Monday, February 2, 2015

Configure Endpoint Protection SCCM 2012

Endpoint Protection allows the administrators to manage antimalware policies and Windows Firewall security for client computers in Configuration Manager hierarchy.

Endpoint Protection can be configured in easy 4 steps within 20 min.

Step 1: Create an Endpoint Protection point site system role by going to Add Site System Roles
from\Administration\Overview\Site Configuration\Servers and Site System Roles
Step 2: Enable Endpoint Protection Client Policy by going to Client Settings from
\Administration\Overview\Client Settings
Step 3: Configure the Endpoint Protection from client settings by going \Administration\Overview\Client Settings and create a custom client settings (or edit an existing one) then deploy to the desired device collection.

Step 4: Configure the default antimalware policy and create any custom antimalware policies by configuring Scheduled Scans, Scan Settings, Default actions, Real-time protection, Exclusion settings, Threat management, Microsoft Active Protection Service membership and Endpoint protection definition updates to apply various malware policies to the different devices (i.e. workstation policy and server policy) by going to \Assets and Compliance\Overview\Endpoint Protection\Antimalware Policies
What happens next?
When client machines gets the new client policy, they will download the Endpoint Protection client and install on the machine. Once the client is installed, based on the client settings the device will be prompted for a system restart.

After the restart, the system will get the updates from nominated source.
Once the update is complete, the Endpoint Protection system tray icon will look like this;

No comments:

Post a Comment