I was told that when a host is in Audit or Learn Mode, ClamAV is turned off as well. I was also told that I could not have a 3rd-party AV product installed on the same host as CSA (Cisco would not support it). This seems to make Audit/Learn Mode useless, as I need virus protection - yet I need to tune the host. Are there any workarounds that I can use just so I can tune hosts using Audit/Learn Mode and sleep @ night knowing a virus won't kill the host? Any feedback is greatly appreciated.