Skip to main content

Who is this article for?

Code42 for Enterprise
CrashPlan for Small Business

Code42 for Enterprise, yes.

CrashPlan for Small Business, yes.

This article applies to Code42 cloud environments.

Other available versions:

On-premisesLink: What version am I on?

HOME
GETTING STARTED
RELEASE NOTES
FAQS
SYSTEM STATUS
Code42 Support

Best practices for using Code42 with antivirus or EDR software

Who is this article for?

Code42 for Enterprise
CrashPlan for Small Business

Code42 for Enterprise, yes.

CrashPlan for Small Business, yes.

This article applies to Code42 cloud environments.

Other available versions:

On-premisesLink: What version am I on?

Overview

Code42 complements the functionality of antivirus and endpoint detection and response (EDR) applications. However, when the Code42 app and these applications are installed on the same device, they might compete for locked files and system resources, causing heavy CPU usage. 

As a result, we recommend configuring your antivirus or other endpoint security applications to exclude Code42. We also recommend excluding the cache files created by the antivirus and EDR applications from your Code42 backups. 

Follow the steps below if you are using applications like: 

  • Carbon Black Cb Defense
  • Carbon Black Cb Response
  • CrowdStrike Falcon
  • ESET
  • Kaspersky Endpoint Security for Business
  • McAfee AntiVirus
  • McAfee Endpoint Threat Defense and Response
  • Sophos Intercept X

Configure your antivirus and EDR to exclude Code42

We recommend excluding Code42 archive and cache files from antivirus and EDR monitoring. It's not useful to include these files because:

  • Backup archives are compressed and encrypted. Even if a backup archive contains a malicious file, antivirus or EDR software cannot inspect the contents of an archive. Furthermore, malicious files cannot activate or spread while in a compressed and encrypted form. Most importantly, backup archives only contain data that is already stored elsewhere. To detect malicious files, scan the source, not the backup archive.
  • Cache files are benign records of Code42 operations. They only contain information about Code42 activity, and therefore they can be ignored by scans.

Step 1: Exclude Code42 folders

Some antivirus and EDR applications operate by scanning folders. We recommend excluding Code42 folders from these scans. 

Windows folders

Mac folders

Linux folders

Step 2: Exclude the Code42 service

Antivirus and EDR applications might also monitor the processes running on your device, so we recommend excluding the Code42 service.

  • Windows: C:\ProgramData\CrashPlan\conf
    To view this hidden folder, open a file browser and paste the path in the address bar. If you installed per user, see the file and folder hierarchy for file locations.
  • Mac: /Library/Application Support/CrashPlan/conf/
    If you installed per user, see the file and folder hierarchy for file locations.
  • Linux: /usr/local/crashplan/conf

Configure Code42 to exclude your antivirus and EDR cache files

As antivirus and EDR applications scan your device, they create cache files. Depending on your file selection, Code42 may attempt to back up these cache files. We recommend excluding these caches from your file selection for several reasons:

  • The need to restore these cache files is very unlikely.
  • Antivirus and EDR applications might attempt to scan Code42's cache files of their cache, which causes an endless loop.

(Code42 for Enterprise) To exclude the cache from your backup:

  1. Consult your antivirus or EDR app's documentation to find the app's cache location.
  2. Sign in to the Code42 console.
  3. Go to Organizations > Active
  4. Verify that Use device defaults from parent is enabled for all of the organizations under the parent.  
  5. Select the parent organization.
  6. Click the action menu, and choose edit.
  7. Click the Backup tab. 
  8. Use the File Selection settings to exclude the cache location for all devices in your Code42 environment.
  9. Click Save

(CrashPlan for Small Business) To exclude the cache from your backup: 

  1. Consult your antivirus or EDR app's documentation to find the app's cache location.
  2. Open the Code42 app.
  3. Click Manage Files
  4. Change the file selection to exclude the cache location for your device.
  5. Click Save

You can exclude the cache location for all devices in your CrashPlan for Small Business environment from the Code42 console's Settings > Device Backup > Backup tab. 

Restore considerations

Restoring a large amount of files might cause your antivirus or EDR program to examine each file as Code42 restores it. This causes your restore job to take longer than usual. To speed up the restore, pause the antivirus or EDR program.