Deploying manually to each client computer

  • Article

Applies To: Forefront Client Security

If you are using WSUS as your distribution server, any computer with a Client Security policy deployed to it will automatically receive the client components for Client Security from the distribution server. Otherwise, you may manually deploy Client Security to client computers. Before doing so, you must verify that the computer meets the hardware and software requirements. In some cases, you might need to deploy computer updates before deploying Client Security.

Note

If you choose to manually deploy Client Security to client computers but do not deploy a Client Security policy to those same computers, any malware that is detected on those computers will not be cleaned automatically unless a user is logged on.

Deploying Client Security

The client components of Client Security consist of a Client Security agent and a MOM agent. The Client Security agent scans for vulnerabilities and malware. The MOM agent collects the data, which is then used to generate reports for Client Security. To deploy both agents, use the following procedure.

To directly deploy the Client Security components

  1. Log on to the client computer by using local administrator permissions.

  2. Insert the Client Security CD.

  3. Open the Command Prompt window.

  4. Do one of the following:

    • To install Client Security on a client computer running a 32-bit version of Windows, type cd drive\Client.

    • To install Client Security on a client computer running a 64-bit version of Windows, type cd drive \Client\x64.

  5. Press ENTER and run ClientSetup with the following parameters:

    • /I InstallationFolder in which InstallationFolder is the location in which you want to install Client Security. This parameter is optional. The default installation folder is at the following location:
      %Program Files\Microsoft Forefront\Client Security\client

    • /L LoggingFolder in which LoggingFolder is the location in which you want Client Security to log issues encountered during the installation. This parameter is optional. The default logging folder is at the following location:
      %Program Files\Microsoft Forefront\Client Security\client\logs

    • /NOMOM in which the /NOMOM flag installs everything except the MOM agent. If you use the /NOMOM flag, do not use the /CG and /MS flags.

    • /CG ManagementGroup in which ManagementGroup is the name of the management group. If you do not specify the management group, the name will be retrieved automatically from the Client Security policy deployed to the client computer. This parameter must be used with the /MS parameter.

    • /MS CollectionServer in which CollectionServer is the name of the collection server. If you do not specify the collection server, the name will be retrieved automatically from the Client Security policy deployed to the client computer. This parameter must be used with the /CG parameter.

    • /R reinstalls the Client Security agent and the MOM agent. This parameter first verifies that the existing version is older than or equal to the currently installed version, then triggers a reinstall.

  6. Press ENTER.

  7. When the tool finishes running, close the Command Prompt window.