MS CRM 2011 / 2013 Antivirus Exclusion List (Improve your CRM Performance)

MS CRM 2011 / 2013 Antivirus Exclusion List (Improve your CRM Performance)

The following article is a best practice suggestion to exclude some web addresses and file/ folder exclusions for you CRM environment. It helps you to improve performance for CRM and sometimes it solves some trouble with active scripting.

Please check all settings first, if it fits to your security policy and other technical dependencies.These recommendations are a compromise between performance and security.

Please exclude the following from active scanning / real time scan:

Web addresses

  • The web address from you deployment, for example http:\\crmserver:5555 or https:\\crmserver.contoso.local
  • For CRM Outlook offline capability the additional URL: http\\localhost:2525

In an IFD scenario you have to exclude all your IFD and claims-based URL’s, for example:

  • https://internalcrm.contoso.local (internal URL)
  • https://orgname.contoso.local (external URL)
  • https://dev.contoso.local (discovery web service URL)
  • https://sts.contoso.local (ADFS Server)
  • https://auth.contoso.local (IFD federation endpoint URL)

It is also possible to use wildcards, like https:\\*.contoso.local
Outlook Workspace

  • Outlook:\<YourOrganizationName>Workplace, for example Outlook:\<MyOrganization>Workplace


  • %LocalAppData%\Microsoft\MSCRM\
  • %AppData%\Microsoft\MSCRM\
  • %LocalAppData%\Microsoft\Outlook\
  • %ProgramFiles%\Microsoft SQL Server\
  • %ProgramFiles(x86)%\Microsoft SQL Server\
  • %ProgramFiles%\Microsoft Dynamics CRM\
  • %ProgramFiles(x86)%\Microsoft Dynamics CRM\

File Types

  • *.mdf
  • *.ndf
  • *.ldf
  • *.ost
  • Microsoft.Crm*.*
  • *.sdf


  • Microsoft.Crm.Application.Hoster.exe
  • Microsoft.Crm.Application.Outlook.WebFormsHost.exe
  • CrmSqlStartupSvc.exe
  • sqlservr.exe
  • iexplore.exe
  • outlook.exe

, , , , ,

No comments yet.

Leave a Reply