Protegendo seus desktops e servidores com
o Microsoft Forefront Client Security
Visão Geral e Implementação Técnica - Part...
• FCS Overview
• FCS Prerequisites
• Prerequisite installation and configuration
Agenda
Level 200
• Familiarity with Microsoft Operations
Manager
• Familiarity with Microsoft SQL Server
• Experience with networ...
Guidance
Developer
Tools
Systems
ManagementActive DirectoryActive Directory
Federation ServicesFederation Services
(ADFS)(...
•InternetInternet
•AA
•BB
•CC
•DD
•EE
•Exchange Server/Exchange Server/
Windows-basedWindows-based
SMTP ServerSMTP Server
...
6
Remove mostRemove most
prevalent virusesprevalent viruses
Remove allRemove all
known virusesknown viruses
Real-timeReal-...
7

Solução unificada contra virus e spyware

Construido usando como base tecnologia usada por milhões de
usuários

Resp...
Greater confidence
Greater efficiency
Greater control
Proteção unificada contra malware para desktops, laptops e
servidore...
• Reviewing FCS
• Installing Prerequisites
Agenda
Hardware Prerequisites
Domain
Controller
133 Mhz
128 MB RAM
2GB available
disk space
FCS Server
Minimum
750 Mhz
512 MB RAM...
Software Prerequisites
SQL Server 2005 + Reporting Services
Windows Software Update Services
Group Policy Management Conso...
Demo
Installing Software Prerequisites
 Review Installed Prerequisites
 Review Reporting Services
Configuration
 Instal...
Understanding Policies
Forefront Client Security Console
Administrator creates& deploys policy
Group Policy
Management Con...
Install and Configure IIS
Configure your Server Wizard
Add Application Server Role (IIS)
Enable FrontPage Server Extension...
Install SQL Server 2005
Install new or use existing SQL Server
with Service Pack 1
Existing SQL Server cannot contain
OneP...
Install GPMC, .NET, and MMC
GPMC SP1
• Required for management server role
• Download from Microsoft
.NET Framework 2.0
• ...
Install WSUS
• Store updates locally
• Create a WSUS Web site during
installation—FCS requires WSUS
to use port 8530
• Con...
18
Demo
• Using Forefront Client Security to Protect
Client Computers
• Updating Signature Files
• Using Policies to Manage C...
• Supported Platforms
– Server
• Windows 2003 Server/SP1
• Windows 2003 Server/R2
• Longhorn Server (at RTM)
– Client
• Wi...
21
 One dashboard for visibility
into threats and vulnerabilities
 View insightful reports
 Stay informed with state
as...
22
Viewing Reports
Reporting Details
Integração com MOM 2005
Uso SQL Reporting Services
Demonstra o status da segurança co...
23
Malware outbreakMalware outbreak
Malware protection disabledMalware protection disabled
Malware detectedMalware detecte...
Security SummarySecurity SummarySecurity SummarySecurity Summary
•CurrentCurrent
•ClientClient
•ServerServer
•EdgeEdge
•Dec 2006Dec 2006 •20072007++
•TBDTBD
Security Product Roadmap
Antig...
• Public beta available now!
– Download at
http://www.microsoft.com/clientsecurity
– Community-based support at
http://www...
http://www.microsoft.com/isaserver/2006
http://www.microsoft.com/clientsecurityhttp://www.microsoft.com/clientsecurity
htt...
Other Resources
Technical Chats and WebcastsTechnical Chats and Webcasts
http://www.microsoft.com/communities/chats/defaul...
© 2006 Microsoft Corporation. All rights reserved.
This presentation is for informational purposes only. Microsoft makes n...
•Magic Quadrant DisclaimerMagic Quadrant Disclaimer
This Magic Quadrant graphic was published by Gartner, Inc. as part of ...
Forefront Microsoft Part 1
Forefront Microsoft Part 1
Upcoming SlideShare
Loading in...5
×

Forefront Microsoft Part 1

169
-1

Published on

Published in: Technology
0 Comments
0 Likes
Statistics
Notes
  • Be the first to comment

  • Be the first to like this

No Downloads
Views
Total Views
169
On Slideshare
0
From Embeds
0
Number of Embeds
0
Actions
Shares
0
Downloads
2
Comments
0
Likes
0
Embeds 0
No embeds

No notes for slide
  • Slide Title: Title Slide
    Keywords:
    Key Message: Welcome to this Microsoft TechNet session Deploying Forefront Client Security, Part 1.
    Slide Builds: 0
    Slide Script:
    Hello and welcome to this Microsoft TechNet session Deploying Forefront Client Security, Part 1. My name is {insert name}. This is part one of a two part session in which we explore how to prepare for and deploy Forefront Client Security.
    Slide Transition: Let us start this session by going into more detail about exactly what we will be covering.
    Slide Comment:
    Additional Information:
  • Slide Title: What Will We Cover
    Keywords: What we will cover
    Key Message: In this session we will learn about the first steps to deploying FCS.
    Slide Builds: 2
    Slide Script:
    In this session, we’ll have a short, high-level overview of Forefront Client Security (FCS), to see where it fits into enterprise security.
    [BUILD1] Before you can deploy FCS in your organization, you have to meet some minimum hardware requirements and have several software packages installed on the server and clients. We’ll go over what these requirements are in the order in which they need to be met.
    [BUILD2] For some of the software prerequisites, we’ll go into greater detail on where to get software, options to choose when installing prerequisites, and post-install configuration of prerequisite software to get your server and clients ready for a successful FCS deployment. By the end of this session, you’ll be able to prepare servers and clients for a deployment of FCS.
    Slide Transition: As with most TechNet sessions, some prior experience of Microsoft technologies or similar technologies is always helpful. Here’s a brief overview of what would be helpful, but not essential, for this session.
    Slide Comment:
    Additional Information:
  • Slide Title: Helpful Experience
    Keywords: MOM, SQL Server, Security
    Key Message: Be familiar with MOM, SQL Server, and Network security.
    Slide Builds: 2
    Slide Script:
    As we go through today's session, you will hear various Microsoft acronyms and terminology. While we will explain all new terms related to today's session, there are some general terms from the industry or other versions of Microsoft products we may not spend time on. To assist you, we have listed out the areas that it may be helpful to be familiar with, either prior to this session or to reference afterwards.
    FCS uses the Microsoft Operations Manager platform. It is helpful, although not necessary, to be somewhat familiar with MOM at the start of this session.
    [BUILD1] One of the main prerequisites for MOM and FCS is SQL Server 2005, so it will be helpful if you have some experience with the SQL Server database engine and SQL Server Reporting Services.
    [BUILD2] Because FCS is designed to protect against malware in the enterprise, it will be helpful to have some experience with implementing antivirus, anti-spyware, and other threat mitigation strategies
    Slide Transition: To cover the topics mentioned earlier and keep the session flow going, we have divided the session up into the following agenda items.
    Slide Comment:
    Additional Information:
  • Slide Title: A Comprehensive Security Solution
    Keywords: FCS Microsoft Security
    Key Message: Microsoft Forefront is part of a complete Microsoft Security Strategy.
    Slide Builds: 4
    Slide Script:
    The Microsoft Forefront comprehensive line of business security products provides greater protection and control through integration with your existing IT infrastructure, and through simplified deployment, management, and analysis. Forefront includes products for protecting the client and server operating system, server applications, and the network edge.
    Today we will talk in depth about Forefront Client Security. FCS helps protect business desktops, laptops, and server operating systems from viruses, spyware, rootkits, and other malware threats. Microsoft Forefront Client Security integrates with existing infrastructure software, such as Active Directory, and complements other Microsoft security technologies for enhanced protection and control. By delivering simplified administration through central management and providing critical visibility into threats and vulnerabilities, FCS helps IT administrators protect their business with confidence and efficiency.
    Forefront Server Security products—Forefront Security for Exchange Server, for SharePoint, and for Office Communications Server—are Application server-level antivirus, anti-spam, and content-filtering products that help businesses protect their e-mail and collaboration environments against viruses, worms, spam, and inappropriate content.
    Microsoft ISA Server 2006 can protect the edge of the enterprise. It is an application layer firewall, Virtual Private Network (VPN), and Web cache solution that adds advanced application-layer firewall protection for Microsoft Exchange Server and other Microsoft applications, providing greater security than most traditional hardware firewalls.
    For Exchange services, Microsoft offers Exchange Hosted Services (formerly FrontBridge Technologies). Exchange Hosted Services is four distinct services that help organizations protect themselves from e-mail-borne malware, satisfy retention requirements for compliance, encrypt data to preserve confidentiality, and preserve access to e-mail during and after emergency situations.
    [BUILD1] Forefront, ISA, and Exchange Hosted Services operate on the Windows Server and Desktop platforms. Windows XP Service Pack 2 and Windows Server 2003 Service Pack 1 have both been awarded the Common Criteria Certification EAL 4+, an international security evaluation scheme. Features of Windows Server 2003 include Network Address Protection, which isolates and controls network traffic to server resources. Forefront Server Security gives the administrator a great deal of control of content within the network. To control content even as it leaves the network, Microsoft offers Windows Rights Management Services, which will enforce viewing, printing, and forwarding policies for e-mail messages and documents.
  • Today, infection by malicious software creates a costly problem for businesses. Gartner has estimated that 20-40% of help desk calls are related to spyware and in a recent Forrester survey asking about IT security risks that technology decision-makers are concerned about, 73% of firms rated viruses and worms as their top concern.
    Microsoft Forefront Client Security provides unified malware protection for business desktops, laptops and server operating systems that is easier to manage and control. Built on the same highly successful Microsoft protection technology already used by millions of people worldwide, Forefront Client Security helps guard against emerging threats such as spyware and rootkits as well as traditional threats such as viruses, worms and Trojan horses. By delivering simplified administration through central management and providing critical visibility into threats and vulnerabilities, Forefront Client Security helps you protect your business with greater confidence and efficiency. Forefront Client Security integrates with your existing infrastructure software, such as Active Directory, and complements other Microsoft security technologies for better protection and greater control.
    Unified Protection
    Microsoft Forefront Client Security delivers unified protection from current and emerging malware, so you can feel confident that your business systems are better protected against a broad range of threats. Through a single agent, Microsoft Forefront Client Security provides real-time detection and removal of spyware, rootkits, and other emerging threats as well as traditional attacks such as viruses and worms.
    Microsoft Forefront Client Security unified protection capabilities deliver:
    Protection technology already used by millions of people worldwide
    Forefront Client Security employs the same highly successful Microsoft protection technology already used in products such as Windows Live™ OneCare, Windows® Defender and Windows Live Safety Center.
    Effective threat response
    Forefront Client Security offers effective response through automated analysis of multiple data sources, backed by a 24/7 global security research organization. Microsoft’s advanced security analysis is powered by multiple data sources, including Dr. Watson, Hotmail®, Microsoft Exchange Hosted Services, Microsoft’s protection technologies, Web crawlers, community submissions, and industry collaboration.
    Defense-in-depth as part of a comprehensive security solution
    Forefront Client Security delivers defense-in-depth when combined with other security solutions such as Microsoft Antigen, Microsoft Internet Security & Acceleration (ISA) Server and Microsoft Exchange Hosted Services.
    Simplified Administration
    Microsoft Forefront Client Security provides simplified administration through central management, so you can protect your business with greater efficiency. With one console for simplified client security administration, Microsoft Forefront Client Security saves time and reduces complexity. Using familiar interfaces similar to those found in other Microsoft tools, the console can be used for both local and remote access to all administrative functions including configuration, signature updates, reporting and alerting.
    Microsoft Forefront Client Security simplified administration capabilities enable you to:
    Define one policy to manage client protection agent settings
    Forefront Client Security helps increase your efficiency through a single policy that configures the anti-spyware, anti-virus and state assessment technologies for one or more protected computers. New policies are created with preconfigured settings that can be easily tailored to the needs of your environment. Policies also include alert level settings that can be easily configured to specify the type and volume of alerts and events generated by different groups of protected machines. Policies can be deployed via Active Directory® or any existing software distribution system that you are familiar with.
    Deploy signatures and software faster
    Forefront Client Security enables faster signature and software deployment to desktops, laptops and server operating systems. The product is optimized for signature distribution through Windows Server™ Update Services (WSUS); however security administrators can also use any software distribution system to deploy Forefront Client Security signatures or software. Forefront Client Security agent software is designed to deploy as a single client package that includes all protection and management capabilities.
    Integrate with your existing infrastructure
    Forefront Client Security helps you gain greater control over your client security by integrating with your existing infrastructure software. Microsoft SQL Server is used by the Forefront Client Security event and reporting system. Active Directory® Group Policy or any other software distribution system can be used to deploy Forefront Client Security agent settings.
    Critical Visibility and Control
    Microsoft Forefront Client Security produces insightful prioritized security reports, so you have visibility and control over malware threats. A single dashboard snapshot of your current security status helps you understand where action is required.
    Microsoft Forefront Client Security critical visibility and control capabilities give you the ability to:
    View insightful reports
    Forefront Client Security helps you prioritize your time and focus on what’s most important now through easy to use insightful reports. Forefront Client Security reports give you the ability to examine real-time data and emerging trends. Each report is hyperlinked to enable you to connect directly to critical information. The reporting system within Forefront Client Security allows you to drill down from the summary dashboard to more detail as required, and to deliver executive reports that crisply communicate status to senior management.
    Stay informed with state assessment scans and security alerts
    Forefront Client Security provides the tools necessary to focus on key threats and potential vulnerabilities throughout your business. State assessment scans help you to determine which Forefront Client Security managed machines need patches or are configured insecurely. When threats are identified, insightful, prioritized information is delivered through security alerts that eliminate the need to search through volumes of data.
    Microsoft Forefront Client Security is designed for business customers who want one solution for real-time detection and removal of spyware, rootkits, and other emerging threats as well as traditional attacks such as viruses, worms and Trojan horses. An early beta version of Microsoft Forefront Client Security has been shipped to selected customers. Microsoft plans to make the public beta version of Microsoft Forefront Client Security available in Q4 of CY2006. The product is targeted for release to manufacture in the first half of CY2007.
    Microsoft Forefront Client Security will be available for purchase through Microsoft’s volume licensing programs. In addition, Forefront Client Security will be included in the upcoming Forefront Security Suite and Enterprise CAL Suite. Further pricing and licensing information, including further details of Microsoft volume licensing program benefits, will be announced at a later date. More general information about how to buy Forefront security products is available at: http://www.microsoft.com/forefront.
    Microsoft Forefront Client Security was previously known as Microsoft Client Protection.
  • .
  • Slide Title: Agenda: Installing Prerequisites
    Keywords:
    Key Message: agenda
    Slide Builds: 0
    Slide Script:
    Now that we’ve taken a quick, high-level look at FCS, let’s delve into the prerequisites you need to deploy FCS.
    Slide Transition: To install FCS in your organization, your hardware must meet some minimum requirements.
    Slide Comment:
    Additional Information:
  • Slide Title: Hardware Prerequisites
    Keywords: FCS, Forefront Client Security, hardware prerequisites
    Key Message: Several hardware prerequisites must be met before installing FCS.
    Slide Builds: 2
    Slide Script:
    To install FCS on a single server, you must first have a domain controller with a minimum configuration of a 133 megahertz CPU, 128 megabytes of RAM, and 2 gigabytes of available disk space.
    [BUILD1] The FCS server has significantly higher minimum hardware requirements. It must have at least a 750 megahertz CPU, 512 megabytes of RAM, 80 gigabytes of available disk space, and a DVD-ROM drive for installation
    [BUILD2] FCS clients must also meet minimum hardware requirements for FCS to function properly. A client must have at least a 500 megahertz CPU, 256 megabytes of RAM, and 350 megabytes of available disk space
    Slide Transition: On the software side, the FCS Server must have several software applications installed before installing FCS.
    Slide Comment:
    Additional Information:
    “Hardware Prerequisites for One-Server Installation”
    “Deploying Microsoft Forefront Client Security”
  • Slide Title: Software Prerequisites
    Keywords: FCS, Forefront Client Security, software prerequisites
    Key Message: FCS is built upon several other Microsoft products, including SQL 2005 and Microsoft Operations Manager 2005 SP1.
    Slide Builds: 3
    Slide Script:
    Our FCS Server needs to be Windows Server 2003 SP1 or R2.
    FCS relies upon SQL Server 2005 as its underlying database, and uses SQL Server 2005 Reporting Services for its reporting facility. For update distribution, FCS requires WSUS.
    [BUILD1] For deploying group policies, download and install the Group Policy Management Console.
    [BUILD2] For the proper functioning of the FCS console and application, make sure that the FCS servers have installed the .NET Framework 2.0, MMC 3.0, and IIS 6.0.
    Because FCS is based on Microsoft Operations Manager 2005, the SQL Server hotfixes for MOM 2005 need to be installed before deploying FCS.
    [BUILD3] Installed with FCS are the SQL hotfixes for Microsoft Operations Manager 2005, MOM 2005 SP1, and MOM Reporting.
    Slide Transition: Let’s go through the process of installing some of these prerequisites.
    Slide Comment:
    Additional Information:
    “Installing the Software Prerequisites for Forefront Client Security”
    “Deploying Microsoft Forefront Client Security”
  • Slide Title: Demonstration: Installing Software Prerequisites
    Keywords:
    Key Message: Demonstration
    Slide Builds: 0
    Slide Script:
    In this demonstration, we will install and configure some of the FCS software prerequisites.
    Slide Transition: Now, let’s talk more in-depth about the FCS prerequisites.
    Slide Comment:
    Additional Information:
  • Slide Title: Understanding Policies
    Keywords: Forefront Client Security, FCS, Policies, Client Protection Console
    Key Message: In FCS, configurations are determined by the policies that an administrator sets.
    Slide Builds: 1
    Slide Script:
    In FCS, configurations are determined by the policies that an administrator sets. Policies determine the state of the client computer, which clients are affected, the specific operations a scan performs, what information to report to the FCS server, and how often to report it. FCS stores and deploys policies as a collection of registry key settings. A policy can be applied domain-wide or to a particular organizational unit.
    The administrator uses the Forefront Client Security Console to create and edit policies.
    [BUILD1]
    Group Policy Management Console, GPMC, is a prerequisite for installing FCS, because Group Policies are the primary vehicle for deploying Forefront Client Security policies to client computers. When you create a policy, it is deployed as a Group Policy object, or GPO. You can edit, remove, or delete any GPOs that you have created. You can also export your policies as registry files if you need to deploy them through another program.
    A computer can only have one policy. If a new policy is applied to the OU, or domain of a computer that already has received an FCS policy, the first policy will be completely removed and replaced by the new policy.
    Because policies are an easily deployed .reg file, other deployment tools, such as Systems Management Server or third party tools, can also be used to deploy FCS policies.
    Slide Transition: Let’s take a more detailed look at the software prerequisites for FCS.
    Slide Comment:
    Additional Information:
    Forefront Client security help file
    Forefront Client Security Getting Started Guide
  • Slide Title: Install and configure IIS
    Keywords: Forefront Client Security, IIS, ASP.NET, FrontPage extensions
    Key Message: IIS, ASP.NET and FrontPage extensions must be installed on the FCS server.
    Slide Builds: 2
    Slide Script:
    The reporting server role in FCS requires IIS, ASP.NET, and FrontPage Server Extensions to be installed on the server. To install IIS, ASP.NET, and FrontPage server extensions, run the Configure Your Server Wizard in the Manage Your Server application.
    [BUILD1]
    Add the Application Server Role, which will install IIS.
    [BUILD2]
    By default, FrontPage Server Extensions and ASP.NET are not installed with IIS. Make sure you enable both these options during the installation of IIS.
    Slide Transition: There are some other prerequisite software packages that you must install.
    Slide Comment:
    Additional Information:
    Forefront Client security help file
    Forefront Client Security Getting Started Guide
  • Slide Title: Install SQL Server 2005
    Keywords: SQL Server, Reporting Services, FCS, Forefront
    Key Message: SQL Server 2005 must be installed for the collection server role
    Slide Builds: 2
    Slide Script:
    The collection server role in FCS requires Microsoft SQL Server 2005 with SP1, and the reporting server role in FCS requires Microsoft SQL Server 2005 Reporting Services with SP1. You may use a new or existing installation of SQL Server. To use an existing installation of SQL Server, you can give the server location when running the Microsoft Forefront Client Security Setup Wizard. If you do use an existing installation of SQL Server, you still must use SQL Server 2005 with SP1.
    [BUILD1]
    In addition, the existing installation must not have a OnePoint or SystemCenterReporting database. As part of the Forefront Client Security installation, these are created for Microsoft Operations Manager. To install SQL Server 2005 or SQL Server 2005 Reporting Services, follow the steps in SQL Server Books Online.
    [BUILD2]
    It is recommended that you use Windows Authentication as the security mode when installing SQL Server 2005. Windows Authentication mode is much more secure than mixed mode.
    Slide Transition: There are some other prerequisite software packages you must install.
    Slide Comment:
    Additional Information:
    www.microsoft.com/mom
    SQL Server Books Online
  • Slide Title: Install GPMC, .NET, and MMC
    Keywords: Forefront Client Security, group policy, Group Policy Management Console, GPMC, .NET, MMC
    Key Message: GPMC Service Pack 1, .NET 2.0, and MMC 3.0 are required on the FCS management server.
    Slide Builds: 2
    Slide Script:
    The management server role requires Group Policy Management Console, GPMC, with Service Pack 1. You can download the GPMC with Service Pack 1 from the Microsoft Download Center.
    [BUILD1]
    The management server role also requires Microsoft .NET Framework 2.0. In the majority of cases, .NET Framework 2.0 will already be installed on your management server. For example, Microsoft SQL Server 2005 installs .NET Framework 2.0 by default. If it is not already installed, you can download and install.NET Framework 2.0 from the Microsoft Download Center.
    [BUILD2]
    The management server role requires Microsoft Management Console (MMC) 3.0, which Microsoft Windows Server 2003 R2 installs by default. If you are using Windows 2003 SP1 and have not already installed MMC 3.0, you can download and install it from the Microsoft Download Center.
    Slide Transition: Finally, you must install Window Server Update Services 2.0.
    Slide Comment:
    Additional Information:
    FCS Help File
    FCS Deployment Guide
  • Slide Title: Install WSUS
    Keywords: Forefront Client Security, WSUS, Windows Server Update Services
    Key Message: Windows Server Update Services is required to distribute definitions to FCS clients.
    Slide Builds: 3
    Slide Script:
    The FCS distribution role requires Windows Server Update Services with SP1 to be installed. During the installation process, on the Select Update Source page, verify that the Store Updates Locally check box is selected; you will need to store updates locally to distribute FCS definitions from the FCS server to FCS clients.
    [BUILD1]
    Also, during installation, on the Web Site Selection page, select Create a Microsoft Windows Server Update Services Web site. This option is required because FCS requires WSUS to use port 8530.
    [BUILD2]
    Before installing and configuring the FCS distribution role, you should configure the automatic approval rules for WSUS to allow for automatic distribution of updates. This will help speed the distribution of FCS definition updates by not requiring manual approval for each update.
    [BUILD3]
    After the installation is complete, start the WSUS console application in the Administrative Tools Group and perform a manual synchronization. If you use a proxy server on your network, you can specify the proxy server settings for WSUS after installing it. The first time you synchronize your WSUS server, it can take several hours. When WSUS has successfully synchronized, the prerequisite installation is complete, and you can move forward with installing the FCS Server.
    Slide Transition: Let’s see a demonstration of how to install some of the client prerequisites for FCS.
    Slide Comment:
    Additional Information:
    Configuring WSUS to use a Proxy Server
    FCS Deployment Guide
  • Slide Title: Demonstration: Installing Client Prerequisites
    Keywords:
    Key Message: Demonstration
    Slide Builds: 0
    Slide Script:
    In this demonstration, we will install and configure some of FCS prerequisites on client workstations.
    Slide Transition: Let’s take a quick look at what we’ll cover in part two of this session.
    Slide Comment:
    Additional Information:
  • Forefront Microsoft Part 1

    1. 1. Protegendo seus desktops e servidores com o Microsoft Forefront Client Security Visão Geral e Implementação Técnica - Parte 1 Ricardo Frois Security Specialist Microsoft Brasil
    2. 2. • FCS Overview • FCS Prerequisites • Prerequisite installation and configuration Agenda
    3. 3. Level 200 • Familiarity with Microsoft Operations Manager • Familiarity with Microsoft SQL Server • Experience with network security Helpful Experience
    4. 4. Guidance Developer Tools Systems ManagementActive DirectoryActive Directory Federation ServicesFederation Services (ADFS)(ADFS) Identity Management Content Services Client and Server OS Server Applications Edge Network Access Protection (NAP) A Comprehensive Security Solution
    5. 5. •InternetInternet •AA •BB •CC •DD •EE •Exchange Server/Exchange Server/ Windows-basedWindows-based SMTP ServerSMTP Server • Distributed protectionDistributed protection • Performance tuningPerformance tuning • Content filteringContent filtering • Central managementCentral management •Gartner Magic Quadrant forGartner Magic Quadrant for •E-Mail Security Boundary 2006 *E-Mail Security Boundary 2006 * •** Magic Quadrant for E-Mail Security Boundary, 2006. Peter Firstbrook, Arabella HallawellMagic Quadrant for E-Mail Security Boundary, 2006. Peter Firstbrook, Arabella Hallawell Publication Date: 25 September 2006/ID Number: G00142431Publication Date: 25 September 2006/ID Number: G00142431
    6. 6. 6 Remove mostRemove most prevalent virusesprevalent viruses Remove allRemove all known virusesknown viruses Real-timeReal-time antivirusantivirus Remove allRemove all known spywareknown spyware Real-timeReal-time antispywareantispyware Central reportingCentral reporting and alertingand alerting CustomizationCustomization Forefront ClientForefront Client SecuritySecurity MSRTMSRT WindowsWindows DefenderDefender Windows LiveWindows Live Safety CenterSafety Center Windows LiveWindows Live OneCareOneCare IT InfrastructureIT Infrastructure IntegrationIntegration FOR INDIVIDUAL USERSFOR INDIVIDUAL USERS FOR BUSINESSESFOR BUSINESSES
    7. 7. 7  Solução unificada contra virus e spyware  Construido usando como base tecnologia usada por milhões de usuários  Resposta a ameaças eficaz  Complementa as outras soluções de segurança Microsoft  Console única para administração de segurança  Definição de uma única política para as configurações de proteção de clientes  Distribuição de assinaturas e software de forma mais rápida  Integração com a infra estrutura existente  Um único painel de controle para visualização de ameaças e vulnerabilidades  Visualização de relatórios mais importantes  Permite que os administradores se mantenham informados sobre o estado de scannings, alertas de segurança Proteção unificada contra malware para desktops, laptops e servidores corporativos com gerenciamento e controle unificados
    8. 8. Greater confidence Greater efficiency Greater control Proteção unificada contra malware para desktops, laptops e servidores corporativos com gerenciamento e controle unificados
    9. 9. • Reviewing FCS • Installing Prerequisites Agenda
    10. 10. Hardware Prerequisites Domain Controller 133 Mhz 128 MB RAM 2GB available disk space FCS Server Minimum 750 Mhz 512 MB RAM 80GB available disk space DVD-ROM FCS Client 500 Mhz 256 MB RAM 350MB available disk space
    11. 11. Software Prerequisites SQL Server 2005 + Reporting Services Windows Software Update Services Group Policy Management Console .NET Framework 2.0 MMC 3.0 IIS 6.0 Installed with FCS Hotfixes for MOM and SQL Microsoft Operations Manager 2005 SP1 Microsoft Operations Manager Reporting
    12. 12. Demo Installing Software Prerequisites  Review Installed Prerequisites  Review Reporting Services Configuration  Install .NET Framework 2.0 demonstration
    13. 13. Understanding Policies Forefront Client Security Console Administrator creates& deploys policy Group Policy Management Console Clients
    14. 14. Install and Configure IIS Configure your Server Wizard Add Application Server Role (IIS) Enable FrontPage Server Extensions Enable ASP.NET
    15. 15. Install SQL Server 2005 Install new or use existing SQL Server with Service Pack 1 Existing SQL Server cannot contain OnePoint or SystemCenterReporting databases Install Database Engine and Reporting Services Use Windows Authentication whenever possible on SQL Server 2005.
    16. 16. Install GPMC, .NET, and MMC GPMC SP1 • Required for management server role • Download from Microsoft .NET Framework 2.0 • Required for management server role • Usually already installed MMC 3.0 • Required for management server role • Included with Windows Server 2003 R2
    17. 17. Install WSUS • Store updates locally • Create a WSUS Web site during installation—FCS requires WSUS to use port 8530 • Configure automatic approval • First synchronization can take several hours
    18. 18. 18
    19. 19. Demo • Using Forefront Client Security to Protect Client Computers • Updating Signature Files • Using Policies to Manage Client Computers DDemonstration
    20. 20. • Supported Platforms – Server • Windows 2003 Server/SP1 • Windows 2003 Server/R2 • Longhorn Server (at RTM) – Client • Windows 2000/SP4 + Rollup – Requires GDI+ QFE • Windows XP/SP2 – Requires Filter Manager QFE
    21. 21. 21  One dashboard for visibility into threats and vulnerabilities  View insightful reports  Stay informed with state assessment scans and security alerts
    22. 22. 22 Viewing Reports Reporting Details Integração com MOM 2005 Uso SQL Reporting Services Demonstra o status da segurança contra malware na sua empresa Especifica point-in-time e over time Tipos de Relatorios Malware Threat(s)Malware Threat(s) Vulnerability SummaryVulnerability Summary Scan ResultsScan Results Historical InformationHistorical Information Summary ReportSummary Report DeploymentDeployment AlertsAlerts ComputersComputers
    23. 23. 23 Malware outbreakMalware outbreak Malware protection disabledMalware protection disabled Malware detectedMalware detected Malware failed to removeMalware failed to remove Respond to Alerts Alerting Functionality Notificação e administração dos valores de incidentes incluindo: Controle do tipo de nivel de alertas & volume de alertas geradosControle do tipo de nivel de alertas & volume de alertas gerados 11 55443322 OutbreakOutbreak MalwareMalware removal failedremoval failed SignatureSignature update failedupdate failed Malware detectedMalware detected and removedand removed Signature updateSignature update failed (per min)failed (per min) Rich Data,Rich Data, High Value AssetsHigh Value Assets Critical Issues Only,Critical Issues Only, Low Value AssetsLow Value Assets
    24. 24. Security SummarySecurity SummarySecurity SummarySecurity Summary
    25. 25. •CurrentCurrent •ClientClient •ServerServer •EdgeEdge •Dec 2006Dec 2006 •20072007++ •TBDTBD Security Product Roadmap Antigen Messaging Security Suite Microsoft®
    26. 26. • Public beta available now! – Download at http://www.microsoft.com/clientsecurity – Community-based support at http://www.microsoft.com/technet/clientsecurity • Release To Manufacture planned for Q2 CY2007
    27. 27. http://www.microsoft.com/isaserver/2006 http://www.microsoft.com/clientsecurityhttp://www.microsoft.com/clientsecurity http://www.microsoft.com/antigenhttp://www.microsoft.com/antigen Put your organization through a security auditPut your organization through a security audit Contact your Microsoft rep or reseller for informationContact your Microsoft rep or reseller for information and adviceand advice http://www.microsoft.com/forefronthttp://www.microsoft.com/forefront Download trial versions ofDownload trial versions of Register for beta information aboutRegister for beta information about
    28. 28. Other Resources Technical Chats and WebcastsTechnical Chats and Webcasts http://www.microsoft.com/communities/chats/default.mspxhttp://www.microsoft.com/communities/chats/default.mspx http://www.microsoft.com/usa/webcasts/default.asphttp://www.microsoft.com/usa/webcasts/default.asp Microsoft Learning and CertificationMicrosoft Learning and Certification http://www.microsoft.com/learning/default.mspxhttp://www.microsoft.com/learning/default.mspx MSDN & TechNetMSDN & TechNet http://microsoft.com/msdnhttp://microsoft.com/msdn http://microsoft.com/technethttp://microsoft.com/technet Virtual LabsVirtual Labs http://www.microsoft.com/technet/traincert/virtuallab/rms.mspxhttp://www.microsoft.com/technet/traincert/virtuallab/rms.mspx
    29. 29. © 2006 Microsoft Corporation. All rights reserved. This presentation is for informational purposes only. Microsoft makes no warranties, express or implied, in this summary.
    30. 30. •Magic Quadrant DisclaimerMagic Quadrant Disclaimer This Magic Quadrant graphic was published by Gartner, Inc. as part of a largerThis Magic Quadrant graphic was published by Gartner, Inc. as part of a larger research note and should be evaluated in the context of the entire report. Theresearch note and should be evaluated in the context of the entire report. The Gartner report is available upon request from Microsoft. Go to:Gartner report is available upon request from Microsoft. Go to: www.microsoft.com/forefrontwww.microsoft.com/forefront •The Magic Quadrant noted on slide 10 is copyrighted September 25, 2006, byThe Magic Quadrant noted on slide 10 is copyrighted September 25, 2006, by Gartner, Inc. and is reused with permission. The Magic Quadrant is a graphicalGartner, Inc. and is reused with permission. The Magic Quadrant is a graphical representation of a marketplace at and for a specific time period. It depictsrepresentation of a marketplace at and for a specific time period. It depicts Gartner's analysis of how certain vendors measure against criteria for thatGartner's analysis of how certain vendors measure against criteria for that marketplace, as defined by Gartner. Gartner does not endorse any vendor, productmarketplace, as defined by Gartner. Gartner does not endorse any vendor, product or service depicted in the Magic Quadrant, and does not advise technology usersor service depicted in the Magic Quadrant, and does not advise technology users to select only those vendors placed in the "Leaders" quadrant. The Magic Quadrantto select only those vendors placed in the "Leaders" quadrant. The Magic Quadrant is intended solely as a research tool, and is not meant to be a specific guide tois intended solely as a research tool, and is not meant to be a specific guide to action. Gartner disclaims all warranties, express or implied, with respect to thisaction. Gartner disclaims all warranties, express or implied, with respect to this research, including any warranties of merchantability or fitness for a particularresearch, including any warranties of merchantability or fitness for a particular purpose.purpose.
    1. A particular slide catching your eye?

      Clipping is a handy way to collect important slides you want to go back to later.

    ×