Share via

Removing an existing installation of Client Security

  • Article

Applies To: Forefront Client Security

Before you remove Client Security from the servers, it is recommended that you prepare your client computers for removing Client Security by undeploying the policies to those computers.

Removing Client Security from client computers

To remove Client Security from the client computers using the standard method, you should undeploy the policy for those computers. After the policy is undeployed, Client Security is no longer automatically updated on the client computer.

To remove Client Security from the client computer by undeploying a policy

  1. In the Client Security console, click the Policy Management tab, and then click the policy you want to undeploy.

  2. Click Undeploy. A confirmation message appears.

  3. Click Undeploy. Client Security undeploys the policy.

  4. If you deployed the policy to an OU and you want the policy to take effect immediately, you can run the gpupdate /force command on each client computer in the OU or restart each client computer. Otherwise, the policy is applied to client computers when the standard Group Policy refresh occurs.

  5. If you deployed the policy to a security group and you want the policy to take effect immediately, you can restart each client computer in the security group. The command gpupdate /force does not update policies for client computers in security groups. Otherwise, the policy is applied to client computers when the standard Group Policy refresh occurs.

  6. If you used registry file deployment for the policy, you must run fcslocalpolicytool.exe on each client computer that you distributed the policy to by using a registry file. At the command prompt, type the following:

    fcslocalpolicytool.exe /d

    For automated deployments, you can use the /f option to suppress the confirmation message.

After undeploying the policies, you can remove Client Security from the client computers by doing the following.

To manually remove Client Security from the client computer

  1. On the client computer, make sure that the Client Security agent is closed.

  2. In Control Panel, double-click Add/Remove Programs.

  3. In the Add/Remove Programs dialog box, remove the following programs:

    • Microsoft Forefront Client Security Antimalware Service

    • Microsoft Forefront Client Security State Assessment Service

    • Microsoft Operations Manager 2005 Agent

  4. Restart the client computer.

Removing Client Security from a single-server topology

You can use these steps to remove Client Security from a single-server topology.

To remove Client Security from a single-server topology

  1. On the server, in Control Panel, double-click Add/Remove Programs.

  2. In the Add/Remove Programs dialog box, remove the following programs:

    • Microsoft Forefront Client Security Management Server

    • Microsoft Forefront Client Security Collection Server

    • Microsoft Forefront Client Security Update Assistant

    • Microsoft Forefront Client Security Antimalware Service

    • Microsoft Forefront Client Security Data Warehouse Server

    • Microsoft Forefront Client Security State Assessment Service

    • Microsoft Operations Manager 2005

    • Microsoft Operations Manager 2005 Reporting

  3. Delete the OnePoint and SystemCenterReporting databases in SQL Server 2005:

    Important

    Consider making a full backup of the database. A deleted database can be re-created only by restoring a backup.

    1. Open SQL Server Management Studio.

    2. In Object Explorer, connect to an instance of the SQL Server 2005 Database Engine, and then expand that instance.

    3. Expand Databases, right-click the appropriate database, and then click Delete.

    4. Confirm the correct database is selected, and then click OK.

  4. Delete the Client Security DTS Microsoft Forefront Client Security job:

    1. Open SQL Server Management Studio.

    2. In Object Explorer, connect to an instance of the SQL Server 2005 Database Engine, and then expand that instance.

    3. Expand SQL Server Agent, expand Jobs, right-click Microsoft Forefront Client Security, and then click Delete.

    4. Confirm the correct job is selected, and then click OK.

  5. Delete the Client Security FCS - Update SystemCenterReporting Partition Function job:

    1. Open SQL Server Management Studio.

    2. In Object Explorer, connect to an instance of the SQL Server 2005 Database Engine, and then expand that instance.

    3. Expand SQL Server Agent, expand Jobs, right-click FCS - Update SystemCenterReporting Partition Function, and then click Delete.

    4. Confirm the correct job is selected, and then click OK.

  6. Delete the Client Security reporting server:

    1. In Internet Explorer, navigate to the MOM Reporting URL.

    2. Click Show Details.

    3. Select the Microsoft Forefront Client Security check box.

    4. Click Delete.

  7. Restart the server.

Removing Client Security from a multiple-server topology

To remove Client Security from a multiple-server topology, follow the appropriate steps for each server component. If you have a server with multiple components, make sure to follow the steps for removing each of the components.

To remove Client Security from the management server

  1. On the server, in Control Panel, double-click Add/Remove Programs.

  2. In the Add/Remove Programs dialog box, remove the following programs:

    • Microsoft Forefront Client Security Management Server

    • Microsoft Forefront Client Security Antimalware Service

    • Microsoft Forefront Client Security State Assessment Service

    • Microsoft Operations Manager 2005

  3. Restart the server.

To remove Client Security from the collection server

  1. On the server, in Control Panel, double-click Add/Remove Programs.

  2. In the Add/Remove Programs dialog box, remove Microsoft Forefront Client Security Collection Server.

  3. In the Add/Remove Programs dialog box, select Microsoft Operations Manager 2005, and then click Change.

  4. On the first page of the Microsoft Operations Manager Setup wizard, click Next.

  5. On the next page, click Modify, and then click Next.

  6. On the next page, do the following:

    • Click the icon next to the MOM 2005 Management Server, and then click This component will not be available.

    • Click the icon next to the MOM 2005 User Interfaces, and then click This component will not be available.

  7. Finish the wizard.

  8. Restart the server.

To remove Client Security from the collection database server

  1. On the server, in Control Panel, double-click Add/Remove Programs.

  2. In the Add/Remove Programs dialog box, remove Microsoft Operations Manager 2005.

  3. Delete the OnePoint database in SQL Server 2005:

    Important

    Consider making a full backup of the database. A deleted database can be re-created only by restoring a backup.

    1. Open SQL Server Management Studio.

    2. In Object Explorer, connect to an instance of the SQL Server 2005 Database Engine, and then expand that instance.

    3. Expand Databases, right-click the appropriate database, and then click Delete.

    4. Confirm the correct database is selected, and then click OK.

  4. Restart the server.

To remove Client Security from the reporting database server

  1. On the server, in Control Panel, double-click Add/Remove Programs.

  2. In the Add/Remove Programs dialog box, remove the following programs:

    • Microsoft Forefront Client Security Data Warehouse Server

    • Microsoft Operations Manager 2005 Reporting

  3. Delete the SystemCenterReporting database in SQL Server 2005:

    Important

    Consider making a full backup of the database. A deleted database can be re-created only by restoring a backup.

    1. Open SQL Server Management Studio.

    2. In Object Explorer, connect to an instance of the SQL Server 2005 Database Engine, and then expand that instance.

    3. Expand Databases, right-click the appropriate database, and then click Delete.

    4. Confirm the correct database is selected, and then click OK.

  4. Delete the Client Security DTS Microsoft Forefront Client Security job:

    1. Open SQL Server Management Studio.

    2. In Object Explorer, connect to an instance of the SQL Server 2005 Database Engine, and then expand that instance.

    3. Expand SQL Server Agent, expand Jobs, right-click Microsoft Forefront Client Security, and then click Delete.

    4. Confirm the correct job is selected, and then click OK.

  5. Delete the Client Security FCS - Update SystemCenterReporting Partition Function job:

    1. Open SQL Server Management Studio.

    2. In Object Explorer, connect to an instance of the SQL Server 2005 Database Engine, and then expand that instance.

    3. Expand SQL Server Agent, expand Jobs, right-click FCS - Update SystemCenterReporting Partition Function, and then click Delete.

    4. Confirm the correct job is selected, and then click OK.

  6. Delete the DTS job:

    1. In Control Panel, click Scheduled Tasks.

    2. Right-click SystemCenterDTSPackageTask, and then click Delete.

  7. Restart the server.

To remove Client Security from the distribution server

  1. On the server, in Control Panel, double-click Add/Remove Programs.

  2. In the Add/Remove Programs dialog box, remove Microsoft Forefront Client Security Update Assistant.

  3. Restart the server.

To remove Client Security from the reporting server

  1. In Internet Explorer, navigate to the MOM Reporting URL.

  2. Click Microsoft Operations Manager Reporting.

  3. Click Show Details.

  4. Select the Microsoft Forefront Client Security check box.

  5. Click Delete.