Tuesday, July 10, 2012 10:29 PMHello,
We are running System Center Configuration Manager 2012 with System Center 2012 Endpoint Protection. We have all of our clients set up.
What we don't know is what to do with our Exchange server. We are running Exchange 2010 SP1 and have Forefront Protection for Exchange 2010 installed.
Do we need to roll out a SCEP client to the Exchange server in addition to FPE or instead of FPE or not at all?
What kind of monitoring will this be capable of if we do it in addition to or instead of, is it better or worse than monitoring in FPE 2010?
Also, if we do roll out SCEP to Exchange, is there some guides for the policy on Exchange server?
If this is in the wrong forum let me know.
- Moved by Joyce Wang [MSFT]Microsoft Employee Tuesday, July 10, 2012 11:03 PM (From:Configuration Manager 2012 - General)
Wednesday, July 11, 2012 7:37 AM
Forefront Protection for Exchange 2010 is used for "scanning" malware and spam inside Exchange not the OS it self.
To protect your os you need SCEP. If you choose to install SCEP on your Exchange servers you can import an Antimalware policy thats optimized for Exchange 2010 and FEP.
Wednesday, July 11, 2012 3:03 PMWhere would we import this policy from? Is it built into SCEP or do we need to download it and import it manually?
Wednesday, July 11, 2012 5:38 PM
You find will it in: \Program Files (x86)\Microsoft Configuration Manager\AdminConsole\XmlStorage\EPTemplates
to import, go to sccm console in Assets and Compliance - Endpoint protections folder - Rightclick on Antimaleware Policies and choose Import.