Now its time to push updates for Endpoint Protection . Let us create Automatic Deploymnet rule for installing Endpoint protection updates in all necessary  client machines.  Before the creation of automatic deploymnet rule, we have to make sure the presence of definiation updates metadata in software updates. Else , we have to follow below procedure to sync WSUS against Microsoft catalog.
Select Administration > Sites > Configure Site Component > Select Software Update Point

Check Definition updates in Classification tab

In Product tab, Select Forefront Endpoint Protection 2010
Click Ok .
Now go to Software Library -> Software Updates-> right click All Software Updates -> click Synchronize software updates
Check for the Wsyncmgr.log
Make sure the Definition update for Microsoft Endpoint Protection 2010 availability in software updates . Once the WSUS synchronisation completes ,start the process of creating automatic deployment rule.



How to Create Automatic Deployment rule in configuration manager 2012 ?

Select  Software Library -> Software Updates -> Right click Automatic Deployment rule ->Create Automatic Deployment Rule.

Name the Rule and select the collection that you are planning to push updates.
Select the option to Automatically deploy all software updates found by this rule,and approve any license agreements.
Click Next
Select the property and search criteria as per our requirements.
Here, my intension is to deploy Forefront Endpoint Protection 2010 that is released in last 1 month. So, select set the corresponding property as highlighted in below figure.


Select Run the Rule after any Software update point synchronization.
Click Next
Click next and specify the schedule details for the deployment. Since this is lab environment, I have selected As Soon as possible.
Click Next
Select the necessary user Notification as per your requirements like, displaying in software center or hide in software center etc.
If you want to suppress the reboot after the update installation for workstation and server, please check the box appropriately.
Click Next
You can skip the alert column, if you are not interested.
Click Next
Select create a new deployment package and specify the source path for the package.
Make sure the source folder is shared.
Click Next

Select the Distribution group or Distribution point to distribute the package
Click Next
Click Next
You should be able to see the green colour icon and the successful message for the automatic deployment rule creation wizard.
After creation of rules, click the rule and Run Now.
After sometime, you can see the reports in Monitoring -> Endpoint Protection status->System Center Endpoint Protection point.


Here we come to the end of "Endpoint Protection Configuration in SCCM".
Thanks Guys!

Translate

Total Pageviews

Blog Archive

Followers

Linkedin

Popular Posts