décembre 2010 - Posts

12-25-2010 23:08

System Center Configuration Manager Technology | How to install and configure Forefront End Point Protection ROLE For System Center Configuration Manager 2007 !!!

Hi,

 

TECHNICAL ARTICLE:

HOW TO INSTALL AND CONFIGURE FOREFRONT END POINT PROTECTION ROLE FOR SYSTEM CENTER CONFIGURATION 2007 !!!

 

What's Forefront Endpoint Protection 2010 for System Center Configuration Manager?:

Forefront Endpoint Protection 2010 (FEP), the next version of Forefront Client Security, enables businesses to simplify and improve endpoint protection while greatly reducing infrastructure costs. It builds on System Center Configuration Manager 2007 R2 and R3, and allows customers to use their existing client management infrastructure to deploy and maintain endpoint protection.

What’s New in Forefront Endpoint Protection 2010?:

Usage Scenarios for Forefront Endpoint Protection 2010:

Let's GO! Big Smile Big Smile Big Smile for the requirements!

What's in this post?:

In this post, i explain how to install and configure Forefront EndPoint Protection ROLE for System Center Configuration Manager...

Before starting, it is necessary to download the Forefront EndPoint Protection sources available HERE

Related FEP Resources

 

Let's GO! Big Smile Big Smile Big Smile for the FEP installation!

I have take in my example:

1 Domain controller Acttive Directory (installation not detailed in this post)

1 SCCM Server (installation not detailed in this post)

1 Workstation Windows 7 Professional (installation not detailed in this post)

Have administrators Right lol Big Smile

Have Forefront End Point Protection Sources Big Smile accessible through links at the top

In first time and after install SQL server and SCCM (not detailed in this post), you do follow this KB Microsoft (KB2271736):

A hotfix package is available to add support for more "ManagementClass" classes in System Center Configuration Manager 2007

Example under:

In Microsoft System Center Configuration Manager 2007, the ManagementClass class for Windows Management Instrumentation (WMI) is defined in the Managementclassdescriptions.xml file. This .xml file is in the following path:

<Drive>:\Program Files (x86)\Microsoft Configuration Manager\AdminUI\XmlStorage\ConsoleRoot

However, this .xml file cannot be changed and is not extendable.
 
After you install this hotfix package, you can add more ManagementClass classes for WMI. To do this, follow these steps:

1.     Create a folder named ManagementClasses in the following path:

<Drive>:\Program Files (x86)\Microsoft Configuration Manager\AdminUI\XmlStorage\Extensions

2.     Create an .xml file that has the ManagementClassDescription data type and that defines any added ManagementClass classes.

3.     Add the .xml file to the ManagementClasses folder.

 

  Folder ManagementClasses dedicated to FEP install :

After FEP installation you see that the FEP files product content added a lot of XML files.Big Smile

 

We can Begin installing FEP 2010, launch the setup

Select language (English in my post) and click FEP 2010

Enter the Name and Organization Name and click Next

Select Accept licence terms... and click Next

Select Advanced topology option and click Next

Select three options and click Next

Click Next

Indicate the:

URL: specify the FQDN of the server is preferable if you have an infrastructure with multiple Active Directory domain forest

UserName:Attention, not to use the domain admin account (forjust an example) but rather a dedicated account, with access to the database SQL Reporting Services server.

Password: Indicate the account password

Click Next

if you do not follow the recommendations, a message appears telling you the problem.

After setting the parameters correctly, continue installation by clicking Next

Select yes or not on the update option and the Customer Experience improvement Program to communicate information to Microsoft... and Click Next

 

Select Join Microsoft Spynet / Basic Spynet membership on the Microsoft Spynet Policy Configuration tab and Click Next

Information on Microsoft Spynet Policy Configuration option:

This information helps Microsoft create new definitions for improved protection, which can help your software better detect and notify you of potential malware. Basic Membership enables the Dynamic Signature Service to provide updates based on behavior monitoring without waiting for the regular signature update process

Click Next

Click Next

Click Install

Click Next

Click Finish

After installing FEP, a new container Microsoft Endpoint Protection is added to the SCCM console, enjoying interface Big Smile

Several collections have also been created to manage Front End Point Protection 2010..., I'll tell you a little more in my next postsBig Smile


Several packages have also been created to deploy and manage Front End Point Protection 2010 client by SCCM..., I'll tell you a little more in my next postsBig Smile

Here is an example of the SCCM/FEP reports available after installation, pretty not?Wink
Who's thanks, thanks to SQL Reporting Services Big Smile

FEP client interface module was inspired by Windows Defender and replace it when installing the FEP client or when installing the standalone Microsoft security solution for specific Microsoft Security Essentials.

 

Note: When you install the FEP client package, it will automatically uninstall existing antimalware clients, including:


Forefront Client Security version 1, including the Operations Manager agent
Symantec Endpoint Protection version 11
TrendMicro OfficeScan version 8.0 and version 10.0
McAfee VirusScan Enterprise version 8.5 and version 8.7
Symantec Endpoint Protection Small Business Edition version 12
Symantec Corporate Edition version 10

FEP adventure is launched soon for new posts Big Smile

Bye

Michaël BERTUIT

 

 

 

 

 

Posted by mbertuit | 2 comment(s)
Filed under:
12-20-2010 0:43

Microsoft System Center Virtual Machine Manager Self-Service Portal 2.0 is available for download!!!

Hi all,

Microsoft System Center Virtual Machine Manager Self-Service Portal 2.0 is available!!!

What's Microsoft System Center Virtual Machine Manager Self-Service Portal 2.0?

VMMSSP (also referred to as the self-service portal) is a fully supported, partner-extensible solution built on top of Windows Server 2008 R2, Hyper-V, and System Center VMM. You can use it to pool, allocate, and manage resources to offer infrastructure as a service and to deliver the foundation for a private cloud platform inside your datacenter. VMMSSP includes a pre-built web-based user interface that has sections for both the datacenter managers and the business unit IT consumers, with role-based access control. VMMSSP also includes a dynamic provisioning engine. VMMSSP reduces the time needed to provision infrastructures and their components by offering business unit “on-boarding,” infrastructure request and change management. The VMMSSP package also includes detailed guidance on how to implement VMMSSP inside your environment.

Important: VMMSSP is not an upgrade to the existing VMM 2008 R2 self-service portal. You can choose to deploy and use one or both self-service portals depending on your requirements.


The self-service portal provides the following features that are exposed through a web-based user interface:
  • Configuration and allocation of datacenter resources: Store management and configuration information related to compute, network and storage resources as assets in the VMMSSP database.
  • Customization of virtual machine actions: Provide a simple web-based interface to extend the default virtual machine actions; for example, you can add scripts that interact with Storage Area Networks for rapid deployment of virtual machines.
  • Business unit on-boarding: Standardized forms and a simple workflow for registering and approving or rejecting business units to enroll in the portal.
  • Infrastructure request and change management: Standardized forms and human-driven workflow that results in reducing the time needed to provision infrastructures in your environment.
  • Self-Service provisioning: Supports bulk creation of virtual machines on provisioned infrastructure through the web-based interface.Helps business units to manage their virtual machines based on delegated roles.

 

Fo download click HERE

Posted by mbertuit | 1 comment(s)
Filed under:
12-17-2010 22:38

System Center AVIcode is available! - (System Center AVIcode and System Center Operations Manager 2007 R2)

Hi all,

Great news, System Center AVIcode is available for trial download !

What's System Center AVIcode?

AVIcode delivers market-leading .NET application performance monitoring capabilities to help ensure the availability of business-critical applications and services, regardless of where they are deployed. End-user experience and application performance monitoring are critical in virtual datacenters and cloud environments. As more customers move to consuming cloud-based services, Microsoft will address concerns about the gap between existing applications and those designed for the cloud by providing unified management across physical, virtual, and cloud environments.

AVIcode capabilities by:

  • Simplifying management with automatic discovery of application dependencies.

    • Addresses custom LOB monitoring without the need for extensive MP authoring

    • Graphical application topology view displays dependency between distributed components

  • Optimizing business productivity with always-on, real-time monitoring, and rapid error resolution of business critical applications

    • End-user experience and application performance monitoring are critical for virtual datacenter and cloud environments

    • Identifies precise cause of application error allowing delivery of actionable information to the proper support team for faster resolution

  • Lowering the cost of managing datacenter services by establishing enterprise-wide standards to manage custom and disparate applications

    • Distributed web services and outside-in monitoring

    • Monitor and measure service-level delivery (SLAs)


System Center AVIcode and System Center Operations Manager 2007 R2:


For donwload click here

Posted by mbertuit | 1 comment(s)
Filed under:
12-09-2010 22:03

System Center Operations Manager Vnext / 2012 with Vlad Joanovic !

Hi all,

If you are interested by the news for System Center Operations Manager Vnext / 2012.

I have a great announce for you, the interview of Vlad Joanovic is available and he talk to SCOM 2012, let you discover !

Thanks a lot to Microsoft Edge team for this news!!!! and Alex de Jong

Posted by mbertuit | 3 comment(s)
Filed under:
12-09-2010 21:46

System Center Configuration Manager 2012 with SCCM Godfather Wally Mead!

Hi All,

Exclusively and thanks to the Edge team for this superb interview with Mr Wally Mead who talk of System Center Configuration Manager 2012, watch this video, it's here

Posted by mbertuit | with no comments
Filed under: