SCCM Endpoint Protection Management Guide

Jonathan LefebvreSCCM, SCEP9 Comments

SCCM Endpoint Protection is not the simplest SCCM tasks to put in place. Over the years, we trained many SCCM administrator using a simple approach and deployment strategy. We created this complete SCCM Endpoint Protection Guide based on our knowledge and experience.

This guide is a best-practice guide on how to plan, configure, manage and deploy Endpoint Protection with SCCM. This guide aims to help SCCM administrator understand the basic concept of each part of the Endpoint Protection management.

Many Endpoint Protection settings require customization based on your environment, this document describe a typical case that can be used in any organization as a good starting point for an efficient malware protection.

The guide will help you achieve theses tasks:

  • Install Endpoint Protection point role
  • Configure Software Update point to support Endpoint Protection
  • Configure automatic deployment rules for Definition Updates
  • Configure Endpoint Protection Agent policies
  • Deploy the Endpoint Protection Agent
  • Manage Endpoint Protection clients

This guide does not explain how to setup your Software Update Point.

This guide does not cover Windows Defender Advanced threat

Download and own this SCCM Endpoint Protection Management Guide in a single PDF file.

The PDF file is a 67 pages document that contains all information to manage endpoint protection with SCCM. Use our products page or use the button below to download it.

SCCM Endpoint Protection Guide Document screenshots

SCCM Endpoint Protection Guide SCCM Endpoint Protection Guide SCCM Endpoint Protection Guide

SCCM Endpoint Protection Management Guide
5 - 1 vote

Contributor of System Center Dudes. Based in Montreal, Canada, Senior Microsoft SCCM consultant, working in the industry for more than 10 years. He developed a strong knowledge of SCCM and MDT to build automated OS deployment solution for clients, managed large and complexe environment, including Point of Sale (POS) related projects.

9 Comments on “SCCM Endpoint Protection Management Guide”

    1. Hi Adam,

      yes this guide is still accurate for SCCM CB 1706.

      These task haven’t changed:
      Install Endpoint Protection point role
      Configure Software Update point to support Endpoint Protection
      Configure automatic deployment rules for Definition Updates
      Configure Endpoint Protection Agent policies
      Deploy the Endpoint Protection Agent
      Manage Endpoint Protection clients

      Jonathan

  1. Hi,

    I have a quick question. On page 20, “A new Software Update Package should be used for SCEP”, the screenshot shows a UNC path to package source. Do we create a new share or does this point to something that should already exist?

    Thank you,
    Mark

    1. Hi Mark,

      If you have a UNC path for different sources for SCCM (driver, OS, package, Software update) you can use that share.

      Having a specific (and new) folder to store SCEP definition updates is the way to do it.

      Hope this answer your question
      Jonathan

  2. I bought another report and have yet to receive it yet. I want to buy more of these reports but I don’t know if you guys are even in business or what’s happening. You definitely processed my card but no product.

  3. Pingback: New Endpoint Protection Dashboard and Reports Available |

  4. Pingback: List of SCCM Endpoint Protection Agent Versions |

  5. Pingback: SCCM Endpoint Protection Management Guide |

Leave a Reply

Your email address will not be published. Required fields are marked *