Validating Deployment

  • Article

Applies To: Forefront Endpoint Protection

You are able to see the status of the Forefront Endpoint Protection client software deployment from the Forefront Endpoint Protection dashboard in the Configuration Manager console. A report can be generated that shows the deployment status by collection. From this report, you have the ability to drill down to the deployment status of a specific collection, and then to a specific computer. Additionally, you can view the status of the advertisement in Configuration Manager.

Monitoring the client software deployment from the Forefront Endpoint Protection dashboard

  1. Open the Configuration Manager console, expand Computer Management, and select the Forefront Endpoint Protection node.

  2. The following information is available in the Client Deployment Status section:

    1. Removed—The number of computers on which the FEP client software was previously deployed and has since been manually removed.

    2. Failed—The number of computers on which the FEP client software deployment failed.

    3. Pending—The number of computers on which the FEP client software deployment has not yet started. Computers that are not connected show as pending until the Configuration Manager advertisement is received.

    4. Out of date—The number of computers running a previous version of the FEP client software.

    5. Deployed—The number of computers where the FEP client software was successfully installed.

    Clicking the numbers next to each item brings you to the associated Forefront Endpoint Protection collection.

Monitoring the client software deployment with Forefront Endpoint Protection reporting

  1. Open the Configuration Manager console, expand Computer Management, and select the Forefront Endpoint Protection node.

  2. In the Links and Resources pane, under Web Reports, click Deployment Overview to generate the Deployment Overview report.

    • The Deployment Overview report breaks down the status of the client software deployment by collection.

    • To drill down to the Deployment for a specific collection report, click the arrow next to the collection.

Validating the client software deployment

  • To validate that the Forefront Endpoint Protection client software successfully installed on a computer, click Start, click Control Panel, click Programs, click Programs and Features, and then verify that Microsoft Forefront Endpoint Protection 2010 is listed.

The following table lists installation log files. By default, log files are installed in the following locations:

  • Windows 7, Windows Server 2008, and Windows Server 2008 R2 - %ProgramData%\Microsoft\Microsoft Security Client\Support

  • Windows XP, Windows Vista, and Windows Server 2003 - %allusersprofile%\Microsoft\Microsoft Security Client\Support

Log file name Description

EppSetup.log

Master setup log file.

MSSecurityClient_Setup_epp_install.log

User interface and management extension setup log file.

MSSecurityClient_Setup_FEP_install.log

Configuration Manager management extensions setup log file.

MSSecurityClient_Setup_mp_ambits_install.log

Antimalware service setup log file.

MSSecurityClient_Setup_epploc_x86_Install or MSSecurityClient_Setup_epploc_x64_Install

Localized resources installation log file (specific to the architecture on the client computer).

MSSecurityClient_Setup_amloc-%locale%_install

Log file for installation of localized resources for the antimalware service. %locale% represents the locale for which the install was performed.

MSSecurityClient_Setup_KB981889_Install.evtx

The log file for Windows patch installation KB981889. Only present on Windows 7 or Windows Server 2008 R2.

MSSecurityClient_Setup_dw20shared_Install.log

Log file for installation of Dr. Watson (only installed on computers running Windows XP and only if not already present).