Microsoft System Center Endpoint Protection Cookbook Second Edition by Second Edition
Author:Second Edition
Language: eng
Format: mobi
Publisher: Packt Publishing
Consider configuring All Management Points for HTTPS encrypted communication. Now, this is something I have not addressed particularly because you want to consider this thoroughly. This requires quite a lot of planning and thoughts regarding PKI certificates and so on.
Note
You can read more about the requirements in this Microsoft Technet link: https://technet.microsoft.com/en-us/library/gg699362.aspx
But why do we need encrypted communication between our clients and server infrastructure? All communication floating over the Internet today should be secured with certificate encryption. You will see this more and more in the future, but today we see it for the most part on VPNs, email, bank accounts, and websites where we need to type our login and password. So basically, it means that all communication running over port 80 HTTP is wide open for hackers and thieves to steel whatever information they could use.
The Configuration Manager client that System Center Endpoint Protection uses are mentioned in previous chapters, for deployment, policy configuration, compliance, health check, update and status reporting. All this communication will flow unencrypted on port 80 HTTP if not configured for HTTPS. Now, this is alright when the client is on LAN which is usually secured well with Firewalls and often intrusion detection. When the client computer travels home or on the Internet there is no longer any communication with the System Center Configuration Manager infrastructure. So there is basically no risk there, and this is the most common configuration in my experience. But some choose the configuration with setting up HTTPS, also called Internet-Based Client Management (IBCM).
Download
This site does not store any files on its server. We only index and link to content provided by other sites. Please contact the content providers to delete copyright contents if any and email us, we'll remove relevant links or contents immediately.
Sass and Compass in Action by Wynn Netherland Nathan Weizenbaum Chris Eppstein Brandon Mathis(7915)
Grails in Action by Glen Smith Peter Ledbrook(7882)
Configuring Windows Server Hybrid Advanced Services Exam Ref AZ-801 by Chris Gill(7210)
Azure Containers Explained by Wesley Haakman & Richard Hooper(7209)
Running Windows Containers on AWS by Marcio Morales(6745)
Kotlin in Action by Dmitry Jemerov(5299)
Microsoft 365 Identity and Services Exam Guide MS-100 by Aaron Guilmette(5272)
Microsoft Cybersecurity Architect Exam Ref SC-100 by Dwayne Natwick(4983)
Combating Crime on the Dark Web by Nearchos Nearchou(4856)
The Ruby Workshop by Akshat Paul Peter Philips Dániel Szabó and Cheyne Wallace(4543)
Management Strategies for the Cloud Revolution: How Cloud Computing Is Transforming Business and Why You Can't Afford to Be Left Behind by Charles Babcock(4494)
The Age of Surveillance Capitalism by Shoshana Zuboff(4116)
Python for Security and Networking - Third Edition by José Manuel Ortega(4101)
Learn Wireshark by Lisa Bock(3907)
The Ultimate Docker Container Book by Schenker Gabriel N.;(3762)
Learn Windows PowerShell in a Month of Lunches by Don Jones(3573)
DevSecOps in Practice with VMware Tanzu by Parth Pandit & Robert Hardt(3430)
Blockchain Basics by Daniel Drescher(3429)
Mastering Azure Security by Mustafa Toroman and Tom Janetscheck(3426)
