Install and Manage EndPoint with SCCM

Install EndPoint Protection using SCCM

Microsoft System Center 2012 Endpoint Protection (previously Forefront Endpoint Protection) consolidates desktop security & management into one solution.

Add Site System Roles for “EndPoint Protection” Point.

Specify only if you are use proxy server.

Configuring EndPoint Protection Point:

Configuring Windows Update Pint:

Before you proceed double click on “Software Update Pont” to ensure port used by the WSUS server ( it is 80 and 443 for WSUS 3.0 SP2 but newer WSUS use port: ports 8530 and 8531)

Specify only if you are use proxy server.

Configure Email Alert.

Set account credentials if your email server doesn’t permit relay. If it is external server; probably it will not support relay. So you need to “specify an account” and mail server account password.

Creation on device collection (group similar Operating system for group deployment)

We just put “All Systems” for this exercise but in real live we can be specific.

Grouping Windows 7 system in same collection here.

Definition updates for malware.


See the log update

Craete a share with read access to auth users and full access to admin ac

Note: you can notice FEP will install on to your desktop PC. Require waiting for an while.

You can set type of FEP scan policy you required; either import from built in template as shown below or customize the template as per your need.

Customize antimalware policy:


About Robiul

Robiul has 15 years of continuous successful career experience in ICT with extensive background in System Engineering, IT infrastructure design, operations and service delivery, managing IT projects / MIS functions for local and multi-national companies with in-depth knowledge of multiple operating systems as well as construct / manage small to medium size Data Center. Proven ability to design and implement medium to semi-large scale LAN/WAN/WLAN and system infrastructures. Academic qualification: Master of Science in Information Systems. Professional certifications are: MCSE, CCNA, ITIL and FoundStone Security Professional, VCP, NetAPP, CISSP etc.
This entry was posted in SCCM, Windows and tagged . Bookmark the permalink.