2.3a, or NSX 6.2.4 is activated by NSX Standard, Advanced, or Enterprise license key.
In order to support Windows 10 VM or Windows 10 RedStone VM, DSVA 9.6 is required to be upgraded to B7314 and VMware Tools 10.0.9 is required too.
If activated by NSX for vShield Endpoint license key, refer to this article: Compatibility between VMware NSX 6.2.3 and NSX 6.2.4 with Deep Security.

vSphere 5.5

Deep Security integrates with the VMware vCNS or VMware NSX in the protection configurations described below:

vCloud Networking & Security (vCNS)

  • Hypervisor-based Anti-malware and System Security (Integrity Monitoring) using the 9.6 DSVA
  • Hypervisor-based Anti-malware, System Security (Integrity Monitoring), and Network Security using the 9.5 SP1 DSVA
  • Combined Mode

    Combined mode is a mode where DSVA and DSA are used together to offer full protection of a system. When using Combined mode, DSVA will be used for Anti-malware scanning and Integrity Monitoring scanning. The Deep Security agent will be used for Intrusion Prevention, Firewall, Web Reputation, and Log Inspection.

Compatibility Matrix:

 ESXi
vCNS/vShield Manager5.5U3b5.5U3a5.5U35.5U25.5U15.5
5.5.4.3YYYYYY
5.5.4.2YYYYYY
5.5.4.1YYYYYY
5.5.4YYYYYY
5.5.3.1YYYYYY
5.5.3YYYYYY
5.5.2.1NNNNYY
5.5.2NNNNYY
5.5.1NNNNYY
5.5aNNNNYY
5.5NNNNYY

NSX

  • Hypervisor-based Anti-malware, System Security (Integrity Monitoring), and Network Security using the 9.6 DSVA

Compatibility Matrix:

 ESXi
NSX5.5U3b5.5U3a5.5U35.5U25.5U15.5
6.2.4*YYYYYY
6.2.3a*YYYYYY
6.2.3*YYYYYY
6.2.2YYYYYY
6.2.1YYYYYY
6.2YYYYYY
6.1.7YYYYYY
6.1.6YYYYYY
6.1.5YYYYYY
6.1.4YYYYYY
6.1.3YYYYYY
6.1.2YYYYYY
6.1.1YYYYYY
6.1NNNYYY

* No limitation or known issues if NSX 6.2.3, NSX 6.2.3a, or NSX 6.2.4 is activated by NSX Standard, Advanced, or Enterprise license key.
In order to support Windows 10 VM or Windows 10 RedStone VM, DSVA 9.6 is required to be upgraded to B7314 and VMware Tools 10.0.9 is required too.
If activated by NSX for vShield Endpoint license key, refer to this article: Compatibility between VMware NSX 6.2.3 and NSX 6.2.4 with Deep Security.

Deep Security integrates with the VMware vCNS or VMware NSX in the protection configurations described below:

vCloud Networking & Security (vCNS)

  • Hypervisor-based Anti-malware, System Security (Integrity Monitoring), and Network Security using the 9.5 SP1 DSVA

Compatibility Matrix:

 ESXi
vCNS/vShield Manager
5.5U3b5.5U3a5.5U35.5U25.5U15.5
5.5.4.3YYYYYY
5.5.4.2YYYYYY
5.5.4.1YYYYYY
5.5.4YYYYYY
5.5.3.1YYYYYY
5.5.3YYYYYY
5.5.2.1NNNNYY
5.5.2NNNNYY
5.5.1NNNNYY
5.5aNNNNYY
5.5NNNNYY
5.1.4.3NNNNNN
5.1.4.1NNNNNN
5.1.4NNNNNN
5.1.3NNNNNN
5.1.2aNNNNNN
5.1.2NNNNNN
5.1.1NNNNNN
5.1NNNNNN
5.0.2NNNNNN
5.0.1NNNNNN
5.0NNNNNN
1.xNNNNNN

NSX

  • Hypervisor-based Anti-malware, System Security (Integrity Monitoring), and Network Security using the 9.5 SP1 DSVA

Compatibility Matrix:

 ESXi
NSX5.5U3b5.5U3a5.5U35.5U25.5U15.5
6.2.4*YYYYYY
6.2.3a*YYYYYY
6.2.3*YYYYYY
6.2.2YYYYYY
6.2.1YYYYYY
6.2YYYYYY
6.1.7YYYYYY
6.1.6YYYYYY
6.1.5YYYYYY
6.1.4YYYYYY
6.1.3YYYYYY
6.1.2YYYYYY
6.1.1YYYYYY
6.1NNNYYY
6.0.xNNNNNN

* No limitation or known issues if NSX 6.2.3, NSX 6.2.3a, or NSX 6.2.4 is activated by NSX Standard, Advanced, or Enterprise license key.
If activated by NSX for vShield Endpoint license key, refer to this article: Compatibility between VMware NSX 6.2.3 and NSX 6.2.4 with Deep Security.

Deep Security integrates with the VMware vCNS in the protection configurations described below:

vCloud Networking & Security (vCNS)

  • Hypervisor-based Anti-malware, System Security (Integrity Monitoring), and Network Security using the 9.0 SP1 DSVA

Compatibility Matrix:

 ESXi
vCNS/vShield Manager5.5U3b5.5U3a5.5U35.5U25.5U15.5
5.5.4.3YAYAYAYAYAYA
5.5.4.2YAYAYAYAYAYA
5.5.4.1YAYAYAYAYAYA
5.5.4YAYAYAYAYAYA
5.5.3.1YAYAYAYAYAYA
5.5.3YAYAYAYAYAYA
5.5.2.1NNNNYAYA
5.5.2NNNNYAYA
5.5.1NNNNYAYA
5.5aNNNNYAYA
5.5NNNNYAYA
5.1.4.3NNNNNN
5.1.4.1NNNNNN
5.1.4NNNNNN
5.1.3NNNNNN
5.1.2aNNNNNN
5.1.2NNNNNN
5.1.1NNNNNN
5.1NNNNNN
5.0.2NNNNNN
5.0.1NNNNNN
5.0NNNNNN
1.xNNNNNN

ARequires Deep Security 9.0 SP1 Patch 2 or above

vSphere 5.1/5.0

Deep Security integrates with the VMware vCNS in the protection configurations described below:

vCloud Networking & Security (vCNS)

  • Hypervisor-based Anti-malware and System Security (Integrity Monitoring) using the 9.6 DSVA
  • Hypervisor-based Anti-malware, System Security (Integrity Monitoring), and Network Security using the 9.5 SP1 DSVA
  • Combined Mode

    Combined mode is a mode where DSVA and DSA are used together to offer full protection of a system. When using Combined mode, DSVA will be used for Anti-malware scanning and Integrity Monitoring scanning. The Deep Security agent will be used for Intrusion Prevention, Firewall, Web Reputation, and Log Inspection.

 
The compatibility matrix is not available because vSphere 5.1/5.0 does not support Deep Security 9.6.

Deep Security integrates with the VMware vCNS in the protection configurations described below:

vCloud Networking & Security (vCNS)

  • Hypervisor-based Anti-malware, System Security (Integrity Monitoring), and Network Security using the 9.5 SP1 DSVA

Compatibility Matrix:

 ESXi
vCNS/vShield Manager
5.1U35.1U25.1U15.15.0U35.0U25.0U15.0
5.5.4.3YYYYYYYY
5.5.4.2YYYYYYYY
5.5.4.1YYYYYYYY
5.5.4YYYYYYYY
5.5.3.1YYYYYYYY
5.5.3YYYYYYYY
5.5.2.1YYYYYYYY
5.5.2YYYYYYYY
5.5.1YYYYYYYY
5.5aYYYYYYYY
5.5YYYYYYYY
5.1.4.3YYYYYYYY
5.1.4.1YYYYYYYY
5.1.4YYYYYYYY
5.1.3YYYYYYYY
5.1.2aYYYYYYYY
5.1.2YYYYYYYY
5.1.1YYYYYYYY
5.1YYYYYYYY
5.0.2NNNNYYYY
5.0.1NNNNYYYY
5.0NNNNYYYY
1.xNNNNNNNN

Deep Security integrates with the VMware vCNS in the protection configurations described below:

vCloud Networking & Security (vCNS)

  • Hypervisor-based Anti-malware, System Security (Integrity Monitoring), and Network Security using the 9.0 SP1 DSVA

Compatibility Matrix:

 ESXi
vCNS/vShield Manager
5.1U35.1U25.1U15.15.0U35.0U25.0U15.0
5.5.4.3YYYYYYYY
5.5.4.2YYYYYYYY
5.5.4.1YYYYYYYY
5.5.4YYYYYYYY
5.5.3.1YYYYYYYY
5.5.3YYYYYYYY
5.5.2.1YYYYYYYY
5.5.2YYYYYYYY
5.5.1YYYYYYYY
5.5aYYYYYYYY
5.5YYYYYYYY
5.1.4.3YYYYYYYY
5.1.4.1YYYYYYYY
5.1.4YYYYYYYY
5.1.3YYYYYYYY
5.1.2aYYYYYYYY
5.1.2YYYYYYYY
5.1.1YNYYYYYY
5.1YNYYYYYY
5.0.2NNNNYYYY
5.0.1NNNNYYYY
5.0NNNNYYYYB
1.xNNNNNNNN

BRequires ESXi500-201109401-BG: Updates esx-base and ESXi500-201109402-BG: Updates tools-light.

Premium
Internal
Rating:
Category:
Configure
Solution Id:
1060499
Feedback
Did this article help you?

Thank you for your feedback!

To help us improve the quality of this article, please leave your email here so we can clarify further your feedback, if neccessary:
We will not send you spam or share your email address.

*This form is automated system. General questions, technical, sales, and product-related issues submitted through this form will not be answered.

If you need additional help, you may try to contact the support team. Contact Support


To help us improve the quality of this article, please leave your email here so we can clarify further your feedback, if neccessary:
We will not send you spam or share your email address.

*This form is automated system. General questions, technical, sales, and product-related issues submitted through this form will not be answered.


Need More Help?

Create a technical support case if you need further support.