Some antiviruses are blocking a MID server upgradeSummaryIt is possible that an antivirus service may block a MID server upgrade. If a service that may block the upgrade is detected, the following warning message is set on the MID server: Service: <service_name> running on the MID Server host machine is identified as a MID Server upgrade blocker.MID Server Upgrade may fail if they are not configured properly, for more information, refer to KB0870329 The list of upgrade blocker services is configured via mid server parameter: mid.upgrade.blocking_services The default value for this property is ciscoamp. However, there are other services which are also known to block MID server upgrades. Currently the following antiviruses are known to be MID Server upgrade blockers: Cisco AMPDell SecureWorks Red CloakMcAfeeWindows defender Solution This warning can be disregarded if the antivirus is already configured to exclude the MID server. However, the list of blocking services can also be updated in order to stop the warning message from being displayed. Steps Open the MID server record with the warning, table ecc_agentSelect the Properties related listSelect New.Set the following fields: Name: mid.upgrade.blocking_servicesValue: empty to disable the check Restart the MID server Related LinksAdd an exception to antivirus Adding an exception to an antivirus is specific to the antivirus being used, and therefore requires the expertise of the security team managing such server, and is outside the scope of ServiceNow. Currently we have the following knowledge articles on how to exclude the MID server from the antiviruses: Cisco AMP KB0827747KB0867749 If the antivirus used is not listed above, contact your security team. The security team managing the host machine can then determine if it is ok to add the MID server to the exclusion list and how to do so.