From Vittorio Bertocci on Channel 9:
Today [yesterday] we are announcing the general availability of Active Directory Federation Services 2.0 (ADFS 2.0). In this lightning-fast video, Stuart Kwan, Group Program Manager for the Identity and Security Division, lists the essential facts about this new, exciting release. Tune in!
From David Tesar at TechNet Edge:
Forefront Protection 2010 for SharePoint (FPSP) has been released so I talked with Noreen, program manager for FPSP, who demoed some of the new capabilities. She answers why you would need protection for SharePoint if you already have local, client anti-virus. She tells us about the major design goals for the product & how we delivered on them. Finally, she tells us what’s new since the previous version of SharePoint protection. From 4:13 and onward we demo the product, and here’s how it breaks down:
Demo notes: When Noreen references O14, she’s referring to SharePoint and Office 2010. With 012, she’s referring to SharePoint and Office 2007.
Tomorrow at 2:30 pm Eastern time, tune in via Twitter to see Kelly Higgins of Dark Reading interview JG Chirapuarth, senior director of the Microsoft Identity and Security Business Group. You can follow the discussion at either the Dark Reading or Forefront Twitter Account.
Today we released Forefront Protection 2010 for SharePoint and Active Directory Federation Services 2.0, which makes it a good time to talk about secure business collaboration.
It is clear that collaboration drives the modern enterprise. Sharing documents and applications within the company, from the remote office, with trusted partners and customers, into the cloud, etc. – is crucial for most organizations today.
Collaboration is a key engine for success, regardless of which industry or part of the world you’re in. And, whether its deployed on-premises or as hosted cloud service, the new SharePoint 2010 is the ideal business collaboration platform to connect people within the enterprise and beyond.
Of course, ensuring valuable information is safe against accidental loss, theft and malicious software is no trivial exercise in the world of cloud computing and cross-company collaboration. Information is the lifeblood of any organization and it must be secured. In his blog Gartner vice president Neil MacDonald wrote about this “tearing down of walls between businesses and the opening up of our information, processes and systems to outside parties – whether these are contractors, outsourcers, partners and customers. Nearly every enterprise I speak with is being asked to enable and foster secure collaboration with external entities.”
Working with customers and partners, Microsoft has learned a great deal about secure collaboration. Based on this, we thought we would share our top five recommendations to help companies strike the right balance of risk management and productive collaboration.
· Be a Team Player: Build a virtual team across security, content, identity and business managers for a holistic approach.
· Strive for Defense-in-Depth: Apply strong anti-malware on SharePoint, in addition to anti-malware on PCs and servers.
· Extend the Power of Identity: Identity is at the center of good security. Apply interoperable technologies to manage and federate identities across company boundaries and into the cloud (e.g. Single Sign-On.)
· Go the Extra Mile to Protect Your Information Lifeblood: Use rights management policies and technology to keep sensitive content out of the wrong hands.
· Be Cloud-Ready: Investigate your cloud vendor’s security measures. Choose technologies that bridge in-house and cloud systems.
The new Forefront Protection 2010 for SharePoint and Active Directory Federation Services 2.0 (ADFS 2.0) provide essential building blocks for a Secure Collaboration solution. They also represent great progress for what we call our Business Ready Security strategy to help enterprise customers manage risk and enable productivity.
Forefront Protection 2010 for SharePoint is deeply integrated with SharePoint Server 2010, preventing employees from uploading or downloading infected docs, inappropriate content, or sensitive information.
Active Directory Federation Services 2.0 is a no-cost download for Windows Server. It enables easier, more secure access to applications on-premises and in the cloud, as well as collaboration within the enterprise and across organizational boundaries. ADFS 2.0 lets companies apply their existing on-premises identities to the cloud.
Learn more here.
In October we announced the strategic decision to build Forefront Endpoint Protection (FEP) on System Center Configuration Manager, Microsoft’s market-leading change and configuration management product. Part of our Business Ready Security strategy, this approach better aligns with our customers’ desktop management and security solutions, helping them simplify deployment and reduce costs. Chris Christiansen of analyst firm IDC puts it well:
"Converging endpoint security and operations can improve an organization's overall security posture and efficiency. As security management overlaps with other IT functions, Microsoft's integration of Forefront Endpoint Protection and System Center Configuration Manager just makes sense."
We’ve been working to deliver on this strategy and, this week at the Microsoft Management Summit, we demonstrated this convergence for the first time. (You can view corporate vice president Brad Anderson’s keynote speech with a demo here.) We’re planning on releasing a beta of FEP in the third quarter of this year. Learn more about FEP here. We will also be sharing more about FEP at TechEd North America in June.
Separate infrastructure for endpoint protection and management is costly, inefficient and can expose a company to more security risks. Disconnected management consoles and responsibilities, often spread across multiple teams, adds IT costs and can impact the productivity of both IT and business employees. The right approach is to centralize endpoint security information - such as patches, deployment and policy - on a platform that can scale to hundreds of thousands of clients.
This approach will improve security by reducing the attack surface of PCs and accelerating incident response. It will make life much easier for desktop managers and also boost the effectiveness of security administrators, because they can more easily cover endpoint security basics and spend more time on newer capabilities to combat the latest threats.
By building FEP on Configuration Manager, customers will save capital costs on roll-out. They will also reduce training costs, because administrators won’t have to learn yet another management user interface. One of our customers, Kristaps Čudars, Senior System Virtualization Specialist at Rīgas Stradiņa University in Europe, said:
“We like Microsoft’s strategy to integrate Forefront Endpoint Protection with System Center Configuration Manager. We expect this approach of merging endpoint security with overall endpoint management will simplify deployment and management, lowering the total cost of ownership per desktop.”
With this convergence, all the information that the client management team needs to make security decisions is provided in a single pane of glass, enabling them to both mitigate security risks more easily and generate reports about compliance for the security team.
We feel this approach is the future of endpoint security. And Microsoft is driving this convergence for both large and mid-sized organizations. In addition to building FEP on Configuration Manager, the newly introduced Windows Intune solution for mid-sized companies provides a cloud-based solution for PC security and management, using core Forefront and System Center technologies.