Implementing Forefront Endpoint Protection 2010

This course is intended for IT Pros that will design, implement or manage an endpoint malware protection solution using Microsoft Forefront Endpoint Protection 2010.

• Articulate the value proposition and key features of FEP 2010.
• Understand the protection technologies built into the FEP client to protect desktops, laptops and servers from malicious code threats.
• Understand the fundamental concepts of System Center Configuration Manager 2007.
• Understand the FEP server components and how they are integrated into a System Center Configuration Manager 2007 infrastructure.
• Understand how to manage FEP client policy and definition updates.
• Understand the FEP client architecture and how the client can be deployed across an organization.
• Understand the various options for monitoring, alerting and reporting on the health and malware activity of FEP clients.
• Understand how FEP can leverage System Center Operations Manager 2007 to provide real-time monitoring of high value endpoints.

Module 1: FEP 2010 Overview

This module provides an overview of the FEP 2010 product. It drills down into the different protection technologies provided by the FEP client, and explores the client’s user interface. Finally it describes how the FEP client integrates with components that will be introduced in later modules to provide an overall solution.

• Product focus and feature overview.
• Protection technologies.
• FEP client user interface.
• FEP solution overview.

• Articulate the value proposition and key features of FEP 2010.
• Understand the protection technologies built into the FEP client to protect desktops, laptops and servers from malicious code threats.
• Understand how the FEP client fits into the overall solution.

Module 2: System Center Configuration Manager 2007 Fundamentals

This module provides an overview of the System Center Configuration Manager 2007 (ConfigMgr) product with which FEP 2010 integrates. It is not intended to teach design or implementation skills in the product, but to provide a high level overview of the product, its features and components so that attendees can appreciate how FEP integrates with and leverages them. It also focuses only on the features that are leveraged by FEP, and does not cover the numerous other ConfigMgr features. It is provided as a self-contained module so that those experienced in the product have an option of skipping this module.

• System Center suite and positioning of Configuration Manager 2007.
• Configuration Manager 2007 features.
• Configuration Manager 2007 concepts.
• Feature drill-down: Software Distribution.
• Feature drill-down: Software Update Management.
• Feature drill-down: Desired Configuration Management.

• Understand the fundamental concepts of System Center Configuration Manager 2007.

Module 3: FEP Server Deployment

This module describes the server components of the FEP 2010 product and how they integrate into a ConfigMgr infrastructure. It describes the different FEP management models and how these align with different ConfigMgr topologies, and the different configurations in which FEP server components can be deployed. Finally it looks at the ConfigMgr objects that are created during integration, and how these are used to manage and monitor FEP clients.

• FEP server components and integration with ConfigMgr.
• FEP management models.
• FEP Server component deployment topologies.
• ConfigMgr objects created by FEP.

• Understand the FEP server components and how they are integrated into a System Center Configuration Manager 2007 infrastructure.

Module 4: FEP Policy and Update Management

This module looks in detail at the two main management aspects of the FEP solution – management of FEP policies and management of definition updates.

• Managing FEP policy.
• Managing FEP definition updates.

• Understand how to manage FEP client policy and definition updates.

Module 5: FEP Client Deployment

This module looks in detail at the considerations for deploying the FEP 2010 across the organization.

• FEP client architecture.
• Supported platforms and system requirements.
• FEP client deployment methods.
• FEP client deployment validation and troubleshooting.

• Understand the FEP client architecture and how the client can be deployed across an organization.

Module 6: Monitoring, Alerting and Reporting

This module looks in detail at the monitoring aspects of a FEP 2010 solution – specifically the FEP Dashboard, FEP alerts, and FEP reports. It explains how the ConfigMgr Desired Configuration Management (DCM) feature is used to collect data from clients as well as measure compliance with defined security baselines. Finally it examines how System Center Operations Manager can be used together with the FEP 2010 Security management pack to provide real-time monitoring of high-value endpoints (like servers).

• FEP administrator roles and their interaction with the product.
• FEP alerts.
• FEP and Desired Configuration Management (DCM).
• FEP reports.
• Real-time monitoring with the System Center Operations Manager Security management pack.

• Understand the various options for monitoring, alerting and reporting on the health and malware activity of FEP clients.
• Understand how FEP can leverage System Center Operations Manager 2007 to provide real-time monitoring of high value endpoints.