Installing Antigen on a cluster

To install Antigen in a clustered environment, you must log on to the local computer as a domain user with an account that has local administrator rights. Antigen must be installed on each node. All program files must be installed to a local drive.

Features of the installation include:

  • Configuration data (such as ScanJobs.adb and Notifications.adb) will be associated with an Exchange Virtual Server, not the physical nodes. This way, the data needs to be configured only for each Exchange Virtual Server, regardless of how many nodes you have.

  • Similarly, scanner signature files will be associated with an Exchange Virtual Server, so that both active and passive nodes will be up-to-date.

  • Configuration data that is kept in the registry will be replicated on an Exchange Virtual Server basis when the Content Management Server (CMS) moves from one node to another during a failover event.

The Antigen Administrator should be connected to the Exchange Virtual Server when connecting to Antigen for Exchange on a cluster server. If you try to connect to the physical server, you will be asked to select the Exchange Virtual Server to which you would like to connect.

Cluster system requirements

Following are the minimum server and workstation requirements for Microsoft Antigen for Exchange.

Bb914027.note(en-us,TechNet.10).gifNote:
All minimum system memory and disk space requirements for Microsoft Exchange 2000/2003 must be met before installing Microsoft Antigen for Exchange.

Minimum server requirements

  • Windows® 2000 Server SP4 Update Rollup 1, Windows 2000 Advanced Server SP4 Update Rollup 1, or Windows Server 2003

    Note: Antigen is supported only on 32-bit environments.

  • Microsoft® Exchange 2000 Server SP1 or Microsoft Exchange Server 2003

    Note: Antigen is not supported on Exchange 2007.

  • 1 gigabyte (GB) of free memory, in addition to that required to run Exchange (512 MB recommended)

    Note: With each additional licensed scan engine, more memory is needed for each scanning process.

  • 2 GB of available disk space

  • Intel processor, 1 gigahertz (GHz)

  • Internet Information Services (IIS) 4.0

  • Microsoft Data Access Components (MDAC) 2.7

  • Microsoft Jet 4.0 Service Pack 3 (SP3)

  • Microsoft XML Core Services (MSXML) 6.0

  • .NET Framework 1.1 (required only if you are using Antigen Spam Manager (ASM) Junk Mail folder processing on Exchange 2000)

Minimum workstation requirements

  • Windows 2000 Professional, Windows Server 2003, Windows XP, or Windows Vista

  • 6 MB of available memory

  • 10 MB of available disk space

  • Intel Processor

Installing Antigen on the active and passive nodes of a cluster

The following sections describe how to install Antigen on the active and passive nodes of a cluster. Antigen is installed on the active node first, and then on the passive node.

Ensuring that your cluster drive is available during installation

Before starting the installation, you must determine whether your cluster drive has mount volume information. When you install Antigen on an active node of a cluster, you will be asked to indicate the shared drive from a list. If the drive that you want to install Antigen on has mount volume information, you can skip to Installing Antigen on an active node. If it does not have mount volume information, setup will not be able to obtain the shared drive information and it will not be included in the list. To preclude having to cancel the installation at that point, begin by invoking Setup.exe with the /c parameter and the shared drive letter. This will place the shared drive in the list of available drives.

To use the driveletter switch

  1. Run Setup.exe from the directory containing the Antigen installation files. You can obtain the latest installation package from the Microsoft Volume Licensing Download Center.

    Be sure to use the /c parameter and the drive letter.

    The syntax for the command line invocation is:

    Setup /cdriveletter

    There is no space between the /c and the drive letter, which must end in a colon. For example, to use drive S for the installation:

    Setup /cS:

  2. Now that you know that the cluster drive will appear in the Disk Resource Name For Shared Drive list on the Installing Antigen On an Active/Passive Cluster dialog box, you are ready to begin installation on the active node.

Installing Antigen on an active node

Following are the steps to install Antigen on an active node. Click Next to continue after completing a screen, unless otherwise directed.

Bb914027.note(en-us,TechNet.10).gifNote:
As with most installations, setup updates share Microsoft files on your computer. If you are requested to restart your computer, you should wait until Antigen has been installed on all computers in the cluster before restarting.

To install Antigen on an active node

  1. Run Setup.exe from the directory containing the Antigen installation files. You can obtain the latest installation package from the Microsoft Volume Licensing Download Center.

  2. Follow the initial setup dialog boxes until you are prompted by the Installation Location dialog box. Select Local Installation.

  3. If MDAC or Jet is not installed, Antigen will ask whether you would like the component installed on the server. Follow the onscreen instructions to complete the installation. You may be required to restart the server after the MDAC or JET installation. After MDAC or Jet has been installed, you will need to run the installation again to install Antigen.

    Bb914027.note(en-us,TechNet.10).gifNote:
    If the server is restarted, the Exchange Virtual Server will fail over to the node that can take ownership of the Exchange Virtual Server and will need to be manually moved back to the current node before you can proceed with the installation.

  4. In the Installation Type dialog box, select Full Installation.

  5. Setup checks whether you have the correct version of the Windows Update Agent:

    • If you do not have the correct version, at the end of the installation you will be directed to the Microsoft Update Web site to do the opt-in manually.

    • If you do have the correct version, Setup then checks whether Microsoft Update is enabled. If Microsoft Update is not enabled, the Use Microsoft Update dialog box appears, at which point you can enable it.

  6. In the Installing Antigen On an Active/Passive Cluster dialog box, enter your cluster drive information. Select the cluster drive from the list in the Disk Resource Name For Shared Drive field, and then enter the name of the Antigen folder in the Antigen Folder field.

  7. In the Quarantine Security Settings dialog box, select the desired setting.

    • Secure Mode causes all messages and attachments delivered from Quarantine to be rescanned for viruses and filter matches. This is the default.

    • Compatibility Mode allows messages and attachments to be delivered from Quarantine without being scanned for filter matches. (Messages and attachments are always scanned for viruses.) Antigen for Exchange identifies these messages by placing special tag text in the subject line of all messages that are delivered from Quarantine.

  8. In the Engine Updates Required dialog box, read the warning about engine updates and proxy information.

  9. In the Choose Destination Location dialog box, either accept the default destination folder for the product, or click Browse to select a different one.

    The default folder is: Program Files\Microsoft Antigen for Exchange.

  10. For Antigen Spam Manager installations on Exchange 2000 only: Enter the Web Server folder name. The default is Antigen Junk Mail. This is the folder where Antigen will create Antigen Junk Mail folders if the Antigen Spam Manager is installed.

  11. In the Select Program Folder dialog box, choose a program folder for Antigen.

    The default folder is: Microsoft Antigen for Exchange.

  12. In the Start Copying Files dialog box, review the data that appears. If any changes need to be made, use the Back button to navigate to the screen to be changed. Otherwise, click Next to begin the installation. You will see a progress bar indicating that the files are being copied.

  13. In the Recycle Exchange Virtual Server dialog box, read the notice about the need to recycle the Clustered Mailbox Server. You can Skip this step and manually recycle the Exchange Virtual Server at a later time; however, Antigen will not be functional until after you recycle the Exchange Virtual Server.

  14. In the Take Virtual Servers Offline dialog box, wait until the step has completed, and then click Next.

  15. In the Bring Virtual Servers Online dialog box, wait until the step has completed, and then click Next.

  16. In the InstallShield Wizard Complete dialog box, you can choose to view the Readme file (recommended). If you do not have the correct version of the Windows Update Agent, you will be directed to a site to obtain it. Click Finish to complete the installation.

Installing Antigen on a passive node

To install Antigen on a passive node, log on to the computer with an account that has administrator rights. This is necessary for Setup to be able to perform service registration. The Exchange Virtual Server should still be running on the active node at this point.

Bb914027.note(en-us,TechNet.10).gifNote:
You do not need to configure Antigen on the passive nodes separately.

To install Antigen on a passive node

  1. Run Setup.exe from the directory containing the Antigen installation files. You can obtain the latest installation package from the Microsoft Volume Licensing Download Center.

  2. Follow the initial setup dialog boxes until you are prompted by the Installation Location dialog box. Select Local Installation.

  3. If MDAC or Jet is not installed, Antigen will ask whether you would like the component installed on the server. Follow the onscreen instructions to complete the installation. You may be required to restart the server after the MDAC or JET installation. After MDAC or Jet has been installed, you will need to run the installation again to install Antigen.

    Bb914027.note(en-us,TechNet.10).gifNote:
    If the server is restarted, the Exchange Virtual Server will fail over to the node that can take ownership of the Exchange Virtual Server, and must then be manually moved back to the current node before you can proceed with the installation.

  4. On the Installation Type dialog box, select Full Installation.

  5. Setup checks whether you have the correct version of the Windows Update Agent:

    • If you do not have the correct version, at the end of the installation you will be directed to the Microsoft Update Web site to do the opt-in manually.

    • If you do have the correct version, Setup then checks whether Microsoft Update is enabled. If Microsoft Update is not enabled, the Use Microsoft Update dialog box appears, at which point you can enable it.

  6. In the Quarantine Security Settings dialog box, select the desired setting.

    • Secure Mode causes all messages and attachments that are delivered from Quarantine to be rescanned for viruses and filter matches. This is the default.

    • Compatibility Mode allows messages and attachments to be delivered from Quarantine without being scanned for filter matches. (Messages and attachments are always scanned for viruses.) Antigen for Exchange identifies these messages by placing special tag text in the subject line of all messages that are delivered from Quarantine.

  7. In the Engine Updates Required dialog box, read the warning about engine updates and proxy information.

  8. In the Choose Destination Location dialog box, either accept the default destination folder for the product, or click Browse to select a different one.

    The default folder is: Program Files\Microsoft Antigen for Exchange.

  9. For Antigen Spam Manager installations on Exchange 2000 only: Enter the Web Server folder name. The default is Antigen Junk Mail. This is the folder where Antigen will create Antigen Junk Mail folders if the Antigen Spam Manager is installed.

  10. In the Select Program Folder dialog box, choose a program folder for Antigen.

    The default folder: Microsoft Antigen for Exchange.

  11. In the Start Copying Files dialog box, review the data that appears. If any changes need to be made, use the Back button to navigate to the screen that is to be changed. Otherwise, click Next to begin the installation. You will see a progress bar indicating that the files are being copied.

  12. In the InstallShield Wizard Complete dialog box, you can choose to view the Readme file (recommended). If you do not have the correct version of the Windows Update Agent, you will be directed to a site to obtain it. Click Finish to complete the installation.

Bb914027.note(en-us,TechNet.10).gifNote:
If you manually fail over an Exchange Virtual Server and are using the ASM Junk Mail Folders feature, you must also manually fail over the Cluster Group. If you do not, Outlook users will be unable to use any of the ASM Junk Mail Folder features.

Cluster disk configuration

Installing Antigen on clusters can be complicated by the default naming of the disk resources associated with each Exchange Virtual Server in the Cluster Administrator. Be aware of changes to the disk resource names within the Cluster Administrator because the installation process uses the disk resource name to derive the drive letter for the installation. During installation, the user is prompted for both a shared drive and a cluster folder. Based on the listed assumptions, the results of the various combinations are shown in the following lists. The format of the Disk Resource Name should follow the examples in the lists.

Assume the following configuration in the cluster administrator:

Disk Resource NamePhysical PathType

Disk E:

E:

Shared drive

Disk F:

F:

Shared drive

Disk G:

G:

Shared drive

Mtptdr

F:\mpd

Mount point

Gmpd

G:\mpd2

Mount point

For shared drive installations, the Disk Resource Name should have the shared drive letter followed by a colon. (Note that those items with an "X" are intended to illustrate bad examples.)

Disk Resource Name for Shared DriveCluster FolderPath Antigen Uses

E:

Antigen Cluster

E:\Antigen Cluster

Disk F:

Antigen Cluster

F:\Antigen Cluster

E:

Test\Antigen Cluster

E:\Test\Antigen Cluster

F:\mtpdr

Antigen Cluster

X – No match in resource names.

F:\mpd

Antigen Cluster

X – No match in resource names.

E:\test

Antigen Cluster

X – No match in resource names.

For mount point drive installations. (Note that those items with an "X" are intended to illustrate bad examples.)

Disk Resource Name for Shared DriveCluster FolderPath Antigen Uses

G:

mpd2\Antigen Cluster

gmpd\Antigen Cluster

Disk F:

mpd\Antigen Cluster

F:\mpd\Antigen Cluster

Mpd

Antigen Cluster

X – No drive associated with mount point resource.

E:

mpd\Antigen Cluster

X - Will install, but not to mount point. It will be installed to E:\mpd\Antigen Cluster.

G:

gmpd\Antigen Cluster

X – Will install, but not to mount point. It will be installed to g:\gmpd\Antigen Cluster.

Additional considerations

Additional considerations when installing in a cluster environment include:

  • There must be at least one passive node.

  • Antigen supports any number of active nodes, and one or more passive nodes.

  • Each node can run only one Exchange Virtual Server at a time.

  • Failovers must be to the passive node.

Applying Exchange and Antigen service packs and rollups

This section describes how to apply Exchange and Antigen service packs and rollups.

To install an Exchange service pack or rollup

  1. Disable Antigen on all nodes using the steps described in Appendix A - Using the Antigen Utility in the “Microsoft Antigen for Exchange User Guide”.

  2. On each node, follow the instructions provided with the specific Exchange service pack or rollup that you are installing.

  3. After the installation is complete and the Exchange services have been restarted, verify that mail is flowing.

  4. Starting with the active node, enable Antigen on all nodes using the steps described in Appendix A - Using the Antigen Utility in the “Microsoft Antigen for Exchange User Guide”.

Bb914027.Warning(en-us,TechNet.10).gifWarning:
Do not fail over the active node when performing these steps.

Bb914027.note(en-us,TechNet.10).gifNote:
Some Exchange service packs and hotfixes require you to download and install an Antigen update in order to ensure that Antigen operates correctly. For information and downloads, visit the Microsoft Web site at Microsoft Help and Support.

To install an Antigen service pack or rollup

  1. On the passive node, run the installer by double-clicking the service pack or rollup executable file.

  2. On the active node, fail over the node to make it passive, and then run the installer by double-clicking the service pack or rollup executable file.

  3. After the installation is complete and the Exchange and Antigen services have been restarted (this occurs automatically during the installation), verify that Antigen is working properly.

    Bb914027.note(en-us,TechNet.10).gifNote:
    Antigen service packs or rollups can also be installed using the FFSMC Deployment job. (For details, see Deployment Jobs in the Forefront Server Security Management Console User Guide.) In this case, the installer runs in silent mode and there is no user input required. The rest of the process remains the same as when running the installer by double-clicking the executable file.

Page view tracker