SQL Server and CloudStrike

  • Has anyone had issues with CloudStrike Anti-Virus on their SQL Servers? I've had a client install CloudStrike, and within 30 minutes the SQL Server became unresponsive and stopped accepting new user connections. The server has been running without issues for about 2 years. We had to do a forced Service Shut down from an existing connection (SHUTDOWN WITH NOWAIT).

    30 minutes later the service hung again, and we got the security team to disable the AI functionality in CloudStrike, and did another service restart, after which the server ran for about 12 hours before giving problems again. The only connection I could get through was Dedicated Admin.

    There are no error messages in any of the normal Windows or SQL logs, although I can't see what's in the CloudStrike log.

    The current plan is to uninstall CloudStrike and see if this solves the problem, but that means the AV is gone.

    Cheers

    Leo
    Nothing in life is ever so complicated that with a little work it can't be made more complicated.

  • Yeah there is a big thing with CrowdStrike at the moment, you need to ensure the exclusions are all set right for it and it is operating outside the SQL working set.

    https://support.microsoft.com/en-us/topic/how-to-choose-antivirus-software-to-run-on-computers-that-are-running-sql-server-feda079b-3e24-186b-945a-3051f6f3a95b

    https://docs.microsoft.com/en-us/troubleshoot/sql/performance/performance-consistency-issues-filter-drivers-modules

     

  • This was removed by the editor as SPAM

  • This was removed by the editor as SPAM

  • This was removed by the editor as SPAM

Viewing 5 posts - 1 through 4 (of 4 total)

You must be logged in to reply to this topic. Login to reply