Endpoint Protection Planning and Integration
The purpose of this lecture is really twofold.
- First there is Planning - With what you will learn in this lecture you should be able to develop an effective security installation plan for your organization.
- Then we have integration - In this lecture we will gain an understanding of how these individual components integrate together to form a solid security solution.
The following is a summary of the individual components and a brief explanation of the function of each major component. If you have setup your lab as prescribed in previous lectures, all those components marked as completed should already have been installed and configured in your lab.
For this lecture, the following components should be installed in the order given below.
Installation of Windows server, Active Directory, DNS, SQL, SCCM and Endpoint Protection should have been completed.
Endpoint Protection – Should already be installed if you downloaded and installed SCCM with Endpoint Protection.
-
WSUS server role must be installed, In this case on ITFSCCM01.
-
Installation of the Software Update Point Role – This role runs the
Windows Software Update Services (WSUS) and allows Configuration Manager to use the WSUS catalog to scan SCCM clients for software updates. The SUP is the connection between WSUS and SCCM. For this lecture, the SUP enables us to bring software updates into SCCM.
-
SCCM uses DNS and Active Directory to find users and devices so we can create collections for software and policy deployment.
-
Installing the Reporting Services Point Role – A site service role that provides integration with SQL server reporting services to create and manage reports for Configuration Manager.
-
Installing the Endpoint Protection Point Role – Must be installed on one site system server at the top of the hierarchy.
So far we have planned our server side configuration, now we will plan our **client side…
No comments yet. Add the first comment to start the discussion.