Kategori arşivi: ForeFront

Identity Lifecycle Manager, Bilgi Güvenliği Ödülleri’nde Altın Madalya Kazandı

Eylül ayında Bilgi Güvenliği Dergisi’in 5.’sini düzenlediği  Okuyucu Seçimleri Ödülleri’nde Identity Lifecycle Manager 2007, rakiplerini geride bırakarak ilk sıraya oturdu. Okuyucuların ön planda tuttuğu özellikler; kullanım kolaylığı, ilgili diğer çözümlerle kolay entegrasyonu ve kapsamlı, esnek raporlama özelliği oldu. Önceden de bilindiği üzere, Identitiy Lifecycle Manager 2007’nin varisi olan Microsoft Forefront Identity Manager (FIM) 2010 şu an mevcut ve son kullanıcı servis kabiliyetleri ile BT yöneticilerine sağladığı görev yönetici araçları sayesinde kurumsal kimlik yönetimini oldukça kolaylaştırmaktadır.

Forefront Unified Access Gateway (UAG) Update 2

Overview

The following is provided by Forefront UAG Update 2:

Citrix publishing support—Forefront UAG fully supports Citrix Presentation Server 4.5 and its replacement Citrix XenApp 5.0.
Citrix client computer support—Forefront UAG supports client computers with 64-bit operating systems accessing Citrix XenApp applications.
Client Components—The Forefront UAG SSL Application Tunneling component is now supported on 64-bit Windows 7 operating systems for 32-bit applications.
Virtual Desktop Infrastructure (VDI)—Forefront UAG fully supports publishing remote desktops using VDI.
SSTP user and group access control—Forefront UAG now provides a finer authorization mechanism allowing administrators to authorize individual users or groups for SSTP access.
SSL handshake—Forefront UAG now provides better handling of the SSL handshake including the case when the application server requires client certificate credentials for the negotiation.
MAC address support—Forefront UAG Network Connector supports a wider range of network adapters with a larger valid MAC address range.

Find more information about Forefront UAG as follows:
• To read the latest Forefront UAG documentation, visit the Forefront UAG TechCenter library (https://go.microsoft.com/fwlink/?LinkID=179306)
• To read about up-to-date issues, visit the Forefront UAG Product Team blog (https://go.microsoft.com/fwlink/?LinkId=1565126)
• For support issues, visit the Forefront UAG forum (https://go.microsoft.com/fwlink/?LinkId=1565136)

https://www.microsoft.com/downloads/en/details.aspx?FamilyID=9dcccebc-accb-4229-901a-792cc66791de#QuickDetails

Kaspersky Engine Changing for Forefront

Forefront ve Antigen kullanıcıları için değişen bu yeni tarama motorunu edinmek için yama yüklemek gerekli .

Changes to the Kaspersky antimalware engine mean that Forefront and Antigen server protection customers will need to apply updates to ensure that they remain protected by Kaspersky. The updates will be available from July through Sept. 2010 and must be applied by the end of Jan. 2011 or customers will not receive signature updates and will see errors. Customers who cannot update by that time can avoid problems by deselecting the Kaspersky engine.
Kaspersky Engine Changing
Antigen 9 products for Exchange and Simple Mail Transport Protocol (SMTP) are commonly used to protect Exchange Server 2003 and Windows Server SMTP installations, while the Forefront products for Microsoft application servers protect 2007 and later versions of Exchange Server, SharePoint Server, and Communications Server. These Forefront and Antigen products use multiple scanning engines to improve detection of malware and to ensure that protection continues while signatures are updated. Up to five engines can be selected and Microsoft occasionally adds or deletes engines from the list.
The Kaspersky scanning engine is very commonly used and the current version in the Forefront and Antigen products is Kaspersky 5, but Microsoft plans to upgrade the engine to Kaspersky 8 in all products and discontinue Kaspersky 5 updates by the end of Jan. 2011. The newer Kaspersky engine is faster, has smaller malware signature files, and can protect 64-bit servers.
However, the new Kaspersky engine stores files in subdirectories, which the current Forefront and Antigen products cannot handle. In addition to installing Kaspersky 8, the updates will prepare the Forefront and Antigen products to ensure that the new engine (or any future engines that publish to a subdirectory) will update correctly.
The following products are affected:
•    Forefront Protection 2010 for Exchange Server
•    Forefront Protection 2010 for SharePoint (32-bit SharePoint installations only)
•    Forefront Security for Exchange Server
•    Forefront Security for SharePoint
•    Forefront Security for Office Communications Server
•    Forefront Server Security Management Console
•    Antigen 9 for Exchange
•    Antigen 9 for SMTP Gateways.
Customers have until Jan. 31, 2011, to install the updates; after that they will not receive signature updates for the Kaspersky 5 engine and will see errors in the Kaspersky log files. A workaround is to deselect the Kaspersky 5 engine as one of the engines used for scanning.
Customers using Antigen 8 products, which also employ the Kaspersky 5 engine, will have to contact Microsoft for details on what actions they should take.
Other Microsoft protection products (Forefront Client Security, Security Essentials, Windows Intune, Forefront Threat Management Gateway, and Forefront Unified Access Gateway) do not use the Kaspersky engine and the updates are not required for those products.
Availability and Resources
The updates will be available for affected products from July 2010 through Sept. 2010. Unlike the other products, Forefront Protection 2010 for Exchange and Forefront Protection 2010 for SharePoint already include Kaspersky 8, but it is not enabled by default. Customers can manually enable Kaspersky 8, a process that will be automatic when the updates are installed.
Kaspersky engine updates for Forefront and Antigen are described in a FAQ available from www.microsoft.com/downloads/details.aspx?displaylang=en&FamilyID=811263a0-2218-4247-8358-68d345daf6a5.
Enabling Kaspersky 8 in Forefront Protection 2010 for Exchange and Forefront Protection 2010 for SharePoint is described at support.microsoft.com/kb/2284024.

Forefront Protection Server Management Console 2010

Reminder – please join us for the Forefront Protection Server Management Console 2010 Live Meeting with members of the product team tomorrow, Wednesday, August 11 @ 8:00AM Pacific. The full meeting details are located on the Connect website here (https://connect.microsoft.com/forefrontsecurity/content/content.aspx?ContentID=17999).

Description: Please join us for a demo of the new FPSMC multi-node management console for Forefront Protection 2010 for Exchange and Forefront Protection 2010 for SharePoint. We will be providing an overview of the user interface and management features that are planned to be delivered to you as part of the TAP and CAG program. This will also be a good opportunity for you to ask questions. An overview of the FPSMC feature set can also be found here: https://connect.microsoft.com/forefrontsecurity/Downloads/DownloadDetails.aspx?DownloadID=30320

Maximum Certainty and Favor Certainty arasındaki fark

Evet bu konuda herkes soru soruyor bende buradan açıklık getirmek istedim. Maalesef bu konuda yanlış bilgi paylaşımıda söz konusu ;

peki nedir fark ;

maximum certainty de seçmiş olduğunuz tüm engine ler ile tarama yapılmaktadır .Ancak burada bilmeniz gereken bir detay bulunmaktadır ;  bir engine update olursa eğer bu durumda mesajlar taranmak için bu engine in update olmasını beklerler. bu bekleme süresi aslında çok düşük bir süredir çünkü tüm engine in tamami ile update olmasını değilde bu sürecin küçük bir parçasının başlaması yeterli olacaktır. Ama sonuç olarak tam bu aşamada bir tarama isteği gelir ise kuyruklanacaktır. İşte bu kuyruklama işlemini istemiyorsanız  favor certainty yi seçmelisiniz. Bu durumda update olan engine in update süreci beklenmeden geriye kalan aktif engine ler ile tarama gerçekleştirilir.