Registry keys
Applies To: Forefront Client Security
This section lists the registry keys and values written by Client Security.
Important
Registry key data is provided for informational purposes only. It is strongly recommended that you do not change registry key values.
The following registry keys are associated with setup and configuration of the Client Security server.
The registry key and values are added to this key:
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Microsoft Forefront\Client Security\1.0
| Registry key | Values |
|---|---|
Config\ConfigurationSucceeded |
True (1) False (0) |
Config\InstallDir |
<folder path> |
Config\InstalledRoles |
None (0) Management server (1) Collection server (2) Distribution server (4) Reporting database (8) Example If the key value equals 3 (the binary value is 0x11), only the management server and collection server are installed. (Nothing else is installed.) |
Config\MOMDB\InstanceName |
<name> |
Config\MOMDB\LastConfigured |
<time last configured> |
Config\MOMDB\MachineName |
<name> |
Config\MOMDW\InstanceName |
<name> |
Config\MOMDW\MachineName |
<name> |
Config\MOMServer\GroupName |
<name> |
Config\MOMServer\MachineName |
<name> |
Config\SRS\MachineName |
<name> |
Config\SRS\ReportManagerRoot |
<name> |
Config\SRS\ReportManagerURL |
<URL> |
Config\SRS\ReportRoot |
<name> |
Config\SRS\ReportURL |
<URL> |
Config\SRS\UseHTTP |
True (1) False (0) |
The following table lists the registry keys that result from installing the Client Security agent on a client computer.
Several of the values are overwritten when a policy is deployed, settings are changed in the Client Security agent user interface (UI), or updates are deployed to the client. For a list of all the registry key values pushed to the client when a policy is deployed, see Policy settings and registry keys.
The registry key and values in the following table are added to this key:
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Microsoft Forefront\Client Security\1.0
| Registry key | Values |
|---|---|
AM\InstallLocation |
<folder path> |
AM\Exclusions\Extensions |
<text> |
AM\Exclusions\Paths |
<text> |
AM\Exclusions\Processes |
<text> |
AM\Quarantine |
<text> |
AM\Scan\ AutomaticallyCleanAfterScan |
Off (0) |
AM\Scan\ CheckforSignaturesBeforeRunningScan |
Off (0) |
AM\Signature Updates\EngineVersion |
<version number> |
AM\Signature Updates\AVSignatureVersion |
<version number> |
AM\Signature Updates\AVSignatureApplied |
<date/time> |
AM\Signature Updates\ASSignatureVersion |
<version number> |
AM\Signature Updates\ASSignatureApplied |
<date/time> |
AM\Signature Updates\SignatureLocation |
<folder path> |
AM\SpyNet\ SpyNetReporting |
Off (0) |
AM\SpyNet\ SpyNetReportingLocation |
<URL> |
SSA\CurrentLogSequence |
0 |
SSA\HoldResultsDays |
7 |
SSA\InstallDir |
<folder path> |
SSA\InstalledManifestVersion |
<version number> |
SSA\WorkingManifestVersion |
<version number> |
Registry values pushed down with policies are written to the HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Microsoft Forefront\Client Security\1.0 key. For information about the keys and values associated with policies, see Policy settings and registry keys.