Forefront Client Security SP1 fixes the following issues:

An exception is thrown when you deploy a Forefront Client Security (FCS) policy on Windows Server 2008
When you deploy an FCS policy to an organizational unit (OU), an exception is thrown, and the policy is not deployed.

When you deploy an FCS policy on Windows Server 2008 to the Users tab, an exception is thrown
The Browse dialog box for a Group Policy object (GPO) on Windows Server 2008 includes a Users tab. This tab does not exist in Windows Server 2003. If you deploy an FCS policy to a user or to a group, an exception is thrown.

FCS policies that are deployed to an existing GPO are tied to a specific domain controller (DC)
FCS policies that are deployed to an existing GPO are tied to a specific DC. If the DC is decommissioned, you cannot change or undeploy that policy.

HTH,

Tom

Thomas W Shinder, M.D., MCSE
Sr. Consultant / Technical Writer
Prowess Consulting www.prowessconsulting.com
PROWESS CONSULTING documentation | integration | virtualization
Email: tshinder@isaserver.org
MVP — Forefront Edge Security (ISA/TMG/IAG)