Export (0) Print
Expand All

Registry keys

Published: December 16, 2009

Applies To: Forefront Client Security

This section lists the registry keys and values written by Client Security.

ImportantImportant:
Registry key data is provided for informational purposes only. It is strongly recommended that you do not change registry key values.

Client Security setup and configuration registry keys

The following registry keys are associated with setup and configuration of the Client Security server.

The registry key and values are added to this key:

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Microsoft Forefront\Client Security\1.0

 

Registry key Values

Config\ConfigurationSucceeded

True (1)

False (0)

Config\InstallDir

<folder path>

Config\InstalledRoles

None (0)

Management server (1)

Collection server (2)

Distribution server (4)

Reporting database (8)

Example   If the key value equals 3 (the binary value is 0x11), only the management server and collection server are installed. (Nothing else is installed.)

Config\MOMDB\InstanceName

<name>

Config\MOMDB\LastConfigured

<time last configured>

Config\MOMDB\MachineName

<name>

Config\MOMDW\InstanceName

<name>

Config\MOMDW\MachineName

<name>

Config\MOMServer\GroupName

<name>

Config\MOMServer\MachineName

<name>

Config\SRS\MachineName

<name>

Config\SRS\ReportManagerRoot

<name>

Config\SRS\ReportManagerURL

<URL>

Config\SRS\ReportRoot

<name>

Config\SRS\ReportURL

<URL>

Config\SRS\UseHTTP

True (1)

False (0)

Default Client Security agent settings

The following table lists the registry keys that result from installing the Client Security agent on a client computer.

Several of the values are overwritten when a policy is deployed, settings are changed in the Client Security agent user interface (UI), or updates are deployed to the client. For a list of all the registry key values pushed to the client when a policy is deployed, see Policy settings and registry keys.

The registry key and values in the following table are added to this key:

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Microsoft Forefront\Client Security\1.0

 

Registry key Values

AM\InstallLocation

<folder path>

AM\Exclusions\Extensions

<text>

AM\Exclusions\Paths

<text>

AM\Exclusions\Processes

<text>

AM\Quarantine

<text>

AM\Scan\

AutomaticallyCleanAfterScan

Off (0)

AM\Scan\

CheckforSignaturesBeforeRunningScan

Off (0)

AM\Signature Updates\EngineVersion

<version number>

AM\Signature Updates\AVSignatureVersion

<version number>

AM\Signature Updates\AVSignatureApplied

<date/time>

AM\Signature Updates\ASSignatureVersion

<version number>

AM\Signature Updates\ASSignatureApplied

<date/time>

AM\Signature Updates\SignatureLocation

<folder path>

AM\SpyNet\

SpyNetReporting

Off (0)

AM\SpyNet\

SpyNetReportingLocation

<URL>

SSA\CurrentLogSequence

0

SSA\HoldResultsDays

7

SSA\InstallDir

<folder path>

SSA\InstalledManifestVersion

<version number>

SSA\WorkingManifestVersion

<version number>

Policy-created registry keys

Registry values pushed down with policies are written to the HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Microsoft Forefront\Client Security\1.0 key. For information about the keys and values associated with policies, see Policy settings and registry keys.

Was this page helpful?
(1500 characters remaining)
Thank you for your feedback
Show:
© 2014 Microsoft