Microsoft System Center Endpoint Protection Client Overview for Windows
...
Summary
The Microsoft System Center Endpoint Protection (SCEP) is is the current recommended Antivirus/Malware recommended antivirus and malware protection application for university-owned computers. This application allows for It supports both Managed and Non-Managed client, below is an overview of the clients for Windows.The System Center Endpoint Protection for Windows has four main tabs. The tabs are Home, Update, History, and Settings. Depending on whether you are running the clients, allowing for flexible configuration options. This overview provides a detailed look at the SCEP client for Windows, which includes four main tabs: Home, Update, History, and Settings. Depending on the client type (Managed or Non-Managed client some ), certain settings may be different.
Note: Manged client has predefined settings and only allows some settings to be defined by the user. If the setting is greyed out then this means the setting can not be changed by the user. Non-Managed client allows you to make changes to to all of the settings.
Microsoft System Center Endpoint Protection (SCEP) Home Tab for Managed Client
Allows you to choose to run a Quick, Full, or Custom scan.
...
restricted or fully customizable.
Detailed Overview
Home Tab
The Home tab offers options to initiate various types of scans to protect your system:
Quick Scan: Checks areas most likely to be affected by malicious software, including viruses, spyware, and unwanted
software are most likely to affectFull scan – checksprograms.
Full Scan: Thoroughly scans all files on
yourthe hard disk and
checks allrunning programs
. Depending on on your system this scan, which may take more
then one hourthan an hour depending on the system.
Custom
scan – checks only theScan: Allows you to select specific locations and files
that you selectto scan.Shows
The Home tab also displays the following
...
information:
Real-time Protection Status: Indicates whether real-time protection
is On or OffIf the Virus and spyware definitions are Up to date
Microsoft System Center Endpoint Protection (SCEP) Update Tab for Managed Client
Allows you manually update definitions
Shows the following:
Definitions created on: Date and Time
Definitions last updated: Date and Time
Virus definitions version: Version Number
Spyware definition version: Version Number
Microsoft System Center Endpoint Protection (SCEP) History Tab for Managed Client
Allows you to view the following Items
Quarantined Items – Items that have been deemed as malicious software, virusis on or off.
Virus and Spyware Definitions Status: Confirms if the definitions are up-to-date.
Update Tab
The Update tab provides options to manually update virus and spyware definitions and displays the following details:
Definitions Created On: The date and time when the definitions were created.
Definitions Last Updated: The date and time of the last update.
Virus Definitions Version: Displays the current version number.
Spyware Definition Version: Displays the current version number.
History Tab
The History tab allows you to review items detected by the system, categorized into:
Quarantined Items: Files identified as malicious software, viruses, or spyware.
Allowed Items
– Items that you chosen: Files you have designated as acceptable
files.
All
detected items – Items that wereDetected Items: A comprehensive list of all items detected on your computer.
View Details
– Shows: Click this option to access more information about
the items that have beenquarantined and allowed
items. You will need to click on this to view any of theitems.
...
Settings Tab
...
Allows you to set the below items.
Scheduled Scan– Sets the time when a scan should be ran on the computer.
...
The Settings tab allows configuration of various protection settings. Key options include:
Scheduled Scan: Schedule scans at specific times.
Scan Type: Choose between Quick, Full, or Customer scan be chosenCustom scans.
When – Choose : Select the day for the scan will run.
Around – Time : Specify the time for the scan runs.
Daily quick scan time around: – Allows you to set a time to run a quick scan during the dayQuick Scan Time Around: Set a time for daily quick scans.
Check for the latest virus and spyware Latest Definitions: Update definitions before running a scheduled scan – This option sets the ability to run a definitions update before running a scan.
Start the scheduled scan only when my PC is on but not in use – Setting for the scan to only run while your computer is on. If the computer is in hibernation or sleep mode the scan will not run.
Limit CPU usage during scan to – The sets the limit for the amount or percentage of Central Processing Unit used to run the scan.
Run When PC is Idle: Scans will only run if the computer is on and not in use.
Limit CPU Usage: Set a limit on CPU usage during scans.
Default Actions: Define actions for detected threats based on alert levels:
Severe, High, Medium,
Low: Configure actions to Remove, Quarantine, or Allow
based on the threat
level.
Advanced
Scan archive files – Allows archive files to be included during the scan.
Scan removable drives – Allows removable drives such as (usb or external HDD) to be scanned.
Create a System Restore point – This option creates a restore point that can be used by SCEP to return to in case the items deleted or removed from the system cause an issue.
Allow all users to view the full History Results – Allows all the users of the computer to see the history results for that computer (Not Recommended to set thisExcluded files and locations – Allows a user to set certain file types and locations where the files are stored to be excluded from the scan. Some file types are already preset if you are using the managed client.
Excluded file types – Allows you set the specific file types that you would like to be excluded in the scan.
Excluded processes – Allows you to set the specific process to exclude from the scan.
Time Protection: Enable or disable real-time protection with additional options:
Scan Downloads
Monitor File and Program Activity
Enable Behavior Monitoring
Enable Network Inspection System
Exclusions: Customize file and location exclusions:
Excluded Files and Locations: Specify files and directories to exclude from scans.
Excluded File Types: Designate specific file types to exclude.
Excluded Processes: Define processes to exclude from scanning.
Advanced Settings:
Scan Archive Files: Include archive files in scans.
Scan Removable Drives: Include USB and external drives in scans.
Create a System Restore Point: Automatically create a restore point before taking action on detected threats.
Allow Full History Access: Permit all users to view complete history results (not recommended).
Microsoft Active Protection Service (MAPS) – This setting allows you to control what information is sent to Microsoft about the current potentially unwanted software, malware, and viruses. The recommend setting is Basic membership and is the default setting for Managed client users: Configure information sharing with Microsoft:
Basic Membership: Recommended default setting for Managed clients.
Real-time protection – This setting allows the user to turn on real time protection meaning the SCEP will run and protect the computer while in use. This will allow you check the options to scan downloads, monitor file and program activity, enable behavior monitoring, and enable Network Inspection System.
Conclusion
The Microsoft System Center Endpoint Protection client for Windows provides comprehensive security features and customization options for university-owned computers. With its range of scanning capabilities, real-time protection, and detailed reporting, SCEP ensures your system is well-protected against malware and other threats.
Contact Information
If you encounter any issues or need further assistance, please contact the Technical Service Desk by submitting a ticket at help.fscj.edu.