Hello everyone!! With the successful release of Forefront Client Security v1, it’s time to focus our efforts on the next release! The Forefront Technology Adoption Team (TAP) is excited to announce the launch of our new program. The next version of the Forefront Client Security product will be bigger and better than the previous version, and so will the TAP, but we can’t do it without your help.
This Microsoft Forefront Technology Adoption Program includes all products under the Forefront product line, not just the Forefront Client Security product. These products are:
· Forefront Codename “Stirling” – (To learn more about “Stirling”, check out the “Stirling” site.)
· Forefront Client Security (FCS)
· Forefront Security for Exchange Server (FSE)
· Forefront Security for SharePoint (FSSP)
· Microsoft Internet Security and Acceleration Server (ISA) integration with “Stirling”
Based on your needs, you can utilize just Forefront Client Security or, if your organization uses multiple Forefront products, any combination of the above (we’d really like to find a bunch of customers that use at least two!) The TAP program is a great opportunity for you and the Forefront product teams to collaborate and learn from each other. Your feedback is heard directly by the product team, helping you and us to improve the product. Feedback is taken in the form of general feedback, bugs reports, and Design Change Requests (DCRs). The program timeline is aggressive, starting November 27, 2007 and finishing in calendar year 2009.
To start your nomination for the Forefront TAP, please fill out the survey by:
You will receive a response from Microsoft within 2 - 3 weeks.
If you have any questions regarding the program or the nomination process, please email email@example.com or Stirtap@microsoft.com.
Forefront TAP PM
Forefront Client Security is an enterprise-level antimalware offering. As part of a total security solution, Client Security protects your client computers from malware threats in the enterprise.
Threats don’t always come from the world outside your firewall. Your users may be unknowingly bringing malware into the work environment by bringing in items as innocuous as pictures. Enabling users to protect their home computers from malware threats could reduce the incidence of malware in your enterprise.
Customers who license the Client Security agent on a per-user basis can provide the Client Security agent to employees at no additional cost for protecting home computers. These home-based Client Security agents must be deployed in an unmanaged configuration; they will not be able to report to your Client Security servers in your enterprise.
Today we published another Security State Assessment (SSA) definition update on Microsoft Update!
Included in this release is a new check that will provide visibility into end-user configuration of the Windows Firewall. When used with Group Policy, this new functionality aids in firewall management.
The Windows Firewall check reports on:
· Firewall status (on/off)
· User-defined exceptions
· Applicability to each network interface
Determining firewall status:
· If Windows Firewall is disabled on any network interface, the score is “High”
· If Windows Firewall is configured by Group Policy, the score is “Informational
Visibility into firewall exceptions:
· Enumerates each port and application exception
· Any exception not configured via Group Policy, the score is “Medium”
· If configured by Group Policy, the score is “Informational”
Another update included in this release is a change to the Unapproved Updates check. In an earlier version, this check enumerated any updates that were available but not yet approved, to provide a complete view on overall vulnerability state. Based on customer feedback, we updated the check to report only on unapproved security updates with a Critical severity.
Please give your SSA summary report a look, and find out more about what these new checks are discovering in your organization!
Program Manager, Forefront Client Security
While you’ve always had the ability to use MOM 2005 to monitor things like IIS and SQL for your Client Security servers, this management pack gives you the additional ability to monitor some key FCS services:
I should clarify; the management pack is installed in your MOM 2005 environment to extend existing MOM functionality, not on your FCS servers.
Of course, loading the management pack doesn’t impact how you’ll be monitoring your client computers. In other words, you won’t need to redeploy your implementation in order to add this additional monitoring functionality. You’ll continue to use the Client Security consoles you’re familiar with for your client monitoring. The Health Management pack is just for monitoring your FCS servers, not client computers. And just for environments that choose to implement a MOM 2005 monitoring solution. (notice, it’s a MOM 2005 management pack, not a SCOM management pack, just in case you were wondering “Hey, will this work with SCOM?”)
The FCS management pack is ready for download at this location: http://www.microsoft.com/downloads/details.aspx?FamilyID=0672b4ca-c6dc-4093-bae6-30eb1560a429&DisplayLang=en
Exciting news! Forefront Client Security is a finalist for Info Security's 2008 Global Excellence in Anti-Malware Solution! The Forefront family of products made finalist in four categories - two more than a certain other big security company.
You can read more about the Forefront Info Security 2008 Global Excellence finalists here.