What is Microsoft Forefront? - 06 Dec 2006

Subscribe to Windows IT Pro: https://store.pentontech.com/index.cfm?s=1&promocode=eu205xxL




Reducing the Cost of IT Compliance

How to Build a Real Time Enterprise. Free White Paper!

==== Sponsor: Argent Software ====

NETWORK TESTING LABS COMPARES ARGENT TO MOM 2005 Network Testing Labs, one of the world's leading independent research companies, concluded that "Argent's suite had a smaller footprint, was more scalable, supported more platforms, had a more responsive and intuitive user interface and gave us more useful reports," the report says. "Argent's suite of monitoring products emerged from our testing with flying colors."

Download this FREE Comparison Paper now: http://www.argent.com/w/whitepapers_mom.html?Source=WNT


FAQs Q. What is Microsoft Forefront?
Q. What is the Windows Live Local add-in for Microsoft Office Outlook?
Q. What is Process Monitor? Q. Where can I download Windows PowerShell?
Q. How can I determine what a Windows PowerShell command will do?

==== Sponsor: Scalable Software ====

Reducing the Cost of IT Compliance The average enterprise spends nearly $10 million annually on IT compliance. Download this free whitepaper today to streamline the compliance lifecycle, and dramatically reduce your company's costs!


==== FAQs ==== by John Savill, FAQ Editor, [email protected]

Q. What is Microsoft Forefront? A. Microsoft Forefront is Microsoft's new line of business security products that protect against virus, worm, spam, and inappropriate content threats. The product line consists of: - Microsoft Forefront Client Security (formerly called Microsoft Client Protection) - Microsoft Forefront Security for Exchange Server (currently called Microsoft Antigen for Exchange) - Microsoft Forefront Security for SharePoint (currently called Antigen for SharePoint) - Microsoft Forefront Security for Office Communications Server (currently called Antigen for Instant Messaging) - Microsoft Internet Security and Acceleration (ISA) Server 2006

The Exchange and SharePoint solutions will be available at the end of 2006, with the other solutions being available in 2007. The idea is with all the solutions Microsoft can offer an end-to-end solution with the ISA product providing edge-service protection, the client security for the client, and the other solutions for the services in-between (Exchange, SharePoint, and Communications). The client security solution in particular will be integrated with Active Directory (AD) enabling easy deployment of the solution and its updates, which will include items such as antivirus update definition files all from a centralized console, the Forefront Client Security Management Console. You can find more information about Forefront at https://partner.microsoft.com/global/productssolutions/securityproducts/forefront . --------------------

Q. What is the Windows Live Local add-in for Microsoft Office Outlook?

A. The Windows Live Local Add-in for Outlook, available at http://outlook.local.live.com , adds the ability to have maps and directions in meeting requests, via a new Location tab. The add-in also can give directions based on your current location and the location of the meeting, as well as add travel time to the meeting. This functionality is available for Outlook 2007, 2003, and 2000. You can also save frequent start and end points with a friendly name for easy direction generation in the future.

You can right-click the map and set certain locations such as Home and Business, as the figure at http://www.windowsitpro.com/articles/images/outlook2007liveaddin.jpg shows, for even easier navigation.


Q. What is Process Monitor? A. One of the first new tools to be released since Microsoft's acquisition of SysInternals is Process Monitor, which combines the previous Regmon and Filemon tools' functionality, while adding improved filtering capabilities. You can download the tool from http://www.microsoft.com/technet/sysinternals/processesandthreads/processmonitor.mspx . However, those people used to Regmon's old filtering interface will need to adapt. For example, the old check boxes to log registry reads and writes has been replaced by a new logic-based interface, as the figure at http://www.windowsitpro.com/articles/images/procmonfilter.jpg shows.

The equivalent of just checking the "View registry writes" option is now an Operation rule to show whether the operation "is" a RegSetValue. Changing a filter updates the entire process history since the application has been running instead of just from that moment in time onward. Essentially, Process Monitor captures all information all the time, and the filter controls what's displayed to screen. Process Monitor stores information in the pagefile by default, or you can configure a separate storage file via the File, Backing Files toolbar option. Obviously the tool collects a lot of data, which takes up significant space. You can also set this store for events by using the /BackingFile switch.

You can save event logs in a native Process Monitor format or to a comma-separated value (CSV) format file that can include all the event captures, only those events that meet the current filter, or selected events. Events saved in the native Process Monitor format can be read back into the utility at a later time.


Q. Where can I download Windows PowerShell?

A. On November 15, Microsoft released Windows PowerShell 1.0 (formerly codenamed Monad) for Windows XP Service Pack 2 (SP2) and Windows Server 2003, which you can download at http://www.microsoft.com/windowsserver2003/technologies/management/powershell/download.mspx . A Windows Vista Release Candidate 1 (RC1) version is also available, with the final Vista version available by January 31, 2007. The download is less than 2MB but does require that Microsoft .NET Framework 2.0 is installed. Once PowerShell is installed, a new Programs group, Windows PowerShell 1.0, will be created, which has a number of shortcuts to documents and the actual Windows PowerShell application shortcut which points to the %SystemRoot%\system32\WindowsPowerShell\v1.0\powershell.exe image.

PowerShell is the future command-line and scripting environment for the management and automation of Windows environments, and many new Microsoft technologies have their management built on the PowerShell environment. For example, Microsoft Exchange Server 2007 relies heavily on the PowerShell environment for many management actions.

The base PowerShell also includes a number of command-line tools called cmdlets that allow access to many system resources such as accessing the registry, Windows Management Instrumentation (WMI), services, processes, event logs, and basically every part of the OS.

Common cmd.exe commands such as Dir and Type all work in the PowerShell, but its real power is via its improved cmdlets. To get started, it's easiest to type


which opens an overview of the format of the PowerShell syntax and commands to get started. For example, the get-command command will display a list of all the cmdlets, and the get-command will display detailed information on that cmdlet.

Some handy commands to get started are get-service and get-process, which give information about services and processes, respectively. The figure at http://www.windowsitpro.com/articles/images/powershellgetprocess.jpg shows a sample search for all processes that start with o:

In this example, the information is displayed in a table format, but you can easily output it to a list by passing format-list as it's output, as the figure at http://www.windowsitpro.com/articles/images/powershellgetprocesslist.jpg shows.

To get a list of all possible formats, type

get-help format*

at a command line.


Q. How can I determine what a Windows PowerShell command will do?

A. If you want to run a command in PowerShell but aren't sure what it will do, you can use "-whatif" at the end of the command. For example, if you want to execute the Get-Process command and pipe its output to the Stop-Process command, but you're not sure what it will actually do, you can append -whatif to the end of the command. Doing so shows the output of what would be done, but doesn't actually run the command, as the following example shows:

PS C:\Documents and Settings\Administrator> get-process | stop-process -whatif

What if: Performing operation "Stop-Process" on Target "alg (1872)". What if: Performing operation "Stop-Process" on Target "certsrv (1036)". What if: Performing operation "Stop-Process" on Target "csrss (660)". What if: Performing operation "Stop-Process" on Target "csrss (3028)". What if: Performing operation "Stop-Process" on Target "ctfmon (1880)". What if: Performing operation "Stop-Process" on Target "ctfmon (2612)". What if: Performing operation "Stop-Process" on Target "Dfsr (1864)". What if: Performing operation "Stop-Process" on Target "dfssvc (1164)". What if: Performing operation "Stop-Process" on Target "dmadmin (2096)". What if: Performing operation "Stop-Process" on Target "dns (1204)". What if: Performing operation "Stop-Process" on Target "explorer (216)". ..

This example shows that if you would run the command without the -whatif, it would stop all processes on the machine (a very fast shutdown). Alternatively, you can use the -confirm inplace of -whatif to be prompted before each action is performed, as this example shows:

PS C:\Documents and Settings\Administrator> get-process | stop-process -confirm

Confirm Are you sure you want to perform this action? Performing operation "Stop-Process" on Target "alg (1872)". \[Y\] Yes \[A\] Yes to All \[N\] No \[L\] No to All \[S\] Suspend \[?\] Help (default is "Y"): l


==== Hot Release ====

How to Build a Real Time Enterprise. Free White Paper! The vast majority of businesses have information scattered throughout the enterprise on paper, in siloed databases and in emails, making real-time operations difficult to achieve. Learn the benefits and explore the challenges mid-sized businesses face in their real-time enterprise efforts. http://findtechinfo.com/penton/nl/161

==== Events and Resources ==== http://www.windowsitpro.com/events

Are you who you say you are? Really? Even on Linux? Really? If you're like most IT professionals, this type of identity crisis is a plague. Virtual TechX World - available December 14- makes your life (and the lives of your users) easier by equipping you with the latest interoperability insights and technology. Slots are filling quickly - register today!

Are you an Oracle professional who has cross-platform responsibilities, or do you need to transfer your skill set to SQL Server? If so, register for free to attend the Cross Platform Data online event January 30 and 31 and February 1, 2007. In a seminar featuring SQL Server/Oracle, experts Andrew Sisson from Scalability Experts and Douglas McDowell from Solid Quality Learning, you'll learn key concepts about SQL Server 2005, including how to deploy SQL Server's BI capabilities on Oracle, proof points demonstrating that SQL Server is enterprise-ready, and how to successfully deploy Oracle on the Windows platform.

Your business, like most today, relies upon its computing systems to store financial information, house proprietary data, and maintain communications channels. This increasing reliance also increases the dangers to your systems from security breaches, including viruses, spyware, spam, and hackers. Visit the Windows Protection Site at http://www.windowsitpro.com/go/protection for the latest tips on safeguarding your system.

When your systems go down, your users' productivity grinds to a halt. User downtime is one of the fastest growing concerns among businesses. This free Web seminar teaches you how to keep your users continuously connected and your business up and running. View the on-demand web seminar now!

Learn all you need to know about code signing technology, including the goals and benefits of code signing, how code signing works and the underlying cryptographic and security concepts and building blocks.

==== Featured White Paper ====

Securing multiple domains or host names? Learn how the Starter PKI program can save time and reduce costs, and provide you with a multiple digital certificate account.
http://www.windowsitpro.com/go/whitepapers/thawte/pki?code=1206featwpBONUS: Register for any whitepaper from Windows IT Pro in the month of December, and be entered to win a Wii! Visit http://www.windowsitpro.com/whitepapers for more information and a complete whitepaper listing.

===== Announcements ====

Uncover Essential Windows Knowledge Through Excavator Try out the ultimate vertical search tool--Windows Excavator. Windows Excavator gives you fast, thorough third-party information while filtering out unwanted content. Visit http://www.winexcavator.com today!

Make Your Mark on the IT Community! Nominate yourself or a peer to become IT Pro of the Month. This is your chance to get the recognition you deserve and be acknowledged in the IT community. Winners will receive over $600 in IT resources and be featured in Windows IT Pro and the TechNet Flash email newsletter. Entering is easy--we're accepting December nominations now for a limited time! Submit your nomination today:


==== Contact Us ====

About the newsletter -- [email protected] About technical questions -- http://www.windowsitpro.com/forums About product news -- [email protected] About your subscription -- [email protected] About sponsoring UPDATE-- [email protected]


This email newsletter is brought to you by Windows IT Pro, the leading publication for IT professionals deploying Windows and related technologies. Subscribe today.

Make sure your copy of Windows Tips & Tricks UPDATE isn't mistakenly blocked by antispam software! Be sure to add [email protected] to your list of allowed senders and contacts.

Manage Your Account You are subscribed as %%$email%%

You are receiving this email message because you subscribed to this newsletter on our Web site. To unsubscribe, click the unsubscribe link:


View the Windows IT Pro Privacy policy at http://www.windowsitpro.com/AboutUs/Index.cfm?action=privacy

Windows IT Pro, a division of Penton Media, Inc. 221 East 29th Street, Loveland, CO 80538, Attention: Customer Service Department

Copyright 2006, Penton Media, Inc. All Rights Reserved.

Hide comments


  • Allowed HTML tags: <em> <strong> <blockquote> <br> <p>

Plain text

  • No HTML tags allowed.
  • Web page addresses and e-mail addresses turn into links automatically.
  • Lines and paragraphs break automatically.