Educause Security Discussion mailing list archives

Re: Managed deployment of System Center Endpoint Protection (SCEP)

From: "Davis, Michael" <MichaelDavis () LETU EDU>
Date: Mon, 14 Jan 2019 18:19:32 +0000

Howdy Doug,

Like many things in SCCM, numerous settings can also be controlled in Group Policy. We’ve opted to deploy the WDEG in 
and Firewall Policies in GP.

We do set our Antimalware Policies through SCCM though. We have exclusions setup for our SCCM site servers per 
Microsoft’s recommendations here: 
https://blogs.technet.microsoft.com/systemcenterpfe/2017/05/24/configuration-manager-current-branch-antivirus-update/

Microsoft also maintains an exclusion list recommended for other products here as well: 
https://social.technet.microsoft.com/wiki/contents/articles/953.microsoft-anti-virus-exclusion-list.aspx

Then, we have a separate set of Antimalware policies deployed to desktops/servers.

Feel free to contact me directly and we can bounce ideas around.

Michael A. Davis
Director, Information Security
Director, User Support & Engagement
[w] 903.233.3500 | [f] 903.233.3501
[l] LinkedIn/michaeldavis<http://www.linkedin.com/in/michael-davis-b042b84> | [t] @mdavis332<twitter.com/mdavis332> | 
[s] Skype for Business<sip:michaeldavis () letu edu>

[cid:image001.png@01D4AC03.6721BA50]


From: The EDUCAUSE Security Community Group Listserv <SECURITY () LISTSERV EDUCAUSE EDU> On Behalf Of Douglas Stinnette
Sent: Monday, January 14, 2019 11:37 AM
To: SECURITY () LISTSERV EDUCAUSE EDU
Subject: [SECURITY] Managed deployment of System Center Endpoint Protection (SCEP)

Hi there,

This is my first post and am asking for insight.
SCEP supports the following policies for protection.

  *   Antimalware Policies
  *   Windows Defender FireWall Policies
  *   Windows Defender Exploit Guard
  *   Windows Defender Application Guard
I'm just now testing deployment of antimalware policies and have started internet research on the others listed above.

I would like to know if others have deployed any of the SCEP solution in a managed manner. Also I would like to share 
questions and thoughts about the solution as well.

Thanks,
Doug

--



Doug Stinnette

VCU Technology Services

Endpoint Security Specialist

Virginia Commonwealth University

827-0933



Don't be a phishing victim - VCU and other reputable organizations will never use email to request that you reply with 
your password, Social Security number or confidential personal information. For more details visit 
http://go.vcu.edu/phishing<https://na01.safelinks.protection.outlook.com/?url=http%3A%2F%2Fgo.vcu.edu%2Fphishing&data=02%7C01%7Cmichaeldavis%40LETU.EDU%7C284a516a7d494e45ae0c08d67a485069%7C97a5855489f64d5a9806dd0ee085d235%7C1%7C1%7C636830848342079628&sdata=lRgPE9AL2U8Z6VpFIUzZ8H2wqHWj8QGpQXKF7H%2BXNVM%3D&reserved=0>
 or 
http://phishing.vcu.edu<https://na01.safelinks.protection.outlook.com/?url=http%3A%2F%2Fphishing.vcu.edu&data=02%7C01%7Cmichaeldavis%40LETU.EDU%7C284a516a7d494e45ae0c08d67a485069%7C97a5855489f64d5a9806dd0ee085d235%7C1%7C1%7C636830848342079628&sdata=IlZLaeXVbu5kRRt0fLfGgWbmu1jI63EHdb%2F%2FF3p6Suk%3D&reserved=0>.

Current thread:

Managed deployment of System Center Endpoint Protection (SCEP) Douglas Stinnette (Jan 14)
- Re: Managed deployment of System Center Endpoint Protection (SCEP) Davis, Michael (Jan 14)
- Re: [External] [SECURITY] Managed deployment of System Center Endpoint Protection (SCEP) Camacaro Latouche, Jose David (Jan 14)
- <Possible follow-ups>
- Re: Managed deployment of System Center Endpoint Protection (SCEP) Douglas Stinnette (Jan 16)
  - Re: Managed deployment of System Center Endpoint Protection (SCEP) Davis, Michael (Jan 17)