PKI Blog

Merry MBAM 2.0

Posted by CSS Technical Team on Dec 19, 2012 4:55:00 AM

Marley was dead, of that we can be certain. The poor man had died tragically at his desk going over the security auditing logs trying to ascertain if the laptop that had been stolen from their young clerk had been secure or not. To think that the fiendish devil who had procured it could now be drooling over the contents of their money changing shop! Defiling the social security numbers and credit card numbers of clients! Glancing upon confidential documents meant only for the eyes of he and his partners! THE MAN HAD EVEN KEPT A PASSWORD FILE CONTAINING ALL OF THE ADMINISTRATOR PASSWORDS TO THEIR SYSTEMS! The strain of thought had been too much to bear for what was left of his old heart. To that end, Marley was dead as a doornail.

Read More

Topics: Microsoft Security Partner, Desktop Security, Microsoft MBAM, MBAM, Anti-Malware, Blog, Microsoft Bitlocker Administration and Monitoring

Using System Center Orchestrator to Automate Security Tasks

Posted by CSS Technical Team on Aug 6, 2012 6:44:00 AM

With System Center Configuration Manager 2012, customers have the ability to use Endpoint Protection capabilities to provide anti-malware services and security to servers and clients. However, to reduce administrator touch points and mistakes, we can use the flexibility of System Center Orchestrator to augment and automate standard security processes. In this post, I will demonstrate how to create a runbook to automate the triggering of a full Endpoint Protection malwarescan in response to a malware detected alert within Configuration Manager.

Read More

Topics: Application Publishing, IT Security, Microsoft Security Partner, Microsoft System Center, SCCM 2012, Configuration Manager, Desktop Security, Sysctr, Infrastructure Management, System Center 2012, SCORCH, workflow, SCCM, System Center Orchestrator, System Center Configuration Manager 2012, Anti-Malware, Blog, SCCM client

How to Perform a Manual System Center Endpoint Protection (SCEP) Client Installation

Posted by CSS Technical Team on May 16, 2012 8:02:00 AM

The following is an excerpt from my book Microsoft System Center 2012 Endpoint Protection Cookbook, http://www.packtpub.com/microsoft-system-center-2012-endpoint-protection-cookbook/book

Read More

Topics: FEP, IT Security, Microsoft Security Partner, Microsoft System Center, Win7, Desktop Security, SCEP, XP End of Life, System Center Configuration Manager, SCCM, Microsoft Forefront Endpoint Protection, Anti-Malware, Blog, System Center Endpoint Protection

SCEP Server Policy Templates

Posted by CSS Technical Team on Jan 31, 2012 4:00:00 AM

One of the best features of Forefront Endpoint Protection (FEP) 2010 was its easy to use server policy templates. In a nutshell, server policy templates let you quickly choose an optimized, preconfigured FEP policy for every- just about every- type of application server that Microsoft produces (Exchange, SharePoint, SQL, etc). So instead of painstakingly going through option by option and creating a policy for a server, you could simply select a server type from a drop down list and create a policy in seconds.

Read More

Topics: Microsoft Forefront Endpoint Protection Best Pract, Microsoft System Center 2012, FEP, IT Security, Microsoft Security Partner, Desktop Security, System Center 2012 Endpoint Protection, System Center 2012, SCEP, Microsoft Forefront Endpoint Protection, Anti-Malware, Microsoft FEP, Blog, SCEP Server

How to View the FEP Collection Membership Queries

Posted by CSS Technical Team on May 11, 2011 12:51:54 PM

The FEP dashboard located on the SCCM console has a wealth of information. It provides FEP admins with a snapshot of the overall health of your FEP deployment and various statistics including recent malware activity, definition status, and even when FEP has been disabled on an endpoint.

Read More

Topics: Microsoft Malware Protection Center, IT Security, Symantec, Microsoft Security Partner, Microsoft System Center, Microsoft SCCM, McAfee, Microsoft Forefront Endpoint Protection, Anti-Malware, Microsoft FEP, Blog, Antimalware Protection, Microsoft Antimalware

FEP 14th Day MMPC Definition Update

Posted by CSS Technical Team on May 4, 2011 9:00:00 AM

In addition to 3 definition update mechanisms defined in the FEP policy (WSUS,UNC and Windows Update), there is actually a little known 4th update mechanism built into the client. This 4th definition update channel is designed to provide a 'fall back' if all of the other methods fail and the client falls more than 14 days out of date.

Read More

Topics: Microsoft Forefront Endpoint Protection Best Pract, Microsoft Malware Protection Center, IT Security, Symantec, Microsoft Security Partner, Microsoft System Center, SCCM, Microsoft Forefront Endpoint Protection, Anti-Malware, Microsoft FEP, Blog, Antimalware Protection, MMPC

Preparing Existing Antivirus Software for an Forefront Endpoint Protection Deployment

Posted by CSS Technical Team on May 2, 2011 5:00:55 AM

When deploying Forefront Endpoint Protection, making a few simple changes to your existing Antivirus Software before installing FEP can increase the success of your deployment. Below is a list of tasks:

Read More

Topics: IT Security, Symantec, Microsoft Security Partner, Microsoft System Center, Microsoft SCCM, McAfee, Microsoft Forefront Endpoint Protection, Anti-Malware, Microsoft FEP, Blog, Antimalware Protection

FEP Webinar Recording Now Available

Posted by CSS Marketing on Apr 21, 2011 4:00:03 AM

Did you miss our FEP Webinar series? A recording is now available in our Media Library

Read More

Topics: Microsoft Security Partner, Microsoft Forefront Endpoint Protection, Anti-Malware, Microsoft FEP, Blog, Antimalware Protection

Forefront Endpoint Protection Command Line Interface Tasks

Posted by CSS Technical Team on Apr 12, 2011 10:17:00 AM

If you should ever need to administer a local FEP client through CLI you’re going to need to make use of MpCmdRun.exe. This program can be found in the “C:\Program Files\Microsoft Security Client\Antimalware” directory. MpCmdRun has several important functions; in this post we’ll be discussing some of the more useful options.

Read More

Topics: IT Security, Symantec, Microsoft Security Partner, McAfee, Microsoft Forefront Endpoint Protection, Anti-Malware, Blog, Antimalware Protection, Microsoft Antimalware

Automatically Deploying Forefront Endpoint Protection Updates via System Center Configuration Manager

Posted by CSS Technical Team on Apr 1, 2011 4:30:00 PM

Out of the box FEP provides several channels for delivering definition updates to clients. The three basic options are, updates through WSUS/SUP, UNC file shares and connecting to Microsoft Updates. The procedure in this video presents a 4th option, which further leverages the capabilities and resources of SCCM. Essentially the procedure uses a VBS script running in task scheduler to pull delta definitions from the Microsoft Malware Protection Center, then SCCM bundles them into a package which is then pushed out to your Distribution Points and advertised to your FEP clients (on a re-occurring schedule).

Read More

Topics: IT Security, Microsoft Security Partner, Microsoft System Center, Microsoft SCCM, Microsoft Forefront Endpoint Protection, Anti-Malware, Microsoft FEP, Blog, Antimalware Protection, Microsoft Antimalware

Recent Posts

Posts by Topic

see all

Subscribe to Email Updates

Want to Learn more about CSS?