! Forefront Stirling Policies


From Extreme Blog:

“Even in Beta 1 of Forefront Stirling you can check out the security policy capabilities the product has.  I know what you’re thinking – “whoopee, more policies”, but what you can do with the policies in Stirling are quite impressive.

What can you do with Stirling policies?

For each policy, you can easily specify granular compliance settings for Forefront Client Security (FCS), Forefront Server for Exchange (FSE), and various other security state assessments AND specify granular automated actions to be taken to remediate – all from a single console.  Some ideas for what you might do with Stirling policies:

  • If a client doesn’t have the correct firewall or latest anti-malware updates, remediate this using NAP.
  • Scan email using two engines and when a virus is found to be sent via email, clean the virus and initiate a full client virus and anti-malware scan using FCS
  • Audit to verify your IIS 6/7 and SQL 2005 servers have appropriate security settings enabled
  • If a client is doing a port scan or quickly sending a large number of emails, quarantine their computer using NAP, block their outbound internet access through TMG, scan their email for viruses with FSE, and do a full virus scan with FCS

In updates past Beta 1, you can eventually expect even more capabilities and integration with other Forefront products.


More info and source here.


Eduardo Petizme
MVP Forefront Security
Site: http://petizme.com
Blogs: http://blog.petizme.com ( USA | BRA )

Leave a Reply

Your email address will not be published. Required fields are marked *