I know in a "past life" that's what they did for McAfee. It just ended up making life easier...
Michael Dzikowski Senior Systems Engineer | Ally Technical Infrastructure - Windows Hosting [cid:image002.gif@01CDF887.776259A0] From: listsad...@lists.myitforum.com [mailto:listsad...@lists.myitforum.com] On Behalf Of Wood, Sandy Sent: Wednesday, January 22, 2014 12:55 PM To: mssms@lists.myitforum.com Subject: [mssms] RE: What is everyone doing for Antimalware Polices for servers? That's how we're doing it now. We query for server location in AD and then apply policies to those collections. Like John, we've been banging our heads on the wall trying to 'customize' polices for servers. We easily apply the Domain Controller policy to DCs but then we really should add the DNS and DCHP stuff too. Oh and don't forget any SQL stuff in case there's a SQL Express DB. Having one big policy does seem to be an easier option then trying to customize 8-10 ones. From: listsad...@lists.myitforum.com<mailto:listsad...@lists.myitforum.com> [mailto:listsad...@lists.myitforum.com] On Behalf Of Dzikowski, Michael Sent: Wednesday, January 22, 2014 9:48 AM To: mssms@lists.myitforum.com<mailto:mssms@lists.myitforum.com> Subject: [mssms] RE: What is everyone doing for Antimalware Polices for servers? You could have query based collections and End Point policies applied to them as applicable. Domain Controllers get Domain Controller policies Exchange Servers get Exchange Server policies Base Server policy all servers get. That's how I've done it in the past. Michael Dzikowski Senior Systems Engineer | Ally Technical Infrastructure - Windows Hosting [cid:image002.gif@01CDF887.776259A0] From: listsad...@lists.myitforum.com<mailto:listsad...@lists.myitforum.com> [mailto:listsad...@lists.myitforum.com] On Behalf Of Marcum, John Sent: Wednesday, January 22, 2014 12:34 PM To: mssms@lists.myitforum.com<mailto:mssms@lists.myitforum.com> Subject: [mssms] RE: What is everyone doing for Antimalware Polices for servers? After beating my head against the wall trying to figure that out I just applied them all to the same collection. Not the best way I'm sure but I couldn't see any other reasonable solution. ________________________________ John Marcum Sr. Desktop Architect Bradley Arant Boult Cummings LLP ________________________________ From: listsad...@lists.myitforum.com<mailto:listsad...@lists.myitforum.com> [mailto:listsad...@lists.myitforum.com] On Behalf Of Wood, Sandy Sent: Wednesday, January 22, 2014 10:45 AM To: mssms@lists.myitforum.com<mailto:mssms@lists.myitforum.com> Subject: [mssms] What is everyone doing for Antimalware Polices for servers? We've been looking over our Endpoint Protection polices for our servers and wonder how everyone else handles things. We currently have about 10 separate server policies for most of the basic server roles, SCCM, SCOM, Exchange, SQL, etc. which we deploy to collections tied to OUs in AD. I've been wondering what would be the downside to combining all the server policies into one big policy. Does anyone do this? Sandy Wood Network Engineer Orange County District Attorney (714) 347-8775 ________________________________ CONFIDENTIALITY NOTICE: This communication with its contents may contain confidential and/or legally privileged information. It is solely for the use of the intended recipient(s). Unauthorized interception, review, use or disclosure is prohibited and may violate applicable laws including the Electronic Communications Privacy Act. If you are not the intended recipient, please contact the sender and destroy all copies of the communication. ________________________________ Confidentiality Notice: This e-mail is from a law firm and may be protected by the attorney-client or work product privileges. If you have received this message in error, please notify the sender by replying to this e-mail and then delete it from your computer. ________________________________ Confidentiality Notice: This e-mail is from a law firm and may be protected by the attorney-client or work product privileges. If you have received this message in error, please notify the sender by replying to this e-mail and then delete it from your computer. ________________________________ CONFIDENTIALITY NOTICE: This communication with its contents may contain confidential and/or legally privileged information. It is solely for the use of the intended recipient(s). Unauthorized interception, review, use or disclosure is prohibited and may violate applicable laws including the Electronic Communications Privacy Act. If you are not the intended recipient, please contact the sender and destroy all copies of the communication.
<<inline: image001.png>>