We have a couple servers with a host system, and virtual DB and Web instances. Is it possible to be compliant with PCI if you install the Antivirus only on the host system, or does it need to be installed on all three (host, db instance, web instance)?
By installing it on the host, doesn't it scanning the virtual servers as well (bin, vhv, and vhd files)? Or can the antivirus not scan/get to the details necessary when they are embedded in the virtual machines?
If we can't just install it on the Host OS, could it be installed only on the Web instance since that is the only one that is publicly accessible?
Just trying to avoid the extra CPU/RAM footprint of installing in all 3 instances if possible.
Not sure it makes a difference, but this is in a Windows 2012 Hyper-V environment.