Endpoint Protection Monitoring Support

Introduction

The OptiTune agent is able to interface with a wide variety of endpoint protection products. There are 4 levels of integration that OptiTune provides:

Full Support - The OptiTune agent provides a complete integration with the endpoint protection product. In addition to supporting realtime alerts for newly detected malware, or antivirus status changes, OptiTune can schedule/start quick scans, full scans, signature updates, etc...
Basic Support - The OptiTune agent partially integrates with the endpoint protection product, and provides basic status information and realtime alerts for status changes.
For example, you can be alerted when the antivirus product's realtime protection is disabled, it experiences an error that requires attention, or its signatures become out of date.
Limited Support - The OptiTune agent partially integrates with the endpoint protection product, and provides limited status information and realtime alerts for status changes.
Only "Realtime Antivirus Status" and "Signatures Out Of Date Status" is supported.
Not Supported - The OptiTune agent does not integrate with the endpoint protection product. Only the name of the product will be shown.

Supported Features

The following table shows the features supported by each integration level:

Integration Feature	Full Support	Basic Support	Limited Support	Not Supported
Identify Product	Yes	Yes	Yes	Yes
View Product Status	Yes	Yes	Partial¹
Alerts for Product Status	Yes	Yes	Partial¹
View Detected Malware	Yes
Alerts for Detected Malware	Yes
Schedule Scans	Yes
Start Scans	Yes
Signature Updates	Yes

1: The Limited Support Integration only supports viewing and alerting on "Realtime Antivirus Status" (i.e. enabled/disabled/snoozed) and "Signatures Out Of Date Status"

Supported Products

Full Support

All versions of Microsoft's Windows Defender are included, for both desktop and server operating systems.

Supported versions include:

Windows Defender (on Windows 8, 10 and above)
Windows Defender (on Windows Server 2016 and above)
Microsoft Security Essentials (on Windows XP, Vista, and 7)
Microsoft Forefront
System Center Endpoint Protection

Basic Support

OptiTune provides 'Basic Support' integration on all versions of Windows 8 and Windows 10. Windows Server 2016 or Windows Server 2019 are not supported. The technology behind this support is provided by the Windows Security Center API, which works with almost all commercially available antivirus products. If the product provides status information to Windows itself, OptiTune will be able to retrieve this information and provide realtime alerts on this status information.

With the 'Basic Support' integration, you will be able to check for the following conditions for virtually any endpoint protection product:

Antivirus Scan Action Recommended
Antivirus Scan Action Needed
Antivirus Settings Action Recommended
Antivirus Settings Action Needed
Antivirus Updates Action Recommended
Antivirus Updates Action Needed
Realtime Antivirus Disabled
Realtime Antivirus Snoozed
Realtime Antivirus Expired
Realtime Antispyware Disabled
Realtime Antispyware Snoozed
Realtime Antispyware Expired
Antivirus Signatures Out Of Date

Limited Support

OptiTune provides 'Limited Support' integration on all versions of Windows XP, Windows Vista, and Windows 7. The technology behind this support is provided by WMI, which works with almost all commercially available antivirus products. If the product provides status information to Windows itself, OptiTune will be able to retrieve this information and provide realtime alerts on this status information.

With the 'Limited Support' integration, you will be able to check for the following conditions for virtually any endpoint protection product:

Realtime Antivirus Disabled
Realtime Antivirus Snoozed
Realtime Antivirus Expired
Antivirus Signatures Out Of Date

Not Supported

In cases where no antivirus product is installed, or OptiTune is unable to retrieve any status information, the support level is "Not Supported".