Ronald Beekelaar Beekelaar Consultancy Forefront Overview.

Slides:



Advertisements
Similar presentations
2  Industry trends and challenges  Windows Server 2012: Modern workstyle, enabled  Access from virtually anywhere, any device  Full Windows experience.
Advertisements

Network Access Protection & Network Admission Control March 10, 2005 Teerapol Tuanpusa Network Consultant Cisco Systems Thailand Jirat Boomuang Technology.
Microsoft Forefront Client Security
SIM311. Built on top of Microsoft ® System Center Configuration ManagerBuilt on top of Microsoft ® System Center Configuration Manager Supports all.
System Center Operations Manager 2007 Management Pack Roadmap (Apr/May 2008)
Secure Desktop Name Title Microsoft Corporation. Agenda.
Microsoft Security Solutions A Great New Way of Making $$$ !!! Jimmy Tan Platform Strategy Manager Microsoft Singapore.
Adwait JoshiJim Harrison Sr. Product ManagerProgram Manager Microsoft Corporation SESSION CODE: SIA308.
What's new in Threat Management Gateway (TMG) 2010 Ronald Beekelaar
A Technical Overview of Microsoft Forefront Client Security (FCS) Howard Chow Microsoft MVP.
Defense-in-Depth Against Malicious Software Jeff Alexander IT Pro Evangelist Microsoft Australia
Ronald Beekelaar Beekelaar Consultancy Forefront Overview.
Threat Management Gateway 2010 Questo sconosciuto? …ancora per poco! Manuela Polcaro Security Advisor.
Version 2.0 for Office 365. Day 1 Administering Office 365 Day 2 Administering Exchange Online Office 365 Overview & InfrastructureLync Online Administration.
Kaspersky Open Space Security: Release 2 World-class security solution for your business.
Cliff Evans Security and Privacy Lead Trustworthy Computing Group Microsoft UK.
Ved Christian Stahl, Microsoft Enterprise Services Forefront Codenname ”Stirling”
Forefront Security Exchange. Problem Meddelande system och sammarbetsprodukter är underbarar mål för elak kod och “distrubition” av äkta dynga… Viruses.
MCTS Guide to Microsoft Windows Server 2008 Network Infrastructure Configuration Chapter 9 Network Policy and Access Services in Windows Server 2008.
LB VIP:Input Endpoint Internal Endpoint foo.cloudapp.net  VIP.
Partnering For Profitability Growing your business with Microsoft Forefront Security Solutions Mark Hassall Director Security & Access BG Microsoft Corporation.
Clinic Security and Policy Enforcement in Windows Server 2008.
By Isaac Parenteau. Agenda  What is the certification?  What are the courses required for it?  Future Careers  Cost?
Module 8: Configuring Virtual Private Network Access for Remote Clients and Networks.
Internal NetworkExternal Network. Hub Internal NetworkExternal Network WS.
Selecting the Right Network Access Protection Architecture
Technology Overview. Agenda What’s New and Better in Windows Server 2003? Why Upgrade to Windows Server 2003 ?  From Windows NT 4.0  From Windows 2000.
Virtual techdays INDIA │ 9-11 February 2011 Security Discussion: Ask the Experts M.S.Anand │ MTC Technology Specialist │ Microsoft Corporation Anirudh.
Desired Configuration Management Kevin Parr, PMP Principal System Center Technology Specialist Heartland District Microsoft Corporation
Objectives Configure routing in Windows Server 2008 Configure Routing and Remote Access Services in Windows Server 2008 Network Address Translation 1.
MANAGEMENT ANTIMALWARE PLATFORM Microsoft Malware Protection Center Dynamic Signature Svc Available only in Windows 8 Endpoint Protection Management.
Asif Jinnah Microsoft IT – United Kingdom. Security Challenges in an ever changing landscape Evolution of Security Controls: Microsoft’s Secure Anywhere.
Microsoft and Community Tour 2011 – Infrastrutture in evoluzione Community Tour 2011 Infrastrutture in evoluzione.
John “JG” Chirapurath Director, Identity & Security BG Microsoft SIA-205 Business Ready Security.
Yusuf Joosub Security Management SSP Microsoft Session Code: SIA302.
MDC417 Follow me on Working as Practice Manager for Insight, he is a subject matter expert in cloud, virtualization and management.
Module 9: Designing Network Access Protection. Scenarios for Implementing NAP Verifying the health of: Roaming laptops Desktop computers Visiting laptops.
Network and Perimeter Security Paula Kiernan Senior Consultant Ward Solutions.
Jim Harrison Program Manager, Forefront TMG Microsoft Corporation SESSION CODE: SIA325.
Steve Lamb Technical Security Advisor Microsoft Ltd
Terminal Services Technical Overview Olav Tvedt TVEDT.info Microsoft Speaker Community
Forefront – Security in Education Stephen Cakebread Security Solutions Sales Professional Microsoft Corporation.
Bill Jensen Bashar Kachachi Session Code: SIA309.
Module 2: Installing Exchange Server Overview Introduction to the Exchange Server 2007 Server Roles Installing Exchange Server 2007 Completing the.
ISA SERVER 2004 Group members : Sagar Bhakta – [intro] Orit Ahmed – [installation] Michael Wijaya [advantages] Rene Salazar - [features]
Microsoft ISA Server 2000 Presented by Ricardo Diaz Ryan Fansa.
Grow Your Deal size by 80% by attaching Forefront to your Secure Messaging and Collaboration Solutions Scott Gosling Infrastructure Practice Manager -
May 30 th – 31 st, 2007 Chateau Laurier Ottawa. Getting it Done: Understanding the Security Features of Windows Vista Kai Axford, CISSP, MCSE-Security.
© 2008 Microsoft Corporation. All rights reserved. This presentation is for informational purposes only. MICROSOFT MAKES NO WARRANTIES, EXPRESS OR IMPLIED,
1 Objectives Wireless Access IPSec Discuss Network Access Protection Install Network Access Protection.
Advancing Security Progress and Commitment Stuart Okin Chief Security Advisor – Microsoft UK Delivering on security (an update on progress)
Be Microsoft’s first and best customer Enabling world-class and predictable customer, client, and partner experience Protecting Microsoft’s physical and.
Module 14: Advanced Topics and Troubleshooting. Microsoft ® Windows ® Small Business Server (SBS) 2008 Management Console (Advanced Mode) Managing Windows.
Connect with life Ravi Sankar Technology Evangelist | Microsoft Corporation Ravisankar.spaces.live.com/blog.
Edge Security with Forefront Sandeep Modhvadia Security Specialist.
Tim Rains Group Product Manager Microsoft Session Code: SIA101.
1 Welcome to Designing a Microsoft Windows 2000 Network Infrastructure.
Asif Jinnah Field Desktop Services Enabling a Flexible Workforce, an insider’s view.
Virtual Private Network Access for Remote Networks
“Introduction to Azure Security Center”
2016 Citrix presentation.
Securing the Network Perimeter with ISA 2004
Forefront Security ISA
Healthcare Cloud Security Stack for Microsoft Azure
Secure once, run anywhere Simplify your security with Sophos
Building an Integrated Security System Microsoft Forefront code name “Stirling” Ravi Sankar Technology Evangelist | Microsoft
Healthcare Cloud Security Stack for Microsoft Azure
Increase and Improve your PC management with Windows Intune
Server Security Technologies
DirectAccess with Unified Access Gateway (UAG)
Presentation transcript:

Ronald Beekelaar Beekelaar Consultancy Forefront Overview

2 Introductions Presenter – Ronald Beekelaar MVP Windows Security MVP Virtual Machine Technology Work Beekelaar Consultancy Security consultancy Forefront, IPSec, PKI Virtualization consultancy Create many VM-based labs and demos

3 Agenda Part 1 - Forefront Strategy and Overview Part 2 - Forefront Client Security (FCS) FCS Architecture Deployment Scannig Part 3 - Forefront Server Security Forefront Security for Exchange Forefront Server Security Management Console (FSSMC) Forefront Security for SharePoint Part 4 - Forefront Edge Security (IAG) History SSL-VPN Connection Types IAG Configuration Part 5 - Forefront Future Roadmap FCS, ISA, IAG Codename "Stirling"

4 Seminar Hours Schedule: – 10.30: Session – – Break – 12.00: Session – – Lunch (60 minutes) – 15.00: Session – 15.15: Raffle

5 Forefront Lab VMs and Manuals Available on hand-out DVD Forefront Client Forefront Client Security Lab Forefront Server Forefront for Exchange Lab Forefront for SharePoint Lab Forefront Management Console Lab Forefront Edge ISA 2006 Lab IAG 2007 Lab

6 Themes Define configuration policies Client health checking Enforce client configuration changes (compliance) Monitoring Reporting

7 Client Health Checking Static checking MBSA Forefront Client Security - Security State Assessment Checks fixed set of settings SC Configuration Manager - Desired Configuration Management Can define operations (= change) Connect checking Remote Access Quarantine (rqs.exe, rqc.exe) Win2003 RRAS and ISA 2004 VPN Runs script or executable + change Intelligent Application Gateway Endpoint Policies Runs script Network Access Protection (NAP) - Win2008 Checks settings + change

8 Comprehensive line of business security products that helps you gain greater protection and secure access through deep integration and simplified management Network Edge Server Applications Client and Server OS Windows Networking Solutions Terminal Services Scalable Networking Pack Server & Domain Isolation Network Access Protection Secure Wireless

9 Unified Management across client, server application, & edge security in one console Comprehensive, coordinated protection with dynamic responses to complex threats Critical Visibility into overall security state including threats and vulnerabilities Unified Management across client, server application, & edge security in one console Comprehensive, coordinated protection with dynamic responses to complex threats Critical Visibility into overall security state including threats and vulnerabilities Server ApplicationsClientEdge One product that delivers comprehensive, coordinated protection with unified security management and reporting across clients, server applications, and the network edge Next Generation Forefront for Exchange Forefront for SharePoint Next Generation Forefront for Exchange Forefront for SharePoint Next Generation Forefront Client Security Next Generation Internet Security & Acceleration Server Next Generation Internet Security & Acceleration Server

10 Potentially unwanted software detected 1 Increasingly Challenging Security Environment 1.Windows Defender between January 1, 2007 and June 30, MSRT in 1H Exchange Hosted Services in 1H 2007 over 1H Windows Defender in 1H : % 44% Ratio of computers infected with malware detected and cleaned by MSRT 2 Increase in percentage of infected messages caught by EHS in 1H 2007 compared to 1H Percentage of infections by top 25 pieces of malware 4 Get the Microsoft Security Intelligence Report (Jan. – June 2007) at: M 168% Percentage increase in category of potentially unwanted software (includes rogue security software )

11