Forefront Client Security Administration

Forefront Client Security: Modifying Database and Environment Variables to Support the DTS Package for Proper Data Storage on a Forefront Client Security SP1 Server

lynn lunik — Tue, 02 Jun 2009 09:14:00 GMT

Summary: In this Blog entry I review several configuration parameters for the Database and Operating System Environment on a Forefront Client Security SP1 Single Server Topology on Windows 2008 that allow proper data storage for both Short Term Data and Long Term Data transferred by the Nightly Data Transformation Services Scheduled Task....(read more)

Forefront Client Security: Troubleshooting the MOM 2005 Data Transformation Services (DTS) Package Task on a Forefront Client Security SP1 Server

lynn lunik — Mon, 18 May 2009 21:55:00 GMT

In this Blog entry I review troubleshooting methods for the DTS Package Task used by MOM 2005 which is part of Forefront Client Security SP1 running as a Single Server Topology on Windows 2008. I demonstrate how to use the DTS Package Task, invoked with Switch Parameters from a Command Prompt to ensure the DTS Package Task executes properly. Additionally, I review the output of a 'successful' DTS Package Task for reference, and to ensure the overall health of a Forefront Client Security SP1 configuration running as a Single Server on Windows 2008....(read more)

Forefront Client Security: Using a Group Policy Object (GPO) to Harden Service and Registry Key Entries for the Forefront Client Security SP1 Agent on a Windows Vista Enterprise SP1 Workstation

lynn lunik — Sun, 26 Apr 2009 20:40:00 GMT

In this Blog Entry I use a Group Policy Object to modify Security Settings for both Services and Registry Keys critical to Forefront Client Security. This GPO removes Local Administrator ability to modify the Forefront Client Security Services and Registry Entries while providing the Administrative Capabilities to a separate Domain Global Security Group (DGSG) designated as Forefront Client Security SP1 Agent Administrators. ...(read more)

Forefront Client Security: Using the Log Files from the Forefront Client Security Agent SP1for Analysis

lynn lunik — Mon, 13 Apr 2009 07:24:00 GMT

In this Blog entry I review the numerous Log Files useful when Administering the Forefront Client Security SP1 Agent. Specifically I focus on using the 'mpcmdrun.exe -getfiles' Command Utility to generate a number of useful Log Files for further analysis. The 'mpcmdrun.exe' utility is a 'Hidden File' and can only be invoked in the User Context of a Local Administrator in the Forefront Client Security SP1 Agent....(read more)

Forefront Client Security: Deploying the FCS Client Agent in a Corporate Environment to a Target currently running an unmanaged FCS Client Agent

lynn lunik — Thu, 09 Apr 2009 19:05:00 GMT

In this Blog entry I have taken a single Target Client Workstation running a Standalone Installation of the Forefront Client Security SP1 Agent, created a new Forefront Client Security Client Policy to manage this Target Client Workstation, pushed out the Client Policy using Group Policy Objects (GPOs), then pushed out the MOM 2005 Agent for Alerting and Reporting to the Target Client Workstation. In the end, the Target Client Workstation moved from a Standalone Installation of the Forefront Client Security SP1 Agent to a Fully Managed Forefront Client Security SP1 Agent. Thereby allowing ongoing Support and Management from a single Console....(read more)