Forefront Nederland
Download locatie van de Forefront Service Packs

 

FSE Download page http://www.microsoft.com/downloads/details.aspx?FamilyID=2ceb14d4-404b-4d8f-8a21-ebfc71b2e82b

FSSP download page http://www.microsoft.com/downloads/details.aspx?FamilyID=e06453b8-b2dd-4177-969c-2f89aa841e11

Antigen for Exchange http://www.microsoft.com/downloads/details.aspx?FamilyID=866b63bf-6207-4197-9c5d-511b7212e40c

Antigen for SMTP Gateway http://www.microsoft.com/downloads/details.aspx?FamilyID=f5c547d4-d457-43fa-9174-c1ddf4476cf3

 

en de release notes

FSE                         http://technet.microsoft.com/en-us/library/dd775214.aspx

FSSP                      http://technet.microsoft.com/en-us/library/dd775215.aspx

Now Available – Antigen and Forefront server security service packs!

Microsoft announced today the release of four service packs from the Antigen and Forefront product families that provide leading protection for customer’s Exchange and SharePoint environments.

· Forefront Security for Exchange Server

o Download Forefront Security for Exchange Server with Service Pack 2

o Description of Forefront Security for Exchange Server Service Pack 2

· Forefront Security for SharePoint

o Download Forefront Security for SharePoint with Service Pack 3

o Description of Forefront Security for SharePoint Service Pack 3

· Antigen 9.0

o Download Antigen for Exchange with Antigen Spam Manager 9.0 with Service Pack 2

o Download Antigen for SMTP Gateways with Antigen Spam Manager 9.0 with Service Pack 2

o Description of Antigen 9.0 with Service Pack 2

The service packs introduce technology that will notify customers of engine changes – including the addition or elimination of engines – and allow administrators to update their engine configurations without having to deploy any new product updates. This update allows customers to accommodate engine changes effortlessly, helping maintain the high level of security provided in the Forefront server security products.

Microsoft continually monitors antivirus engine quality and detection rates using internal and 3rd party independent testing organizations. We have found that using a multi-engine protection approach provides superior detection of the latest threats when compared to single engine solutions. In fact, AV-Test.org has tested our products with competitors and found our detection rates have an average response time of 3-6 hours for new viruses. In contrast, competitive single-engine solutions average response times are more than 2-9 days.

Testing for the last several years has indicated that using more than five malware engines concurrently does not improve overall detection rates. In order to develop stronger technology relationships with our antimalware partners and ensure continued customer value for the longer term, we are making available a set of five antimalware engines, with confidence that this solution will continue to offer industry leading detection rates and response times.

As an example of Microsoft’s commitment to continual improvement of our malware detection leadership, we are investing in new antispam technology through a partnership with Cloudmark that will provide an overall better antispam experience including higher detection rates, lower false positives, and improved submission and service experience. The Cloudmark engine is now included in latest service pack releases of Antigen for Exchange with Antigen Spam Manager 9.0 and Antigen for SMTP Gateways with Antigen Spam Manager 9.0 products as Beta while it undergoes customer trials. Upon the near term completion of the customer trials, it will be released by Microsoft for both the Antigen 9.0 products, as well as be included in the next generation releases of Forefront server security products later this year. More information is available on TechNet at the AMEND page.

For more information on the service packs, please read on…

· Forefront Security for Exchange Server with Service Pack 2 Now Available

Make protecting your Exchange 2007 environments easier by downloading the latest release of Forefront Security for Exchange Server with SP2. New features include visibility of all actively published engines, alerts and notifications of new engine availability, and rollup of software fixes. For more information on antimalware engine updates with this service pack, please refer to Antimalware Engine Notifications and Developments.

· Forefront Security for SharePoint with Service Pack 3 Now Available

Help better protect your Microsoft Office SharePoint Server 2007 and Windows SharePoint Services 3.0 collaboration environments from malware and inappropriate content by downloading the latest release of Forefront Security for SharePoint with SP2. New features include visibility of all actively published engines, alerts and notifications for new engine availability, and rollup of software fixes. For more information on antimalware engine updates with this service pack, please refer to Antimalware Engine Notifications and Developments.

· Microsoft Antigen 9.0 with Service Pack 2 Now Available

Improve protection for Exchange Server 2003 and Exchange 2000 Server by downloading the Microsoft Antigen 9.0 with SP2 releases. New features include visibility of all actively published engines, alerts and notifications of new engine availability, improved anti-spam detection through integration of Cloudmark engine, and rollup of software fixes. For more information on antimalware engine updates and Cloudmark antispam integration with this service pack, please refer to Antimalware Engine Notifications and Developments.

Download the new Antigen service packs here:

o Antigen for Exchange with Antigen Spam Manager 9.0 with Service Pack 2

o Antigen for SMTP Gateways with Antigen Spam Manager 9.0 with Service Pack 2

Nieuwe versie van Forefront Online Security for Exchange (FOSE)

Gisteren is de nieuwe versie van Forefront Online Security for Exchange (FOSE) beschikbaar gesteld. FOSE is de opvolger van Exchange Hosted Services Filtering (EHS) en zal een aantal nieuwe functionaliteiten hebben. De nieuwe functionaliteiten zijn:

 

  • Enhanced Directory Synchronization Tool (with Differential Sync)
  • New Track Changes Option
  • Domain Enhancements
    • New Blind Copy Option for Outbound Suspicious E-mail
  • One- Day Interval for Spam Quarantine Notification Settings      
  • Enhanced Reporting Features   
    • Scheduled Reports sent by E-mail
    • New Outbound Suspicious Traffic Type 
    • Top User Reports
    • Reporting Web Service for Forefront customers
  • Enhanced Audit Trail Search       
    • Date Range        
    • Bulk Uploaded User Events

Meer info rond FOSE zal ik op deze blog plaatsen. Je kunt ook een Technet Webcast bekijken wat je met FOSE kunt bereiken.

Forefront TMG Beta 3 is beschikbaar

Sinds gisteren is de Beta 3 beschikbaar van Forefront Threat Management Gateway. De beta 3 heeft een nieuwe functionaliteit namelijk URL filtering. Hiermee wordt het mogelijk om niet zakelijke website te filteren. Ik zal een aantal screenshots posten op deze blog nadat ik zelf TMG beta 3 heb geïnstalleerd.

Forefront TMG Beta 3 hier downloaden.

Forefront Security for Exchange Server SP1 Capacity Planning Tool

Sinds een aantal weken is de capacity planning tool beschikbaar voor Forefront Security for Exchange.

De tool (Excel Sheet) geeft je een overzicht hoeveel extra “power” je Exchange server nodig heeft voor Forefront for Exchange.

De tool kan worden gedownload via:

 

http://www.microsoft.com/downloads/details.aspx?FamilyID=522da65d-5263-4f5d-b929-8428a394b9af&displayLang=en

Forefront in Windows Essential Server

Wat meer info rond Forefront in Windows Essential Server:

 

You may have heard about last week's launch of Windows Essential Business Server 2008 and Small Business Server 2008SBS and EBS are integrated IT solutions that are priced and designed specifically for the needs of small and midsized companies. In sum, they help smaller firms take advantage of enterprise-class IT. 

In addition to Windows Server 2008, Exchange Server 2007 and other products, both SBS and EBS include Forefront Security for Exchange Server for layered protection against the latest e-mail based threats, including viruses, worms, and spam.

EBS also includes Forefront Threat Management Gateway Medium Business Edition.  Designed specifically as an integrated component of Essential Business Server, TMG MBE helps provide comprehensive threat management, secure Internet access, and remote access for small to medium size organizations (up to 300 users.) TMG MBE includes a fully featured corporate firewall capability, and adds a Unified Threat Management (UTM) capability to the EBS console. It allows customers to securely publish Microsoft Exchange Server (Outlook Web Access) and Microsoft Office SharePoint Server for remote access.

In contrast, Forefront TMG (not the Medium Business Edition in EBS) is the next version of the ISA Server, and builds on top of existing ISA Server functionality to deliver new protection capabilities, including Web antimalware, as well as enhancements to the UI, management, and reporting. It will support organizations from small to large.  TMG beta 1 is currently available for download and evaluation as part of the Forefront codename “Stirling” beta 1.

Support Calls - Forefront / Antigen

Een goed verhaal van Joe Anderson over wat je kunt als je problemen hebt met Antigen of Forefront. Zijn verhaal:

 

Hello. My name is Joe Anderson, and I work with the CSS Security Support Team.

Having firsthand experience with customers, I wanted to give some insight into things that we request when troubleshooting a particular issue. Below, I describe several of the common support scenarios and provide information about the type of diagnostics you will want to have on hand or be prepared to get before contacting support. I’ve also included some information about tools and utilities that are helpful in diagnosing problems.

Scenario 1.

What do I do if a virus gets past Antigen or Forefront?

While it doesn’t happen often, there’s always the chance that a virus outbreak will occur and the latest AV definitions are not able to detect a particular viral variant.

If this happens to you, you will want to lock down your messaging environment. Once you have your environment secure, you can follow knowledge base article KB952163 for the appropriate procedure to notify us about the undetected virus.

Scenario 2.

I have Antigen antispam protection, but too much spam is getting past the filters to the users’ inboxes. What do I do?

Spam can sometimes come in substantial waves. If you notice a big increase in the amount of spam that is hitting your environment or getting through to mailboxes, there are several troubleshooting steps you can take.

The first thing you should do is check to see that the antispam engine is being updated properly in the Antigen Administrator. If it is, then the likely problem is that the definitions have not yet been released for the spam variant hitting your environment.

In order to determine if the definitions are up to date, we usually request that you check the “update version” under “scanner updates” in the Forefront/Antigen administrator or run the “AntigenDiag” (see later in this article for details of what this contains) as this will tell us if updates are working or failing.

Other possible solutions and relief can be found in the following knowledge base article: KB920863

Scenario 3.

I have concerns about the functionality of Antigen/Forefront.

Depending on the issue, the bulk of our troubleshooting is done by reviewing the logs.

To help expedite the process, we usually ask customers to turn on additional diagnostics (These include: Additional Internet, Additional Realtime, Additional Manual) as well as set the “Max Programlog Size” setting to no more than 100000KB. All of the settings can be found in the General Options work pane in the Forefront/Antigen administrator.

While 100MB is a large size, it is important because the program log fills up quickly when additional diagnostics are turned on. The additional information provided when these settings are enabled is needed for extensive troubleshooting. If the program log size setting is left at a lower number, we run the risk of cutting off a part of the log that may be needed.

If you are opening up a ticket with support via a Web Incident, then a detailed summary of the problem and what steps you have already taken to try to resolve the issue will go a long way to helping the support engineer resolve your issue.

Helpful tools and utilities

Antigendiag.exe and FSCDiag.exe utility

The primary source for troubleshooting analysis is the

Antigendiag.exe / FSCDiag.exe. This utility gathers the following files:

  • ADB / FDB files (contains the settings that allow us to reproduce the Antigen/Forefront environment as closely as possible).
  • Event logs
  • Programlog.txt and HRlog.txt (details the activity of the product including updates, detections and errors).
  • Antigen/Forefront registry keys that tell us what’s turned on or not.
  • Version information
  • Dr. Watson logs and User Dumps (in case a dump is requested in performance related areas).

To Generate an Antigen/FSS Diagnostic

  • Locate the install folder for Antigen or Forefront
  • Double click on the AntigenDiag.exe (or the FSCDiag.exe if running Forefront)
  • A command prompt will open
  • Say YES to each question asked at the command prompt (not necessary in FSS)
  • The subsequent diagnostic will be a zip file found in the following directories:

Antigen - C:\Program Files\Microsoft Antigen for Exchange\log\Diagnostics

Forefront – C:\Program Files(x86)\Microsoft Forefront Security\Exchange Server\log\Diagnostics

OneClick, Process Monitor and Performance Monitor

Antigen and Forefront install with a comprehensive set of proprietary diagnostic tools. It is often helpful, however, to employ the following auxiliary tools that will generate additional intelligence that can help shorten the troubleshooting path and lead to a faster resolution of the problem.

OneClick

In order to generate network traces, we can leverage OneClick. This tool will allow a user to more closely examine Antigen and FSS specific network activity and communications.

Among the functionality that can be examined with OneClick are virus engine updates, database queries, template distribution, notification activity, as well as a host of Exchange specific network activity.

Download: http://www.microsoft.com/downloads/details.aspx?familyid=9F37302E-D491-4C69-B7CE-410C8784FD0C&displaylang=en

Process Monitor

Process Monitor is an advanced monitoring tool for Windows that shows real-time file system, registry and process/thread activity. It combines the features of two legacy Sysinternals utilities, Filemon and Regmon.

Troubleshooting for both Antigen and Forefront can require an administrator to more closely examine the properties and permissions of files and registry components as well as the status of process requests.

Download: http://technet.microsoft.com/en-us/sysinternals/bb896645.aspx

Performance Monitor

Performance Monitor is used to get statistical information about the hardware and software components of a server.

We can use this built-in tool to gather and analyze Antigen/FSS specific data. By adding Antigen/FSS counter objects and simultaneously introducing system counters, such as processor and memory usage, we can cross reference these values and determine Antigen/FSS’s tax on the server(s)

Download: Built in Windows tool; start->run->perfmon

Conclusion

As you can see, gathering the data and diagnostics described in this article allows us to find the quickest and most accurate path to finding a solution.

Joe Anderson

Antigen Support Group

PSS Microsoft Security

Tip: Implementatie van Forefront Client Security

Wil je weten wat er bij komt kijken om FCS te implementeren in jouw organisatie?  We bieden een handige korte internet clinic aan voor FCS deployment (kosteloos).  Verschillende scenarios, overwegingen en het zetten van FCS policies.

 

Forefront Client Security/NAP Readiness Assessent in New MAP Toolkit

Earlier this week Microsoft introduced the new Microsoft Assessment and Planning Toolkit 3.2. MAP is a scalable and agent-less assessment platform designed to make it easier to determine which Microsoft technologies are right for your infrastructure, and how to best implement them. In this version, MAP assessment capabilities have expanded to a range of Microsoft products, including Forefront Client Security and Network Access Protection.

The Security Assessment provides help to identify physical and virtual machines that may represent security risks in your environment, including:

  • Discovery and inventory of client machines.
  • Identification of machines where Windows Security Center is not running.
  • Identification of machines where firewall, antispyware or antivirus products are not found, are not running or are not up to date as reported by Windows Security Center.

Download MAP 3.2 here.

Intelligent Application Gateway SP2

This week we will announce the upcoming release of Intelligent Application Gateway Service Pack 2!  This news is one of the announcements being made in Barcelona this week at the Microsoft TechEd:  IT Pro conference.

As you may know, IAG is a remote access gateway that boosts productivity by giving mobile and remote workers, partners and customers easy, flexible and secure access to virtually any application from a broad range of devices and locations. IAG includes a variety of features, pre-configured policies and tunnels that allow access to virtually any application from any location – securely!  It is a good example of our ongoing focus on integrated identity and security solutions that help customers protect their assets and manage costs.

Service Pack 2 extends our key investments in application intelligence, end point security and interoperability as well overall performance, stability and ease of use. In the next few weeks, existing IAG customers will be able to obtain SP2 through our OEM hardware partners or on the Microsoft download center.

So let’s take a quick walk through some of the changes in SP2:

  • Ability to run as a virtual machine on Hyper-V: Using Hyper-V Server 2008 or Windows Server 2008 with Hyper-V you can now run IAG virtually! This can help lower costs and basically increases flexibility. Furthermore, customers can chose to virtualize their disaster recovery systems for easier roll-out.
  • Enhanced interoperability with non-Windows environments (such as Firefox, Linux and Mac): We’ve added end-point detection and Attachment Wiper capabilities for users coming from non Windows+IE environments, increasing the security and productivity from these platforms.
  • New application optimizers for Microsoft Dynamics CRM and OCS Web client: You could always publish these applications generically, but you now have the wizards and configurations in place.
  • New Getting Started Wizard: To help walk you through the first steps of setting up your IAG environment

Also on the list:

  • Improved Kerberos Constrained Delegation (KCD) administrative experience.
  • Improved stability and performance
  • Incorporates all current updates such as:
    • SharePoint Fix
    • WMI-based detection leveraging the Detection Center
    • IP based logging of Network Connector

I’d like to invite you all to learn more about IAG at www.microsoft.com\iag and register and be first to download the new, virtual trial of IAG.

SCCM and WSUS announcements!

Wat meer nieuws rond SCCM en FCS ondersteuning:

Today we posted guidance on using an existing WSUS server from an SCCM deployment for FCS definition distribution. The complete guidance, Deploying FCS definition updates with a shared System Center Configuration Manager WSUS infrastructure (http://technet.microsoft.com/en-us/library/dd185652.aspx

), can be read on TechNet.

Refer to Supported configurations for using WSUS to distribute Forefront Client Security Definition updates within SCCM 2007 (http://support.microsoft.com/default.aspx/kb/958491) for supported FCS and Configuration Manager shared configurations.

Also, we are announcing support for definition distribution via WSUS 3.0 installed on an x64-based platform. To support this configuration, the FCS distribution component must not be installed on the x64-based WSUS 3.0 server, as WSUS 3.0 does not require the installation of the FCS distribution component. Existing FCS documentation will be updated accordingly.

Getting the most out of Antigen’s Anti-Spam features

Over recent years, spam has emerged as a more prominent pain point than the traditional virus concerns that any company will have. Spammers are always trying to get the upper hand on anti-spam vendors, bringing out new ways to bypass scanners and hit as many inboxes as possible (sure, why wouldn’t they?...they get paid for doing that, after all!)

So, as an Antigen for Exchange administrator, how do you tweak the ASM component (Anti-Spam Manager) to maximise your spam protection, in order to outwit the spammers?

Well, first of all, you are probably using one or both of these Antigen ASM features already:

  • Spamcure anti-spam engine
  • RBLs (Realtime Block Lists)

Alongside these features, you may also have implemented the IMF feature in Exchange (Intelligent Message Filter).

All of these features and technologies are preventative measures. A configuration guide can be found in the Antigen Spam Manager Best Practices guide. The key points from this guide are to:

1. Configure the Spamcure engine to check for updates every 15 minutes

Spam is more dynamic than (other) malware; therefore anti-spam updates tend to be released more frequently than anti-virus updates. It is common to see several anti-spam engine version releases every hour, so getting Spamcure to check for updates this frequently is strongly advised.

2. Configure RBL services

RBL lists, (non-Microsoft) lists of known spam mailhosts that are updated in realtime, are a good way of blocking spam from the source. Always try to use a reputable service here and be aware that free services may not always be the best. Note that Microsoft does not recommend any specific RBL providers. In Support, we do see a lot of customers using www.spamhaus.org and www.spamcop.net, which might be a good place to start. Please ensure that you observe any usage terms and conditions when using these 3rd-party lists.

RBLs rely heavily upon DNS lookups (of mailhosts), so if there is any latency in doing this, you could see SMTP mail queuing on your server. As a rule of thumb, it’s best to limit RBL lookups by using a maximum of 1-3 RBL providers.

3. Configure the Exchange Intelligent Message Filter

OK, this isn’t strictly an Antigen feature, but we strongly recommend its use in conjunction with Antigen. The Spamcure engine and other filtering features on the SMTP scanjob can be used to set a SCL Rating on messages. Basically, if you enable the SCL Rating option for a feature in Antigen, any detection on that feature will cause Antigen to set a SCL Rating of 9 for the message. The SCL scale ranges from 0 (definitely not spam) to 9 (definitely spam).

Exchange 2003’s IMF feature allows you to set a threshold for the SCL Rating. You can also set a SCL threshold in Outlook that can steer spam messages into Outlook’s Junk Mail Folder (also governable via a GPO).

An example of how these 3 technologies might work together is setting the IMF threshold to 8 and the Outlook threshold to 5. Here, messages tagged with a SCL Rating of 0-4 will go through to users’ inboxes, 5-7 will go to users’ Junk Mail Folders and 8-9 will be deleted by IMF. As Antigen sets only ‘9’ values for the SCL rating, any Antigen-tagged messages will therefore be deleted by IMF.

For more information on Exchange’s Intelligent Mail Filter, click here.

4. Submit Spam Messages: False Positives (legitimate emails that were falsely detected as spam) and False Negatives (spam emails that were not detected) should be submitted ASAP to Mail Filters.

As an administrator, you’ve experienced that no technology is perfect and it’s expected that some false-positives and false-negatives will crop up from time to time. Sending these to Mail Filters (our partner company that produces the Spamcure engine) through the appropriate addresses is an efficient way to flag the problem without having to open a Microsoft Support case.

  • Send False Positives to Spam.mail-filters "at" antigen.microsoft.com
  • Send False Negatives to Notspam.mail-filters "at" antigen.microsoft.com

From these Best Practices, the key actions to take away are to make sure that Antigen is checking for Spamcure updates every 15 minutes and submit false positives/negatives to the above addresses.

If you’re working in a large organisation, you may find that a lot of spam seems to get through (even though the actual detection rate is still pretty high), due to the sheer volume of mail that you receive every day. Consider setting-up a designated spam Mailbox or shared Public Folder to collect false negatives from users.

Before opening any support cases for false negatives, we recommend that you cover the 2 areas above, since we’re likely to suggest that you do this J.

In the case that Spamcure or other ASM components don’t seem to be working as they should, take a look at my troubleshooting tips and extra features that can help to provide additional spam defence:

Further Troubleshooting

If you want to minimise your dependency on Microsoft Support, you can always try to troubleshoot the issue by yourself.

For Spamcure-related issues, try to determine from any errors whether the problem relates to the download of the engine (the first part of the update process), or to the integration of a new engine into Antigen (the second part of the update process); then follow these steps:

Engine Download Issues:

  • Check that you can reach the file being downloaded through Internet Explorer.
  • Confirm that any proxy settings entered in the Antigen Administrator are still valid.
  • In general, try to stagger engine updates by 10-15min per engine.

Engine Integration Issues:

  • Make sure that the engine has updated at least once following install, to avoid this error:

"ERROR: Could not load SpamCure mapper."

  • Try rebuilding the scan engine, as per KB920304.

Secondary Defence

Antigen also gives you various filtering features that can be used in either a preventative or reactive manner to block spam.

There’s a lot of information and syntax about filtering already explained in the Antigen for Exchange User Guide, so I won’t repeat it here. However, you might consider setting some filters for basic pre-emptive defence and perhaps more importantly to block prominent spam mail that got through. It’s not worth the effort to do this for every undetected spam, of course, but if you’re facing a sudden wave of similar spam, this could warrant a Subject Line or Keyword Filter until engine definitions become available.

Forefront for Exchange SP1 Rollup3

Forefront for Exchange SP1 Rollup3 has been released.  The fixes that are included with in Forefront for Exchange SP1 Rollup3 are as follows.

Prior to full publication of Forefront for Exchange SP1 Rollup3 we are making our customers aware that this release of Forefront for Exchange is now available.  Please Contact Microsoft support if you would like to install Rollup 3 for Forefront. 

Rollup 3 resolves the following issues:

  • 954564: The scan engines are not updated in Forefront Security for Exchange Server SP1, and a Dr. Watson event is logged.
  • 954578: Sender notifications are not sent in Forefront Security for Exchange Server Service Pack 1 if the "From" field in the original e-mail message header has multiple lines.
  • 951761: Rollup version not displayed in the Forefront Help menu - About Forefront.
  • 951936: The General Options screen goes blank in Forefront for Exchange when you use the Tab key to scroll through the options.
  • 951920: The Forefront Administrator crashes when attempting to close it while the "License Information" pop-up is open.
  • 951921: The FSCController service cannot start-up successfully if a corrupt .fdb configuration file is loaded.
  • 954092: Engine Updates taking more than 5 minutes to download do not complete.
  • 951922: FSCDiag.exe now collects process and PID information from your Forefront server.
  • 951923: Forefront for Exchange may see the following issue: ADGetStorage - Could not bind to Active Directory configuration context. Error code: 80005000.
  • 952040: Forefront for Exchange will now scan for WMV files that have had their extensions renamed.
  • 952039: Forefront for Exchange does not manually scan Public Folders if non-MAPI Public Folders are in the organization.
  • 954577: The Start menu shortcut that points to Forefront for Exchange does not work in the German version of Windows Server 2008.
  • 954565: Nested .msg attachments are not detected as nested attachments in e-mail messages in Forefront Security for Exchange Server Service Pack 1.
  • 954093: The Filter List order is not updated on scan jobs when you delete and recreate a filter list of the same name.
  • 953965: Forefront for Exchange may corrupt messages when attaching messages whose subject lines match a file filter set to Delete/Remove.
  • 954561: You are unable to update scan engines through a proxy on a computer that is running Forefront Security for Exchange Server SP1.
  • 954094: FSCDiag does not collect engine version info in the verForeFront.csv file when installed on a cluster.
  • 954907: E-mail messages are not sent when you are running Forefront Security for Exchange Server Service Pack 1.
  • 954934: Added a log message upon failure of setting up an active/passive Forefront cluster.
  • 954911: A scan job fails on a computer that is running Forefront Security for Exchange Server Service Pack 1.
  • 954941: E-mail messages start to build into a queue and the Fsctransportscanner.exe process uses lots of memory when Forefront Security for Exchange Server SP1 is running.
  • 953956: Forefront for Exchange false detecting winmail.dat files as corruptedcompressedfile virus
  • 954942: You cannot collect data when you try to use the Forefront Server Security Management Console on an SCC cluster that has Forefront for Exchange with Service Pack 1 installed.
  • 955010: The FSCDiag.exe utility does not collect the correct data in Forefront Security for Exchange Server Service Pack 1.
Stirling Resources

Er is op dit moment heel wat informatie rond Stirling op Technet. Hier een aantal links:

 

TechNet: Stirling information can be accessed from the Stirling TechNet Web site.

Deployment: The Stirling Deployment Guide steps you through installing Stirling and deploying the Stirling client software to the client computers in your lab environment.

Operations: The Stirling Operations Guide has documentation on day-to-day management tasks, as well as feature walkthroughs that you can use in your lab to explore the Stirling features.

Stirling and PowerShell: Stirling utilizes PowerShell for its features, and the cmdlets available with Beta 1 are documented in the PowerShell console and on TechNet. Also - a brief introduction on how Stirling uses PowerShell is included in the Operations guide.

Newsgroups: You can post questions and get more information about Stirling on the Stirling TechNet Community Forums.

Virtualize your ISA or Forefront TMG servers.

Een vraag die vaak gesteld wordt, kan dit en hoe. In de onderstaande video vertelt Jim Harrison (Program Manager in het ISA ontwikkel team) hoe je dit voor elkaar kunt krijgen. Hij gaat in op de volgende punten:

  • Performance
  • Management
  • Beheer
  • Security

 

Video Jim Harrison:

http://edge.technet.com/Media/Virtualize-your-ISA-or-Forefront-TMG-servers/

 

Whitepaper hierover:

Security Considerations with Forefront Edge Virtual Deployments

http://technet.microsoft.com/en-us/library/cc891502.aspx

Meer posts « Voorgaande pagina - Volgende pagina »