Optimisation Actions Overview - McAfee ENDPOINT ENCRYPTION ENTERPRISE - BEST PRACTICES GUIDE Manual

Optimisation Actions Overview
McAfee generally recommends the following actions (most of which are described in more detail later):
• Optimize hard disks for I/O performance. As above, 15 K RPM disks are the best. The disks should be in a
RAID 5 array with a controller, with the maximum amount of cache available. UPS backup is
recommended. See chapters above.
• Use DAS rather than a network location SAN/NAS. See chapters above.
• Enable indexing of the Object Directory with dbcfg.ini.
• Keep number of objects per group to a minimum within the object directory and minimize number of
users assigned to clients. Also less aggressive sync policy for clients can ease server load.
• Reduce the TCP/IP KeepAliveTime to five minutes.
• Disable NTFS Last Access Update with a registry change.
• Increase the size of the NTFS Master File Table (MFT) with a registry change.
• Optimize backups.
• Exclude the Object Directory and the associated services from virus scans.
• Set Windows server performances settings to background services and system cache.
• Manage Audits.
• Use Hard Drive controller caching.
• Use good network connections to Object Directory servers.
• Store the Object Directory (usually stored in SBDATA folder) on a separate drive or partition to the OS.
• Don't allow the database to be shared.
• Check that every administrator goes through the EEPC Database server, not direct through local
connection.
• Limit the use of the 'Find' function in 20K+ databases during normal working hours as it can slow access.
• Clear object items from deleted items, regularly when not needed.
• Increase max connections in SBServer.ini (in some cases).
12