Deep Security 11 has reached end of support. Use the version selector (above) to see more recent versions of the Help Center.

Supported features by platform

The tables below list the features available for each OS platform of Deep Security Agent 11.0:

Microsoft Windows (11.0 agent)
Red Hat Enterprise Linux (11.0 agent)
CentOS Linux (11.0 agent)
Oracle Linux (11.0 agent)
SUSE Linux (11.0 agent)
Ubuntu Linux (11.0 agent)
Debian Linux (11.0 agent)
CloudLinux (11.0 agent)
Solaris (11.0 agent)
Amazon Linux (11.0 agent)
Deep Security Virtual Appliance (NSX) supported guest OS's

Older agents are compatible with other platforms (although they don't support new features on Deep Security Manager 11.0). See their Deep Security Agent platforms , Deep Security Agent release notes, and supported features lists:

Deep Security Agent 10.0 (and newer) supported features: In the drop-down menu above, select that version of Deep Security.
Deep Security Agent 9.6 Service Pack 1 supported features (PDF)

Microsoft Windows (11.0 agent)

Deep Security Agent is supported with both Full/Desktop Experience and Server Core installations of Windows Server 2012 and later (any exceptions for particular features are noted in the table below). For Windows Server 2008 and 2008 R2, only Full installations are supported.

	Anti-Malware					Web Reputation Service	Firewall	Intrusion Prevention System		Integrity Monitoring						Log Inspection	Application Control	Recomm-endation Scan	Relay	Scanner	FIPS mode
	Real-time				On-demand					Real-time			On-demand
	Feature set 1	Process memory scan, Registry scan	Behavior monitoring	Predictive Machine Learning	Feature set 1			Unencrypted Traffic	SSL Encrypted Traffic	File Scans	Directory Scans	Scans of Running Services, Processes, Listening Ports	File and Directory Scans	Registry Scans	Scans of Running Services, Processes, Listening Ports
Windows 7 32	✔	✔	✔	✔	✔	✔	✔	✔	✔	✔	✔	✔	✔	✔	✔	✔		✔
Windows 7 64	✔	✔	✔	✔	✔	✔	✔	✔	✔	✔	✔	✔	✔	✔	✔	✔		✔	✔		✔
Windows Server 2008 32	✔	✔	✔	✔	✔	✔	✔	✔	✔	✔	✔	✔	✔	✔	✔	✔		✔
Windows Server 2008 64	✔	✔	✔	✔	✔	✔	✔	✔	✔	✔	✔	✔	✔	✔	✔	✔		✔	✔		✔
Windows Server 2008 R2 64	✔	✔	✔	✔	✔	✔	✔	✔	✔	✔	✔	✔	✔	✔	✔	✔	✔	✔	✔	✔	✔
Windows 8 32	✔	✔	✔	✔	✔	✔	✔	✔	✔	✔	✔	✔	✔	✔	✔	✔		✔
Windows 8 64	✔	✔	✔	✔	✔	✔	✔	✔	✔	✔	✔	✔	✔	✔	✔	✔		✔	✔		✔
Windows 8.1 32	✔	✔	✔	✔	✔	✔	✔	✔	✔	✔	✔	✔	✔	✔	✔	✔		✔
Windows 8.1 64	✔	✔	✔	✔	✔	✔	✔	✔	✔	✔	✔	✔	✔	✔	✔	✔		✔	✔		✔
Windows 10 32 (2)	✔	✔	✔	✔	✔	✔	✔	✔	✔	✔	✔	✔	✔	✔	✔	✔		✔
Windows 10 64 (2)	✔	✔	✔	✔	✔	✔	✔	✔	✔	✔	✔	✔	✔	✔	✔	✔		✔	✔		✔
Windows Server 2012 64	✔	✔	✔	✔	✔	✔	✔	✔	✔	✔	✔	✔	✔	✔	✔	✔	✔ (⁸)	✔	✔		✔
Windows Server 2012 R2 64	✔	✔	✔	✔	✔	✔	✔	✔	✔	✔	✔	✔	✔	✔	✔	✔	✔	✔	✔	✔ (⁸)	✔
Windows Server 2016 (LTSC, version 1607) 64	✔	✔	✔	✔	✔	✔	✔	✔	✔	✔	✔	✔	✔	✔	✔	✔	✔	✔	✔	✔(3)	✔
Windows Server Core (SAC, version 1709) 64 (2)	✔	✔	✔	✔	✔	✔	✔	✔	✔	✔	✔	✔	✔	✔	✔	✔	✔	✔	✔		✔
Windows Server, version 1803 64 (5)	✔	✔	✔	✔	✔	✔	✔	✔	✔	✔	✔	✔	✔	✔	✔	✔	✔	✔	✔		✔
Windows Server 2019 (LTSC, version 1809 or 1903) 64 (5)	✔	✔	✔	✔	✔	✔	✔	✔	✔	✔	✔	✔	✔	✔	✔	✔	✔	✔	✔		✔

Red Hat Enterprise Linux (11.0 agent)

	Anti-Malware					Web Reputation Service	Firewall	Intrusion Prevention System		Integrity Monitoring						Log Inspection	Application Control	Recomm- endation Scan	Relay	Scanner	FIPS mode
	Real-time				On-demand					Real-time			On-demand
	Feature set 1	Process memory scan, Registry scan	Behavior monitoring	Predictive Machine Learning	Feature set 1			Unencrypted Traffic	SSL Encrypted Traffic	File Scans	Directory Scans	Scans of Running Services, Processes, Listening Ports	File and Directory Scans	Registry Scans	Scans of Running Services, Processes, Listening Ports
Red Hat Enterprise Linux 6 32	✔ (⁷)				✔		✔	✔	✔			✔	✔		✔	✔		✔
Red Hat Enterprise Linux 6 64	✔(⁷)				✔	✔	✔	✔	✔	✔(1)		✔	✔		✔	✔	✔	✔	✔	✔
Red Hat Enterprise Linux 7 64	✔(⁷)				✔	✔	✔	✔	✔	✔(1)		✔	✔		✔	✔	✔	✔	✔	✔	✔
Red Hat Enterprise Linux 8 64	✔(⁷)				✔	✔	✔	✔	✔	✔(1)		✔	✔		✔	✔	✔	✔	✔		✔

CentOS Linux (11.0 agent)

	Anti-Malware					Web Reputation Service	Firewall	Intrusion Prevention System		Integrity Monitoring						Log Inspection	Application Control	Recomm- endation Scan	Relay	Scanner	FIPS mode
	Real-time				On-demand					Real-time			On-demand
	Feature set 1	Process memory scan, Registry scan	Behavior monitoring	Predictive Machine Learning	Feature set 1			Unencrypted Traffic	SSL Encrypted Traffic	File Scans	Directory Scans	Scans of Running Services, Processes, Listening Ports	File and Directory Scans	Registry Scans	Scans of Running Services, Processes, Listening Ports
CentOS 6 32	✔(⁷)				✔		✔	✔	✔			✔	✔		✔	✔		✔
CentOS 6 64	✔(⁷)				✔	✔	✔	✔	✔	✔(1)		✔	✔		✔	✔	✔	✔	✔
CentOS 7 64	✔(⁷)				✔	✔	✔	✔	✔	✔(1)		✔	✔		✔	✔	✔	✔	✔		✔
CentOS 8 (64-bit)	✔(⁷)				✔	✔	✔	✔	✔	✔(1)		✔	✔		✔	✔	✔	✔	✔		✔

Oracle Linux (11.0 agent)

	Anti-Malware					Web Reputation Service	Firewall	Intrusion Prevention System		Integrity Monitoring						Log Inspection	Application Control	Recomm- endation Scan	Relay	Scanner	FIPS mode
	Real-time				On-demand					Real-time			On-demand
	Feature set 1	Process memory scan, Registry scan	Behavior monitoring	Predictive Machine Learning	Feature set 1			Unencrypted Traffic	SSL Encrypted Traffic	File Scans	Directory Scans	Scans of Running Services, Processes, Listening Ports	File and Directory Scans	Registry Scans	Scans of Running Services, Processes, Listening Ports
Oracle Linux 6 32					✔		✔	✔	✔			✔	✔		✔	✔		✔
Oracle Linux 6 64	✔(⁷)				✔	✔	✔	✔	✔	✔(1)		✔	✔		✔	✔	✔	✔	✔
Oracle Linux 7 64	✔(⁷)				✔	✔	✔	✔	✔	✔(1)		✔	✔		✔	✔	✔	✔	✔
Oracle Linux 8 64	✔(⁷)				✔	✔	✔	✔	✔	✔(1)		✔	✔		✔	✔	✔	✔	✔

SUSE Linux (11.0 agent)

	Anti-Malware					Web Reputation Service	Firewall	Intrusion Prevention System		Integrity Monitoring						Log Inspection	Application Control	Recomm- endation Scan	Relay	Scanner	FIPS mode
	Real-time				On-demand					Real-time			On-demand
	Feature set 1	Process memory scan, Registry scan	Behavior monitoring	Predictive Machine Learning	Feature set 1			Unencrypted Traffic	SSL Encrypted Traffic	File Scans	Directory Scans	Scans of Running Services, Processes, Listening Ports	File and Directory Scans	Registry Scans	Scans of Running Services, Processes, Listening Ports
SUSE Linux Enterprise Server 11 (32‑bit)	✔(⁷)				✔		✔	✔	✔			✔	✔		✔	✔		✔
SUSE Linux Enterprise Server 11 (64‑bit)	✔(⁷)				✔	✔	✔	✔	✔			✔	✔		✔	✔		✔	✔	✔
SUSE Linux Enterprise Server 12 SP1, SP2, SP3, SP4, SP5 (64‑bit)	✔(⁷)				✔	✔	✔	✔	✔	✔(1)		✔	✔		✔	✔	✔	✔	✔	✔
SUSE Linux Enterprise Server 15 SP1, SP2, SP3 (64‑bit)(10)	✔(⁷)				✔	✔	✔	✔	✔	✔(1)		✔	✔		✔	✔	✔	✔	✔

Ubuntu Linux (11.0 agent)

	Anti-Malware					Web Reputation Service	Firewall	Intrusion Prevention System		Integrity Monitoring						Log Inspection	Application Control	Recomm- endation Scan	Relay	Scanner	FIPS mode
	Real-time				On-demand					Real-time			On-demand
	Feature set 1	Process memory scan, Registry scan	Behavior monitoring	Predictive Machine Learning	Feature set 1			Unencrypted Traffic	SSL Encrypted Traffic	File Scans	Directory Scans	Scans of Running Services, Processes, Listening Ports	File and Directory Scans	Registry Scans	Scans of Running Services, Processes, Listening Ports
Ubuntu 16 64	✔(⁷)				✔	✔	✔	✔	✔	✔(1)		✔	✔		✔	✔	✔	✔	✔
Ubuntu 18 64 (4)	✔(⁷)				✔	✔	✔	✔	✔	✔(1)		✔	✔		✔	✔	✔	✔	✔
Ubuntu 20 64 (9)(10)	✔(⁷)				✔	✔	✔	✔	✔	✔(1)		✔	✔		✔	✔	✔	✔	✔

Debian Linux (11.0 agent)

	Anti-Malware					Web Reputation Service	Firewall	Intrusion Prevention System		Integrity Monitoring						Log Inspection	Application Control	Recomm- endation Scan	Relay	Scanner	FIPS mode
	Real-time				On-demand					Real-time			On-demand
	Feature set 1	Process memory scan, Registry scan	Behavior monitoring	Predictive Machine Learning	Feature set 1			Unencrypted Traffic	SSL Encrypted Traffic	File Scans	Directory Scans	Scans of Running Services, Processes, Listening Ports	File and Directory Scans	Registry Scans	Scans of Running Services, Processes, Listening Ports
Debian 7 64					✔	✔	✔	✔	✔			✔	✔		✔	✔		✔	✔
Debian 8 64	✔(⁷)				✔	✔	✔	✔	✔	✔(1)		✔	✔		✔	✔	✔	✔	✔
Debian 9 64	✔(⁷)				✔	✔	✔	✔	✔	✔(1)		✔	✔		✔	✔	✔	✔	✔
Debian 10 64 (10)	✔(⁷)				✔	✔	✔	✔	✔	✔(1)		✔	✔		✔	✔	✔	✔	✔

CloudLinux (11.0 agent)

	Anti-Malware					Web Reputation Service	Firewall	Intrusion Prevention System		Integrity Monitoring						Log Inspection	Application Control	Recomm- endation Scan	Relay	Scanner	FIPS mode
	Real-time				On-demand					Real-time			On-demand
	Feature set 1	Process memory scan, Registry scan	Behavior monitoring	Predictive Machine Learning	Feature set 1			Unencrypted Traffic	SSL Encrypted Traffic	File Scans	Directory Scans	Scans of Running Services, Processes, Listening Ports	File and Directory Scans	Registry Scans	Scans of Running Services, Processes, Listening Ports
CloudLinux 6 64 (6)	✔(⁷)				✔	✔	✔	✔	✔			✔	✔		✔	✔	✔	✔	✔
CloudLinux 7 64	✔(⁷)				✔	✔	✔	✔	✔	✔(1)		✔	✔		✔	✔	✔	✔	✔
CloudLinux 8 64 (9)	✔(⁷)				✔	✔	✔	✔	✔	✔(1)		✔	✔		✔	✔	✔	✔	✔

Solaris (11.0 agent)

See How does agent protection work for Solaris zones? for more on how protection works between Solaris zones.

	Anti-Malware					Web Reputation Service	Firewall	Intrusion Prevention System		Integrity Monitoring						Log Inspection	Application Control	Recomm- endation Scan	Relay	Scanner	FIPS mode
	Real-time				On-demand					Real-time			On-demand
	Feature set 1	Process memory scan, Registry scan	Behavior monitoring	Predictive Machine Learning	Feature set 1			Unencrypted Traffic	SSL Encrypted Traffic	File Scans	Directory Scans	Scans of Running Services, Processes, Listening Ports	File and Directory Scans	Registry Scans	Scans of Running Services, Processes, Listening Ports
Solaris 10 (6)					✔	✔	✔	✔	✔			✔	✔		✔	✔		✔
Solaris 11 (6)					✔	✔	✔	✔	✔			✔	✔		✔	✔		✔

Amazon Linux (11.0 agent)

	Anti-Malware					Web Reputation Service	Firewall	Intrusion Prevention System		Integrity Monitoring						Log Inspection	Application Control	Recomm- endation Scan	Relay	Scanner	FIPS mode
	Real-time				On-demand					Real-time			On-demand
	Feature set 1	Process memory scan, Registry scan	Behavior monitoring	Predictive Machine Learning	Feature set 1			Unencrypted Traffic	SSL Encrypted Traffic	File Scans	Directory Scans	Scans of Running Services, Processes, Listening Ports	File and Directory Scans	Registry Scans	Scans of Running Services, Processes, Listening Ports
Amazon Linux 64	✔(⁷)				✔	✔	✔	✔	✔	✔(1)		✔	✔		✔	✔	✔	✔	✔
Amazon Linux 2 64 (10)	✔(⁷)				✔	✔	✔	✔	✔	✔(1)		✔	✔		✔	✔	✔	✔	✔

Deep Security Virtual Appliance (NSX) supported guest OS's

The list of supported features varies not only by platform, as shown in the table below, but also by NSX license type. For details on which features are supported by your NSX license, see VMware deployments with the virtual appliance and NSX 6.3 or higher.

	Anti-Malware					Web Reputation Service	Firewall	Intrusion Prevention System		Integrity Monitoring						Log Inspection	Application Control	Recomm- endation Scan	Relay	Scanner	FIPS mode
	Real-time				On-demand					Real-time			On-demand
	Feature set 1	Process memory scan, Registry scan	Behavior monitoring	Predictive Machine Learning	Feature set 1			Unencrypted Traffic	SSL Encrypted Traffic	File Scans	Directory Scans	Scans of Running Services, Processes, Listening Ports	File Scans	Registry Scans	Scans of Running Services, Processes, Listening Ports
Windows 7 32	✔			✔	✔	✔	✔	✔					✔					✔
Windows 7 64	✔			✔	✔	✔	✔	✔					✔					✔
Windows Server 2008 32	✔			✔	✔	✔	✔	✔					✔					✔
Windows Server 2008 64	✔			✔	✔	✔	✔	✔					✔					✔
Windows Server 2008 R2 64	✔			✔	✔	✔	✔	✔					✔					✔
Windows 8 32	✔			✔	✔	✔	✔	✔					✔					✔
Windows 8 64	✔			✔	✔	✔	✔	✔					✔					✔
Windows 8.1 32	✔			✔	✔	✔	✔	✔					✔					✔
Windows 8.1 64	✔			✔	✔	✔	✔	✔					✔					✔
Windows Server 2012 64	✔			✔	✔	✔	✔	✔					✔					✔
Windows Server 2012 R2 64	✔			✔	✔	✔	✔	✔					✔					✔
Windows 10 32 (2)	✔			✔	✔	✔	✔	✔					✔					✔
Windows 10 64 (2)	✔			✔	✔	✔	✔	✔					✔					✔
Windows Server 2016 Version 1803 (RS4) 64 (5)	✔			✔	✔	✔	✔	✔					✔					✔
Windows Server 2019 Version 1809 64 (5)	✔			✔	✔	✔	✔	✔					✔					✔
Windows 2016 64 (with NSX 6.3.3)	✔			✔	✔	✔	✔	✔					✔					✔
Red Hat Enterprise Linux 6 32						✔	✔	✔
Red Hat Enterprise Linux 6 64						✔	✔	✔
Red Hat Enterprise Linux 7 64						✔	✔	✔
CentOS 6 32						✔	✔	✔
CentOS 6 64						✔	✔	✔
CentOS 7 64						✔	✔	✔
Oracle Linux 6 32						✔	✔	✔
Oracle Linux 6 64						✔	✔	✔
Oracle Linux 7 64						✔	✔	✔
SUSE Linux Enterprise Server 11 32						✔	✔	✔
SUSE Linux Enterprise Server 11 64						✔	✔	✔
SUSE Linux Enterprise Server 12 64						✔	✔	✔
Ubuntu 16 LTS 64						✔	✔	✔
Debian 8 64						✔	✔	✔
Debian 9 64						✔	✔	✔

Feature set 1 includes signature-based file scanning, spyware scanning, and document exploit protection.

⁽¹⁾ This platform supports enhanced real-time integrity monitoring. It uses the application control driver to provide file monitoring and records who changed a monitored file.

(²) Microsoft releases regular, semi-annual releases for Microsoft Windows 10 and Windows Server Core. For details about which specific releases are supported, see Deep Security Support for Windows 10 and Deep Security Support for Windows Server Core.

(³) Requires Deep Security Agent and Manager 11.0 Update 1 or newer.

(⁴) Requires Deep Security Agent and Manager 11.0 Update 2 or newer.

(⁵) Requires Deep Security Agent and Manager 11.0 Update 4 or newer.

(⁶) Requires Deep Security Agent and Manager 11.0 Update 6 or newer for Solaris 10 and Solaris 11.0–11.3. Requires Deep Security (agent and manager) 11.0 Update 7 or a later update for Solaris 11.4.

(⁷) Real-time Deep Security Anti-Malware support on Linux depends on the file system hooking implementation. The following table shows compatible file systems:

File system type		Deep Security Agent version
File system type		11.0	10.3	10.2	10.1	10.0	9.6
Disk file systems	ext2	✔	✔	✔	✔	✔	✔
	ext3	✔	✔	✔	✔	✔	✔
	ext4	✔	✔	✔	✔	✔	✔
	XFS	✔	✔	✔	✔	✔	✔
	Btrfs	✔	✔	✔	✔	✔	✔
	VFAT	✔	✔	✔	✔	✔	✔
Optical discs	ISO 9660	✔	✔	✔	✔	✔	✔
Special file systems	tmpfs	✔	✔	✔	✔	✔	✔
	aufs	✔	✔	✔	✔	✔
	OverlayFS	✔	✔	✔	✔	✔	✔
Network file systems (see Note, below)	NFSv3	✔	✔	✔	✔	✔	✔
	NFSv4	✔	✔	✔	✔	✔	✔
	SMB	✔	✔	✔	✔	✔	✔
	CIFS	✔	✔	✔	✔	✔	✔
	FTP	✔	✔	✔	✔	✔	✔

To protect network file systems, you must select Enable network directory scan in the malware scan configuration. For information, see Scan a network directory (real-time scan only).

(⁸) This feature is available only with Full/Desktop Experience installations. It is not supported with Server Core installations.

(⁹) Requires Deep Security Agent and Manager 11.0 Update 22 or newer.

(¹⁰)Deep Security 11 does not have kernel support packages for the following kernel versions:

Amazon Linux 2: 5.10.29 and later kernels
Ubuntu 20: 5.11.0 and later kernels
Debian 10: 5.9.0 and later kernels
SUSE 15: 5.3.18 and later kernels

We recommend that you upgrade to Deep Security 20 for best protection.

Support

Trend Micro Success

Threat Encyclopedia