Versions Compared

Old Version 2

changes.mady.by.user Lacrecia Underwood

Saved on

compared with

New Version Current

changes.mady.by.user Aeoleon Bryant

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

Microsoft System Center Endpoint Protection Client Overview for Windows

...

Summary

The Microsoft System Center Endpoint Protection (SCEP)  is is the current recommended Antivirus/Malware recommended antivirus and malware protection application for university-owned computers. This application allows for It supports both Managed and Non-Managed client, below is an overview of the clients for Windows.The System Center Endpoint Protection for Windows has four main tabs.  The tabs are HomeUpdateHistory, and Settings.  Depending on whether you are running the clients, allowing for flexible configuration options. This overview provides a detailed look at the SCEP client for Windows, which includes four main tabs: Home, Update, History, and Settings. Depending on the client type (Managed or Non-Managed client some ), certain settings may be different.

Note: Manged client has predefined settings and only allows some settings to be defined by the user. If the setting is greyed out then this means the setting can not be changed by the user. Non-Managed client allows you to make changes to to all of the settings.

Microsoft System Center Endpoint Protection (SCEP) Home Tab for Managed Client

Allows you to choose to run a QuickFull, or Custom scan.

...

restricted or fully customizable.

Detailed Overview

Home Tab

The Home tab offers options to initiate various types of scans to protect your system:

  • Quick Scan: Checks areas most likely to be affected by malicious software, including viruses, spyware, and unwanted

    software are most likely to affectFull scan –  checks

    programs.

  • Full Scan: Thoroughly scans all files on

    your

    the hard disk and

    checks all

    running programs

    .  Depending on on your system this scan

    , which may take more

    then one hour

    than an hour depending on the system.

  • Custom

    scan – checks only the

    Scan: Allows you to select specific locations and files

    that you select

    to scan.Shows

The Home tab also displays the following

...

information:

  • Real-time Protection Status: Indicates whether real-time protection

     is On or Off

  • If the Virus and spyware definitions are Up to date

Microsoft System Center Endpoint Protection (SCEP) Update Tab for Managed Client

  • Allows you manually update definitions

  • Shows the following:

    • Definitions created on:  Date and Time

    • Definitions last updated:  Date and Time

    • Virus definitions version:  Version Number

    • Spyware definition version:  Version Number

Microsoft System Center Endpoint Protection (SCEP) History Tab for Managed Client

  • Allows you to view the following Items

    Quarantined Items – Items that have been deemed as malicious software, virus

    is on or off.

  • Virus and Spyware Definitions Status: Confirms if the definitions are up-to-date.

Update Tab

The Update tab provides options to manually update virus and spyware definitions and displays the following details:

  • Definitions Created On: The date and time when the definitions were created.

  • Definitions Last Updated: The date and time of the last update.

  • Virus Definitions Version: Displays the current version number.

  • Spyware Definition Version: Displays the current version number.

History Tab

The History tab allows you to review items detected by the system, categorized into:

  • Quarantined Items: Files identified as malicious software, viruses, or spyware.

  • Allowed Items

     – Items that you chosen

    : Files you have designated as acceptable

    files

    .

  • All

    detected items – Items that were

    Detected Items: A comprehensive list of all items detected on your computer.

  • View Details

     – Shows

    : Click this option to access more information about

    the items that have been

    quarantined and allowed

    items.  You will need to click on this to view any of the

    items.

...

Settings Tab

...

Allows you to set the below items.

Scheduled Scan– Sets the time when a scan should be ran on the computer.

...

The Settings tab allows configuration of various protection settings. Key options include:

  • Scheduled Scan: Schedule scans at specific times.

    • Scan Type: Choose between Quick, Full, or Customer scan be chosenCustom scans.

    • When – Choose : Select the day for the scan will run.

    • Around – Time : Specify the time for the scan runs.

    • Daily quick scan time around: – Allows you to set a time to run a quick scan during the dayQuick Scan Time Around: Set a time for daily quick scans.

    • Check for the latest virus and spyware Latest Definitions: Update definitions before running a scheduled scan – This option sets the ability to run a definitions update before running a scan.

    • Start the scheduled scan only when my PC is on but not in use – Setting for the scan to only run while your computer is on.  If the computer is in hibernation or sleep mode the scan will not run.

    • Limit CPU usage during scan to – The sets the limit for the amount or percentage of Central Processing Unit used to run the scan.

    Default actions – Allows you to set a default action to take when System Center Endpoint Protection finds a potential or known threat based on alert level. There are four threat levels,

    • Run When PC is Idle: Scans will only run if the computer is on and not in use.

    • Limit CPU Usage: Set a limit on CPU usage during scans.

  • Default Actions: Define actions for detected threats based on alert levels:

    • Severe, High, Medium,

    and Low.  You are able to set whether SCEP will Remove, Quarratine

    • Low: Configure actions to Remove, Quarantine, or Allow

    a

    • based on the threat

    for the

    • level.

  • Advanced

  • Scan archive files – Allows archive files to be included during the scan.

  • Scan removable drives – Allows removable drives such as (usb or external HDD) to be scanned.

  • Create a System Restore point – This option creates a restore point that can be used by SCEP to return to in case the items deleted or removed from the system cause an issue.

    • Allow all users to view the full History Results – Allows all the users of the computer to see the history results for that computer (Not Recommended to set this

    Real-time protection – This setting allows the user to turn on real time protection meaning the SCEP will run and protect the computer while in use.  This will allow you check the options to scan downloads, monitor file and program activity, enable behavior monitoring, and enable Network Inspection System.

  • Excluded files and locations – Allows a user to set certain file types and locations where the files are stored to be excluded from the scan. Some file types are already preset if you are using the managed client.

  • Excluded file types – Allows you set the specific file types that you would like to be excluded in the scan.

  • Excluded processes – Allows you to set the specific process to exclude from the scan.

  • Time Protection: Enable or disable real-time protection with additional options:

    • Scan Downloads

    • Monitor File and Program Activity

    • Enable Behavior Monitoring

    • Enable Network Inspection System

  • Exclusions: Customize file and location exclusions:

    • Excluded Files and Locations: Specify files and directories to exclude from scans.

    • Excluded File Types: Designate specific file types to exclude.

    • Excluded Processes: Define processes to exclude from scanning.

  • Advanced Settings:

    • Scan Archive Files: Include archive files in scans.

    • Scan Removable Drives: Include USB and external drives in scans.

    • Create a System Restore Point: Automatically create a restore point before taking action on detected threats.

    • Allow Full History Access: Permit all users to view complete history results (not recommended).

  • Microsoft Active Protection Service   (MAPS) – This setting allows you to control what information is sent to Microsoft about the current potentially unwanted software, malware, and viruses.  The recommend setting is Basic membership and is the default setting for Managed client users: Configure information sharing with Microsoft:

    • Basic Membership: Recommended default setting for Managed clients.

Conclusion

The Microsoft System Center Endpoint Protection client for Windows provides comprehensive security features and customization options for university-owned computers. With its range of scanning capabilities, real-time protection, and detailed reporting, SCEP ensures your system is well-protected against malware and other threats.

Contact Information

If you encounter any issues or need further assistance, please contact the Technical Service Desk by submitting a ticket at help.fscj.edu.