ON PREMISES SOLUTIONS

Veeam Backup & Replication

Overview

The GravityZone integration with Veeam Backup & Replication v11a aims to help you discover security issues on virtual machines before restoring the machines to the production environment.

For this purpose, Bitdefender Endpoint Security Tools (BEST) performs a complete scan for various threats. If the machine is clean, then Veeam Backup & Replication restores it. If BEST detects a threat, Veeam Backup & Replication can either abort the restore process or restore the machine or its disks with specific restrictions, depending on the restore settings.

Prerequisites

Configuration steps

For Veeam Backup & Replication to decode the scanning status from BEST, you need to modify a specific Veeam Backup & Replication configuration file. To do so, follow these steps:

  1. On the mount server, go to: %ProgramFiles%\Common Files\Veeam\Backup and Replication\Mount Service.

  2. Open the AntivirusInfos.xml file.

  3. In the <Antiviruses> section of the file, include this structure:

    <!--Bitdefender Endpoint Security Tools-->
    
        <AntivirusInfo Name='Bitdefender Endpoint Security Tools' IsPortableSoftware='true'
    ExecutableFilePath='%ProgramFiles%\Bitdefender\Endpoint Security\product.console.exe' CommandLineParameters= ' /c
    FileScan.OnDemand.RunScanTask custom path=%Path%' RegPath='' ServiceName='' ThreatExistsRegEx='Remaining issues:\s[1-9]\d*|Resolved
    issues:\s[1-9]\d*' IsParallelScanAvailable='false'>
    
            <ExitCodes>
    
                <ExitCode Type='Success' Description='Command executed successfully'>0</ExitCode>
    
                <ExitCode Type='Error' Description='Invalid Parameter'>87</ExitCode>
    
                <ExitCode Type='Error' Description='Bad Arguments'>160</ExitCode>
    
                <ExitCode Type='Error' Description='Function Failed – an error occurred while executing the command'>1627</ExitCode>
    
                <ExitCode Type='Infected' Description='A threat was detected on the system'>-526</ExitCode>
    
            </ExitCodes>
    
        </AntivirusInfo>
    
  4. Save the file.

Once the file is saved, you can proceed with the rest of the steps described in How Secure Restore Works in the Veeam documentation.