disable symantic hids

Case and point! Its completely annoying how many times we add a new environment into a xenapp farm or server environment and we need to disable HIDS simply because we have no freaking idea what the application is doing. Dont let the name – Heuristic Intrusion Detection Software fool you because it can block more than you want (and often does)!  As far as we are concerned, this is a must in your troubleshooting logic, and for testing ports, new software, etc…

So to that note, to disable HIDS in your x64 environment – run the following command.
C:\Program Files (x86)\symantec\Critical System Protection\Agent\IPS\bin\SISIPSService -i

To disable HIDS in your x86 environment – run the following command
C:\Program Files\symantec\Critical System Protection\Agent\IPS\bin\SISIPSService -i

Surely this will help you in your quest to get to the bottom of root cause analysis (RCA). We all know symantec has evolved into the black hole to us engineers, much like the network. Enjoy and please look at your firewall rules next in the event this fails. And make sure your turn Symantec HIDS back on when you are done.

T.Mims

As a Virtual Infrastructure “Engineer/Architect” type - I care deeply about implementing proper virtualization solutions and supporting end users. Technology is a challenge, and it's fun to navigate its waters. Writing code to automate things is a priority for me, and something I enjoy doing when I'm not working. -- Feel free to swing by our SourceForge site and check out some of our efforts. Until then - cheers friends!

You may also like...

1 Response

  1. D.Collins says:

    I have had nothing but issues with the last HIDS update on our XenApp 6.5 farm. Symantec products are not happy with Citrix. We had to disable on several XA servers and DDC’s.

Leave a Reply

Your email address will not be published. Required fields are marked *

You may use these HTML tags and attributes: <a href="" title=""> <abbr title=""> <acronym title=""> <b> <blockquote cite=""> <cite> <code> <del datetime=""> <em> <i> <q cite=""> <s> <strike> <strong>