Escolar Documentos
Profissional Documentos
Cultura Documentos
Microsoft System
Center 2012 Endpoint
Protection Overview
Nefarious Personas
National Interest
Spy
Personal Gain
Thief
Tools created by
experts now
used by less
skilled attackers
and criminals
Trespasser
Personal Fame
Curiosity
Fastest
growing
segment
Vandal
Script-Kiddy
Author
Hobbyist
Hacker
Expert
Specialist
Simplified
Administration
Single administrator
experience for simplified
endpoint protection and
management
Enhanced
Protection
OSD
Endpoint Protection
Software Updates +
SCUP
Settings Management
Exchange Connector
SWD
FEP
DW
FEP
DB
EP SITE
ROLE
MANAGEMENT
POINT
CM
DB
CONFIGURATION
MANAGER
SITE SERVER
FEP
EXTENSIONS
EXCEL REPORTS
TEMPLATE
FEP
DEPLOYMENT
FEP
OPERATIONS
FEP POLICY
EP DEPLOYMENT
EP OPERATIONS
EP POLICY
DISTRIBUTION
POINT
CLIENT
FEP
SERVICE
SERVER
EP CLIENT
on
ConfigMgr
Server
CM CLIENT
PrePackaged EP
CLIENT
EP CLIENT
Corporate Network
MICROSOFT UPDATE
DELTA UPDATE SIZE: 50-2048 KB
UPDATE FREQUENCY: 3 TIMES/DAY
ON THE ROAD
Fallback to
online update
Updates distributed
through ConfigMgr, WSUS
or Windows File Share
Easy migration from existing solutions and automatic removal of existing clients
Symantec
McAfee
TrendMicro
Forefront Client Security or Forefront Endpoint Protection
EP agent installer
deployed with
ConfigMgr Client
EP enabled in
the consoleEP
installation
starts on the
device
EP client
install
Configure
Policy
Signature
update
Single administrator
experience for simplified
endpoint protection and
management
Quick identification
and remediation of client
security issues
Dashboard focused
on actionable events
Flexibility to separate
security admin role
Role-based administration
Access to only relevant
security information
Whats
new in SP1
A task is created 3
MP is told that new
urgent task has been
requested
Task = Run Full
Scan
Administrator
Site Server and MP
Call is placed
Client via this TCP
connection is told there are
urgent tasks to run
Client then connects to the
MP to get policy
Client runs the Full Scan
Task
Client
1
4
Dial tone
Active TCP Session
with the MP
Client Checking for
urgent tasks
Whats
new in SP1
Proactive Techniques
Behavior Monitoring
Antimalware
FILE SYSTEM
NETWORK
Internet Explorer 8
SmartScreen
User Account
Control
Windows
Resource
Protection
Microsoft AppLocker
Microsoft BitLocker
Microsoft Malware
Protection Center
Dynamic Signature
Service
APPLICATION
Potential
Malware
Execution
attempt
on the system
Real Time
Protection
Driver
Intercepts
Safe
Translation
Using DT
Malicious
File
Blocked
Malware
Detecte
d
VIRTUALIZED
RESOURCES
RESEARCHERS
REAL-TIME
SIGNATURE
DELIVERY
BEHAVIOR
CLASSIFIERS
REPUTATION
Sample
request
Sample
submit
Real-time
signature
Administrative Control
User configurability options
Central policy enforcement
Whats
new in SP1
Unify
Summary
Key Scenarios
Unified infrastructure
Server setup
Separate install
Unified setup
Client deployment
Integrated
Signature updates
Simplify
Protect
Proactive protection
Firewall management
Role based
administration
New
Reports
Online Resources
Launching
a Windows Defender Offline Scan with Configuration Manager 2012 OSD
Operating System Deployment and Endpoint Protection Client Installation
Software Update Content Cleanup in System Center 2012 Configuration Man
ager
Building Custom Endpoint Protection Reports in System Center 2012 Configu
ration Manager
Managing Software Updates in Configuration Manager 2012
How-to-Videos
Product Documentation
Security and Compliance Manager Configuration Packs
Resources
Learnin
g
Connect. Share. Discuss.
http://northamerica.msteched.com
www.microsoft.com/learning
TechNe
t
Resources for IT Professionals
http://microsoft.com/technet
http://microsoft.com/msdn