Eduardo Petizme.com | MVP : ForeFront

! Forefront TMG 2010 - RTM

Petizme — Wed, 18 Nov 2009 11:10:07 GMT

Hi,

This week, 16/November, Forefront TMG 2010 goes RTM.

New features like URL Filtering, Anti-malware, Network Inspection System (NIS) are available for your utilization.

“URL Filtering: URL Filtering allows controlling end-user access to Web sites, protecting the organization by denying access to known malicious sites and to sites displaying inappropriate or nonproductive materials, based on URL categories. TMG features over 80 URL categories including security-oriented categories, productivity-oriented and liability-oriented categories. Forefront TMG uses Microsoft Reputation Services (MRS), a cloud-based categorization system hosted in Microsoft data center. To ensure the best bandwidth utilization and low latency, Forefront TMG has implemented a local URL cache. There is a lot more on URL Filtering available in an earlier URL Filtering post.

Anti Malware: Stopping malware on the edge significantly decreases the possibility that a virus will hit a computer with anti-virus signatures that are not up-to-date or a test computer without an anti-virus to protect it. TMG has integrated the Microsoft Anti Malware engine to provide world class scanning and blocking capability on the edge.

Network Inspection System (NIS): NIS is a generic application protocol decode-based traffic inspection system that uses signatures of known vulnerabilities, to detect and potentially block attacks on network resources. NIS provides comprehensive protection for Microsoft network vulnerabilities, researched and developed by the Microsoft Malware Protection Center - NIS Response Team, as well as an operational signature distribution channel which enables dynamic signature snapshot distribution. NIS closes the vulnerability window between vulnerability disclosures and patch deployment from weeks to few hours.

In addition, we have introduced HTTPS scanning to enable inspection of encrypted sessions, eased the deployment and management with a set of easy to use wizards and significantly improved logging and reporting to provide full visibility into how your organization is accessing the web and whether it’s compliant with your organization’s policy.”

You can download at: http://www.microsoft.com/downloads/details.aspx?displaylang=en&FamilyID=e05aecbc-d0eb-4e0f-a5db-8f236995bccd

More information at: http://blogs.technet.com/isablog/archive/2009/11/17/forefront-threat-management-gateway-2010-release.aspx

[]’s

Eduardo Petizme.com
Microsoft MVP – Most Valuable Professional
MCSA Security 2000 & 2003 | MCITP Server 2008
Blogs: http://blog.petizme.com ( USA | BRA )
Twitter: http://twitter.com/petizme

! ! URL Filtering Telemetry Package for TMG Beta3

Petizme — Wed, 09 Sep 2009 13:18:02 GMT

Hi,

Last month the TMG Team announced that is available to download (public) the “URL Filtering Telemetry Package”.

”With Forefront TMG Beta3, we introduced URL filtering leveraging the Microsoft Reputation Service (MRS). As we approach the Forefront TMG release candidate and release to market, we are working to improve the coverage and accuracy of our URL filtering offering and fine-tune it to address the Web traffic you see in your business.

As part of this effort, the MRS team has recently completed a significant database update, merging URL categorization data from partners such as Marshal8e6 and BrightCloud. Those of you who have installed TMG Beta3 and enabled URL filtering will begin receiving the enhanced data in the next several days. URL filtering database coverage and accuracy enhancements will continue to take place on an ongoing basis. …”

“Once you install the telemetry package, you will be automatically opted-in to the Microsoft telemetry service with basic membership (unless you were already signed in with advanced membership). In the context of URL filtering, this means reports collected by Microsoft from you include:

Random URL samples. The URLs are truncated to avoid disclosure of personal information.
The local list of URL category overrides.
A few statistical counters such as the ratio of requests that MRS failed to categorize.
Globally unique identifiers (GUIDs) to uniquely identify a Forefront TMG server for statistical analysis. The GUIDs are randomly generated during installation and do not contain any personal information or customer identity information. ”

More information and source here.

Download: http://www.microsoft.com/downloads/details.aspx?FamilyID=f7e5907d-60ae-4f39-8660-9a959db5a6e6&displaylang=en

[]’s

! Download Forefront Threat Management Gateway (TMG) Beta 3

Petizme — Tue, 16 Jun 2009 21:13:14 GMT

Hi,

Forefront TMG Team make available last week the Beta 3.

“The Microsoft Forefront Threat Management Gateway is a comprehensive Secure Web Gateway solution that helps protect employees from threats on the Web with enterprise-class anti-malware scanning and blocking, URL filtering (new in Forefront TMG Beta 3), web proxy and caching functionality. Microsoft Forefront TMG also helps to ensure that encrypted (SSL) Web sessions have the correct security policy applied and enforced according to organizational policy. In addition, it can also be used to manage unified perimeter security that protects networks from attacks with an integrated application and network-layer firewall, intrusion detection and response capabilities, VPN connectivity, and management of e-mail security. The newly added protection technologies will enable organizations to inspect e-mail traffic for spam and malware and enforce content policy compliance in your organization. Last, but not least, Microsoft Forefront TMG enables IT administrators to easily maximize existing information technology (IT) investments by improving network security and performance.

At the time of this release, the MRS database content is being populated and updated continuously as part of the initial beta service offering. As this process continues, URL filtering categorization accuracy and comprehensiveness will increase. A telemetry package designed for improving the quality of URL filtering database and collecting your feedback is planned to be released soon. Please check back for updates in August.”

https://www.microsoft.com/downloads/details.aspx?displaylang=en&FamilyID=e05aecbc-d0eb-4e0f-a5db-8f236995bccd

Bye,

Eduardo Petizme
Microsoft MVP – Most Valuable Professional
MCSA Security 2000 & 2003 | MCITP Server 2008
Site: http://petizme.com
Blogs: http://blog.petizme.com ( USA | BRA )

! Forefront Security for Exchange Server SP1 capacity planning tool

Petizme — Mon, 01 Jun 2009 16:19:27 GMT

Hi,

“Quickly understand what hardware, architecture, and configuration settings will produce recommended system performance and message throughput results for comprehensive protection of your Exchange Servers. Download the free Forefront Security for Exchange Server SP1 capacity planning tool, an excel spreadsheet with built in workflow, that applies to the Forefront Security for Exchange Server SP1 product. You’ll be able to plan the details for a new deployment or understand the impact of adding security protection to an existing deployment.”

Download: http://www.microsoft.com/downloads/details.aspx?FamilyID=522da65d-5263-4f5d-b929-8428a394b9af&displaylang=en

More information and source here.

Bye,

Eduardo Petizme
Microsoft MVP – Most Valuable Professional
MCSA Security 2000 & 2003 | MCITP Server 2008
Site: http://petizme.com
Blogs: http://blog.petizme.com ( USA | BRA )

! Interview: Forefront Stirling

Petizme — Tue, 23 Sep 2008 14:46:50 GMT

Hi all,

Ronald Beekelaar is the VM guy! He do a very good work preparing VM’s for Microsoft Teams.

See this interview w/ him about Forefront Stirling.

Ronald Beekelaar on Stirling and being your own boss

More info and source here or here.

Bye,

Eduardo Petizme
MVP Forefront Security
Site: http://petizme.com
Blogs: http://blog.petizme.com ( USA | BRA )

! Forefront Stirling Policies

Petizme — Tue, 23 Sep 2008 14:35:34 GMT

Hi,

From Extreme Blog:

“Even in Beta 1 of Forefront Stirling you can check out the security policy capabilities the product has. I know what you’re thinking – “whoopee, more policies”, but what you can do with the policies in Stirling are quite impressive.

What can you do with Stirling policies?

For each policy, you can easily specify granular compliance settings for Forefront Client Security (FCS), Forefront Server for Exchange (FSE), and various other security state assessments AND specify granular automated actions to be taken to remediate - all from a single console. Some ideas for what you might do with Stirling policies:

If a client doesn’t have the correct firewall or latest anti-malware updates, remediate this using NAP.
Scan email using two engines and when a virus is found to be sent via email, clean the virus and initiate a full client virus and anti-malware scan using FCS
Audit to verify your IIS 6/7 and SQL 2005 servers have appropriate security settings enabled
If a client is doing a port scan or quickly sending a large number of emails, quarantine their computer using NAP, block their outbound internet access through TMG, scan their email for viruses with FSE, and do a full virus scan with FCS

In updates past Beta 1, you can eventually expect even more capabilities and integration with other Forefront products.

…”

More info and source here.

Bye,

Eduardo Petizme
MVP Forefront Security
Site: http://petizme.com
Blogs: http://blog.petizme.com ( USA | BRA )

! Official TechNet Webcasts for Microsoft Brazil by Petizme

Petizme — Tue, 19 Aug 2008 03:43:52 GMT

Hi all,

This semester I was selected by Microsoft TechNet Brazil to presenter two webcasts in portuguese.

Microsoft Forefront Messaging Security: The Next Generation of Virus and Spam Protection

The next release of Forefront Security for Exchange Server, along with Exchange Hosted Services and the Forefront Management Console, will offer the most comprehensive protection ever for Exchange messaging environments. This session provides an in-depth look at Microsoft's next generation of malware protection including multiple scan engine virus detection, improved spam detection technologies, added spyware and anti-phishing technologies, layered on-premise software and in-the-cloud services, as well as centralized management that provides better control over end-to-end messaging security.

December, 02

http://msevents.microsoft.com/CUI/EventDetail.aspx?EventID=1032384206&culture=pt-BR

Security Advances of Windows Server 2008

Windows Server 2008 is the second generation of server product to benefit from Microsoft's increased focus on security, and delivers some key architectural changes and security features that help make it more securable than ever. This session examines the security advances in Windows Server including Windows Server Core, Network Access Protection, Read Only Domain Controllers, and other protection technologies to highlight the security improvements. The session also includes an analysis of security issues, if any, that have arisen with Windows Server 2008 since product release.

December, 03

http://msevents.microsoft.com/CUI/EventDetail.aspx?EventID=1032384265&culture=pt-BR

Bye,

Eduardo Petizme
MVP Forefront Security
Site: http://petizme.com
Blogs: http://blog.petizme.com ( USA | BRA )

! FCS Kit w/ NAP- RTM Available to download

Petizme — Sat, 05 Jul 2008 18:00:55 GMT

Hi,

Earlier this year (March), I announced here that Beta of Integration Kit for Network Access Protection was available to download. This week the final version, RTM, is on the Microsoft.

Download here.

More information and source here.

[]'s

Eduardo Petizme
MVP Forefront Security
Site: http://petizme.com
Blogs: http://blog.petizme.com ( USA | BRA )

! FCS support for: ...

Petizme — Sat, 05 Jul 2008 17:33:55 GMT

Hi,

Since last month (June/2008) FCS Team announced support for:

· Agent protection of Windows Server 2008 – Server and Core.

· NAP integration.

· Hyper-V, upon its release.

· Agent protection of cluster servers.

· Agent protection of Home editions of Vista, XP Sp2 and XP Sp3.

· Agent protection of Vista Sp1.

More information and source here.

Bye,

Eduardo Petizme
MVP Forefront Security
Site: http://petizme.com
Blogs: http://blog.petizme.com ( USA | BRA )

! New IAG - Unified Access Gateway (UAG)

Petizme — Tue, 29 Apr 2008 22:54:18 GMT

Hi all,

As Forefront MVP I already know about it, but now (April 29th) it's public.

"At the Interop conference today, Microsoft announced its next-generation secure remote access gateway product, Forefront Unified Access Gateway (UAG), available in the first half of 2009. Forefront Unified Access Gateway is the evolution of Microsoft's current solution, Intelligent Application Gateway (IAG 2007), and moves the successful product under the Forefront brand. UAG will bring new features and functionality to make remote access easier than ever for all users and IT professionals.

...

Built on Windows Server 2008, UAG is designed to offer one solution to fit all remote access needs through centralized management and policy control across all users, devices, and network resources. More details about the features in Forefront UAG will be available with a public beta scheduled for later this calendar year. Microsoft will provide an easy product and licensing upgrade path from IAG 2007 or customers using ISA 2006 for remote access to Forefront UAG, and IAG customers that have or buy Microsoft Software Assurance can be confident of receiving strong value with Forefront UAG.

Forefront UAG will add further features to a comprehensive end point security assessment and cache cleanup, which is tailored to the specific application and access environment. Tightly integrated with Microsoft Network Access Protection, this ensures only secure devices and authenticated users can access network resources and that no data is compromised during or after the sessions.

Forefront UAG adds more ease of use with wizard driven configuration, easy to use policies and highly intuitive user experience. This solution ensures a fast and easy deployment allowing employees, partners and vendors simple and secure access, via customized and dynamic user portals. Ongoing management and control is simplified via updates to application and endpoint policies.

...

More information here.

Bye,

Eduardo Petizme
MVP Forefront Security
Site: http://petizme.com
Blogs: http://blog.petizme.com ( USA | BRA )

! MVP Summit 2008 - Seattle & Redmond - WA - USA

Petizme — Thu, 24 Apr 2008 15:57:23 GMT

Hi all,

Last week was the MVP Global Summit, edition 2008, at Seattle & Redmond (Microsoft Campus) - WA - USA. Participate in this exclusive event is one of benefits to be a MVP.

This year we had more breakout sessions with the product team and my case much better than 2007 was. I saw sessions w/ Forefront Client Security, Forefront Server, ISA/TMG/IAG/UAC and Stirling. Almost all content is under NDA and I cannot tell you what I see, but "Stirling" is already available to download as a beta and you can try it (see my old post about it).

About the keynotes, we had Ray Ozzie and Steve Ballmer! Steve was incredible!!!

Thanks to MVP Team for this opportunity.

Thanks Forefront Team by your support.

To know more about this event see at https://www.mvpsummit2008.com/public/aboutthisevent.aspx

http://www.microsoft.com/Presspass/press/2008/apr08/04-1408MVPSummitPR.mspx

To know more about the keynotes see at Ray Ozzie & Steve Ballmer

Bye,

Eduardo Petizme
MVP Forefront Security
Site: http://petizme.com
Blogs: http://blog.petizme.com ( USA | BRA )

! New ISA Server - Forefront Threat Management Gateway (TMG)

Petizme — Wed, 09 Apr 2008 10:37:25 GMT

Hi all,

As Forefront MVP I already know about it, but now (April 9th) it's public.

"... the Forefront Threat Management Gateway (TMG), a comprehensive network protection solution. Forefront TMG is the future version of the Microsoft Internet Security & Acceleration Server (ISA Server) and will extend the capabilities of ISA Server with new features and security technologies. I know many of you have loved and embraced the ISA Server name and brand for a long time – but it is time for new naming, new logos, blogs, books and of course new technology directions.

Forefront TMG will be available as both a standalone solution but also part of new integrated suites to be released in the future such as the Microsoft Windows Essential Business Server, the recently announced server solution designed for mid-sized companies due out later this year as well as the Forefront “Stirling” suite announced today, a unified protection solution that combines Forefront client, server, and edge security solutions with a single management and policy layer. A “first look” preview of Stirling Beta 1 was shown at RSA this week. It is also available for download.

Why am I so excited about this announcement? To begin, it is the first version of ISA Server that will fully support the Windows Vista and Server 2008 platforms. It also will natively support the 64-bit Windows Server platform which provides significant scalability and security capabilities to the Threat Management Gateway. The three other main areas of enhancement we are announcing today are the following:

1. Multiple Threat Protection: We will enable numerous new protection technologies and capabilities, including integration of the Microsoft Anti-Virus Engine for protection against Internet-based malware and other threats. As part of Stirling, Forefront TMG will also include the “Dynamic Response” functionality to enable shared intelligence and response. This is a major step forward in how our customers rely upon the Microsoft gateway for protection and access to the Internet.

2. Simplified Management: Forefront TMG will include new set-up wizards, improved management interface and enhanced reporting. As part of the Stirling suite, Forefront TMG will be part of the Stirling central visibility dashboard and policy control.

3. Secure Connectivity: Forefront TMG will build on current ISA Server capability around secure Internet access and other connectivity features.

..."

More information here.

Bye,

Eduardo Petizme
MVP Forefront Security
Site: http://petizme.com
Blogs: http://blog.petizme.com ( USA | BRA )

! Forefront "Stirling" Beta avaliable

Petizme — Wed, 09 Apr 2008 10:36:49 GMT

Hi all,

Since yesterday, April 8th, you can download the beta version of Forefront Stirling, that is an integrated security system that delivers comprehensive, coordinated protection across endpoints, messaging and collaboration servers and the network edge that is easier to manage and control.
By delivering simplified management and providing critical visibility into threats, vulnerabilities, and configuration risks, Forefront codename "Stirling" helps reduce costs and achieve greater insight into the enterprise security state.
At release, “Stirling” will include:

A central management console and dashboard for security configuration and enterprisewide visibility.

The next-generation versions of Forefront products: the next generation of Forefront Client Security, Forefront Security for Exchange Server, Forefront Security for SharePoint and the Internet Security & Acceleration Server (to be renamed the Forefront Threat Management Gateway).

Dynamic Response, an innovative Microsoft technology built into each component of "Stirling" that allows the entire system to share and use security information to dynamically respond to threats across multiple layers of the organization.

More information and download here.

Bye,

Eduardo Petizme
MVP Forefront Security
Site: http://petizme.com
Blogs: http://blog.petizme.com ( USA | BRA )

! Forefront for Exchange and ISA Server wins two Info Security Awards

Petizme — Fri, 28 Mar 2008 15:03:02 GMT

Hi,

"Microsoft Forefront Security for Exchange Server 2007 was honored with the award for "Global Excellence in Email Security Solution", and the Internet Security & Acceleration (ISA) 2006 Server was honored for "Global Excellence in Firewall Solution." These two awards are both a testament to the hard work of our development teams, and further proof of the excellence of the Forefront line of security products along with the many other award nominations gained by Forefront products in the last year. ..."

More information here.

Bye,

Eduardo Petizme
MVP Forefront Security
Site: http://petizme.com
Blogs: http://blog.petizme.com ( USA | BRA )

! FCS Kit w/ NAP- Beta Available at Connect

Petizme — Fri, 28 Mar 2008 13:46:21 GMT

Hi,

If you have Windows Server 2008 you can use NAP (Network Access Protection) to protect your network and now you can integrate with FCS (Forefront Client Security).

You can use FCS to protect your PC and NAP can this functionality.

"The Microsoft Forefront Integration Kit for Network Access Protection helps customers defend against malware threats by integrating two key Microsoft security technologies: Forefront Client Security and the new Network Access Protection feature in Windows Server® 2008.

The Kit helps protect customers by allowing them to configure health policies to monitor the state of Forefront Client Security in real time across their networks, and to remediate problems."

To learn more about the Kit, sign in to the Microsoft Connect Web site. Or, to join the program, click here.

You can see a video at NAP Blog Team.

More information here.

Bye,

Eduardo Petizme
MVP Forefront Security
Site: http://petizme.com
Blogs: http://blog.petizme.com ( USA | BRA )

! Forefront Client Security for Home User ?!?

Petizme — Tue, 11 Dec 2007 16:24:01 GMT

Hi,

Good news from FCS Blog.

"Customers who license the Client Security agent on a per-user basis can provide the Client Security agent to employees at no additional cost for protecting home computers. These home-based Client Security agents must be deployed in an unmanaged configuration; they will not be able to report to your Client Security servers in your enterprise.

The network administrator must distribute the required files to home users. For more information on Client Security licensing, see How to Buy Forefront Client Security (http://go.microsoft.com/fwlink/?LinkId=93608). For more information on using Client Security to protect home computers, see Protecting home computers (http://go.microsoft.com/fwlink/?LinkId=104969) in the Client Security Deployment guide."

Source: FCS Team Blog

Technorati Tags: Forefront Client,FCS

Bye,

Eduardo Petizme
MVP Windows Server System - ISA Server
Site: http://petizme.com
Blogs: http://blog.petizme.com ( USA | BRA )

! Forefront Security for Exchange Server with Service Pack 1 is Now Available!

Petizme — Fri, 30 Nov 2007 11:32:07 GMT

Hi,

"Forefront Security for Exchange Server with Service Pack 1 was released on November 29, 2007!! (Download here.) If you are looking forward to installing Exchange 2007 SP1 and are currently using Forefront Security for Exchange Server with then please download and upgrade to Forefront Security for Exchange Server with Service Pack 1 before upgrading to Exchange 2007 SP1. This build of Forefront is currently the only compatible and supported Forefront release for use with Exchange 2007 SP1. If you have never used Forefront Security for Exchange Server and you are interested in securing your Exchange 2007 server you can also install Forefront SP1 as a full installation on top of both Exchange 2007 RTM and Exchange 2007 SP1. ..."

Source: Forefront Server Security Blog

Technorati Tags: Forefront Server,Exchange Server

Eduardo Petizme
MVP Windows Server System - ISA Server
Site: http://petizme.com
Blogs: http://blog.petizme.com ( USA | BRA )

! KB Forefront Client - FCS software does not receive definition updates

Petizme — Tue, 20 Nov 2007 20:42:17 GMT

You have installed Microsoft Forefront Client Security software on a client computer. However, the Forefront Client Security software does not receive definition updates. You experience this issue when all the following conditions are true:

• The client computer has no Windows Server Update Services (WSUS) server configured.

• The client computer does not use the Microsoft Update Web site to search for the latest updates.

Source: http://support.microsoft.com/kb/943557/en-us

Technorati Tags: Microsoft,Forefront Client

Bye,

Eduardo Petizme
MVP Windows Server System - ISA Server
Site: http://petizme.com
Blogs: http://blog.petizme.com ( English - USA | Português - Brasil)

! TechEd Brazil 2007 - My Participation

Petizme — Thu, 08 Nov 2007 00:23:16 GMT

Hi,

It is with much pleasure that I inform that I was invited to speak at TechEd Brazil 2007. This is the biggest event about Microsoft technologies in Brazil. I'll talk in security track, on the side of Laura Chappell, Ricardo Frois, Fernando Cima, Fernando Fonseca, Sérgio Dias, Alberto Oliveira, Rodrigo Immaginário and another tracks Danilo Bordini, Rodrigo Dias, Artur Higashiyama, Miguel Ferreira, Anderson Patricio (from Canada), Airton Leal, Roberval Ranches, Fábio Hara and Mark Minasi

Some details about my session:

December, 6 - 2 PM - Setup and Deployment of Microsoft Forefront Client Security

Description: Forefront Client Security enables administrators the ability to configure one policy for anti-virus, anti-spyware, and security state assessment. This session gives you an in-depth view into the different configuration settings and the granularity between administrative deployed settings and client settings. Also, see the ease of use in deploying policies to the clients, laptops and servers with AD/GP, and a technical drill-down into software pre-requisites and key steps needed for setting up FCS under one, two, and four server topologies.

After at "Ask the Experts" round table from 6 PM to 9:30 PM, helping people w/ questions about Forefront Client e Forefront Edge.

Bye,

Eduardo Petizme
MVP Windows Server System - ISA Server
Site: http://petizme.com
Blogs: http://blog.petizme.com ( English - USA | Portugues - Brasil)

Technorati Tags: Microsoft,TechEd,Forefront Client,FCS

! Special Offer: Forefront Security for Exchange Server

Petizme — Sun, 26 Aug 2007 14:22:37 GMT

Hi,

"Microsoft Forefront Security for Exchange Server integrates multiple scan engines from industry-leading security firms to provide comprehensive protection for messaging environments. Along with Microsoft Antigen for Exchange, Forefront and helps to provide comprehensive protection from spam and malicious software as organizations migrate to Exchange Server 2007.

And now, customers can save up to 30% off the purchase price of Forefront Security for Exchange Server.

Learn about this special worldwide promotional offer that benefits customers and rewards you. ...""

Thanks to JohnR

More information at Special Offer- Forefront Security for Exchange Server

Bye,

Eduardo Petizme
MVP Windows Server System - ISA Server
Site: http://petizme.com
Blogs: http://blog.petizme.com (Português - Brasil | English - USA)