Comments on: First impression of Microsoft Forefront Client Security

By: Brian

Brian — Tue, 29 Dec 2009 15:55:24 +0000

Take a look at Sophos
Very effective with very small footprint / impact on client

By: Mod

Mod — Thu, 29 Jan 2009 10:27:39 +0000

I’m currently looking at replacing the AV running on our network with one that can get the job done since TrendMicro Officescan has really failed out.We have countless viruses and trojan horses on the network that cannot be resolved and everytime look at the virus encyclopedia on Trend they always tell you download the latest virus definitions.Well I’m tired of this.I have recently considered testing and deploying McAfee VirusSacn Enterprise 8.7. I installed the epo management console on my virtual server that i use for testing and deployed the agent to a couple of test clients and it works fine,but the problem is pc performance after installing the software on the client pc. Maybe you guys can help with a problem that is simple to deploy and yet effective with little effect on pc performance.

Thnx

By: Ronald

Ronald — Wed, 23 Jan 2008 22:44:01 +0000

Anyone got this running with Citrix ? if I use it under citrix, all my sessions will eventually get in a down state and have to reboot my machine by power down and up.

By: Michael

Michael — Tue, 17 Jul 2007 17:47:20 +0000

I don’t think that this is about revenue. I think the problem is that Microsoft is so big meanwhile that they have difficulties to coordinate the different departments. One department is pushing 64 bit, the other one still counts on 32 bit.

By: Rob

Rob — Fri, 13 Jul 2007 19:49:29 +0000

I would like to add that the requirement that the database be homed on 32-bit MSSQL is the most backwards thing I can think of that they could have done in releasing this product. We have two existing 64-bit MSSQL boxes in production, so it wouldn’t have been a big deal to add the databases to them, but ‘NOOOO’ to use the product we also would have to purchase (yet another) SQL licenses so we can have a 32-bit version running for this product (only for this product). Seems like a revenue generating scheme to me. Let’s push everyone to 64-bit ’super performance’ databases, then release new software that requires the ‘old’ stuff.

I guess we too will be waiting for a new version.

By: Jeffrey

Jeffrey — Fri, 01 Jun 2007 01:31:38 +0000

I also saw the product at a TechNet Event. The number of dependencies on other pieces of infrastructure seemed like way too much overhead for AV software. I was considering a move to it until I saw all of the necessary pieces. I think I will just stick with my relatively simple, yet manageable AV software for now.

By: Michael

Michael — Thu, 31 May 2007 20:20:49 +0000

Thanks a lot for sharing your experiences with FSC. Based on your assessments I’ll probably postpone my evaluation of FSC until the next version comes out. As far I remember, we never used the first version of a Microsoft product. They somehow need the feedback of many customers before they are able to deliver a usable product.

By: Andy

Andy — Thu, 31 May 2007 01:21:04 +0000

I went to a pre launch event and couldn’t believe the stuff they were saying. It needs SQL Server – MSDE edition isn’t enough AND it is basically using Defender and OneCare for the “security” side of things – and we all know that isn’t reliable. When they said it couldn’t do network access prevention either I got the impression that they were throwing something out there in IT land, hoping some people would use it – this package has the potential to be great but unfortunately falls far short.
Having said that, I did like the Exchange Forefront product (Antigen) on exchange, although the interface was clunky it did a good job of cleaning up virus’s in a mailstore on a couple of servers.

By: Lukas Beeler

Lukas Beeler — Wed, 30 May 2007 22:02:34 +0000

I’ve installed and tried FSC Beta2 in a Test environment. It took quite some time, but i got it working in the end.

But the time investment was horrendous – it was painfully obvious that Microsoft only thought about enterprises when they designed this software – heck, it has MOM as a “requirement”.

In the end, the functionality and such isn’t that great – the good thing is that it is quite integrated with Active Directory, which is generally a good thing.

So far we’ve been using McAfee ProtectionPilot (basically a castrated ePolicy running against MSDE), and while i wouldn’t call it a well designed product, it does what it should without too many extra requirements.

I’d love to replace PP, but FSC seems to worse for smaller businesses.