The IT Compliance Management Guide is a Microsoft Operations Framework (MOF) 4.0 companion guide that is based on the Regulatory Compliance Planning Guide. It addresses GRC authority document requirements.

The IT Compliance Management Resources workbook provides an extensive inventory of GRC–related configuration and management guidance organized by Microsoft products.

“This guide contains the information that will enable IT professionals to have an informed discussion with their GRC subject matter experts, including legal and audit personnel. The overview of the audit process and descriptions of general GRC terminology and control concepts will allow IT professionals to be an active participant in these discussions. The associated workbook provides a comprehensive list of Microsoft resources that address GRC planning and product configuration topics relevant to IT professionals.

As with any tool, the use of the information in this guide should be discussed with organizational GRC subject matter experts to determine how it fits within the organization’s overall efforts.”

Download the guide at:

http://technet.microsoft.com/en-us/library/dd20673...081101

HTH,

Tom

Thomas W Shinder, M.D., MCSE
Sr. Consultant / Technical Writer

Prowess Consulting www.prowessconsulting.com
PROWESS CONSULTING | Microsoft Forefront Security Specialist
Email: tshinder@isaserver.org
MVP — Forefront Edge Security (ISA/TMG/IAG)

The Microsoft Forefront Client Security (FCS) agent can be installed on Windows Server 2008 host and virtualized operating systems to protect against malicious threats. In addition, you can install the FCS Management Server on Hyper-V virtualized machines to consolidate management server roles. Join this TechNet webcast to learn more about deploying FCS in a virtualized environment.

Register to view the Webcast at:

https://msevents.microsoft.com/CUI/WebCastEventDet...ode=US

HTH,

Tom

Thomas W Shinder, M.D., MCSE
Sr. Consultant / Technical Writer

Prowess Consulting www.prowessconsulting.com
PROWESS CONSULTING | Microsoft Forefront Security Specialist
Email: tshinder@isaserver.org
MVP — Forefront Edge Security (ISA/TMG/IAG)

Did you know that Forefront Server Security for Exchange is included with both SBS 2008 and EBS 2008? That’s right. Forefront Server Security for Exchange (FSE) gives you layered protection for your Exchange Server e-mail services. With FSE, you get protection against the latest e-mail based threats, as it blocks viruses, spam, and network worms.

For more information, check out the Forefront Team Blog at:

http://blogs.technet.com/forefront/default.aspx

HTH,

Tom

Thomas W Shinder, M.D., MCSE
Sr. Consultant / Technical Writer

Prowess Consulting www.prowessconsulting.com
PROWESS CONSULTING | Microsoft Forefront Security Specialist
Email: tshinder@isaserver.org
MVP — Forefront Edge Security (ISA/TMG/IAG)

Many people have asked me about how the new “Morro” product, which is replacing the OneCare product line, will impact Forefront Client Security (FCS). As you might know, FCS is Microsoft’s enterprise anti-virus/anti-malware product. Microsoft security admins are curious if they can just use Morro instead of FCS.

The answer is no. Morro is intended for consumers and lacks the feature set required for an enterprise ready anti-malware solution. FCS includes features required by an enterprise, such as centralized deployment, centralized management and reporting, security state assessments for the entire enterprise fleet, scheduled signature downloads and more.

For more information, check out the Forefront Team Blog at:

http://blogs.technet.com/forefront/archive/2008/11...t.aspx

HTH,

Tom

Thomas W Shinder, M.D., MCSE
Sr. Consultant / Technical Writer

Prowess Consulting www.prowessconsulting.com
PROWESS CONSULTING | Microsoft Forefront Security Specialist
Email: tshinder@isaserver.org
MVP — Forefront Edge Security (ISA/TMG/IAG)

Microsoft® Windows Server® 2008 and Windows Vista™ include many changes and enhancements to networking technologies. This article describes the changes to protocols and core networking components, wireless and 802.1X-authenticated wired technologies, and network infrastructure components and services in Windows Server 2008 and Windows Vista.

This article covers all the new networking features, including security improvements in the network protocol stack.

http://technet.microsoft.com/en-us/library/bb726965.aspx

HTH,

Tom

Thomas W Shinder, M.D., MCSE
Sr. Consultant / Technical Writer

Prowess Consulting www.prowessconsulting.com
PROWESS CONSULTING documentation | integration | virtualization
Email: tshinder@isaserver.org
MVP — Forefront Edge Security (ISA/TMG/IAG)

Network Access Protection (NAP) is a powerful new Windows Server 2008 feature that can help protect networks from malicious software (malware) and other threats. This webcast explains how organizations can use NAP to institute requirements for accessing a network, create policies that check for compliance with those requirements, and update and manage devices that are not in compliance. Join us to learn how Microsoft IT manages NAP within Microsoft and how organizations can leverage this feature to report on health policy compliance, and to take action to address identified risks.

Register to view or download the Webcast at:

http://msevents.microsoft.com/CUI/WebCastEventDeta...ode=US

HTH,

Tom

Thomas W Shinder, M.D., MCSE
Sr. Consultant / Technical Writer
Prowess Consulting www.prowessconsulting.com
PROWESS CONSULTING documentation | integration | virtualization
Email: tshinder@isaserver.org
MVP — Forefront Edge Security (ISA/TMG/IAG)

As you know in Windows server 2008 (WS08) they have removed “Basic Firewall” functionality in RRAS which exist in Windows Server 2003 (WS03). This leads to security implications which you should be carefully consider when configuring RRAS on WS08. this blog post entry on the RRAS team blog tells you what you need to do to secure your RRAS server.

http://blogs.technet.com/rrasblog/archive/2008/03/...8.aspx

HTH,

Tom

Thomas W Shinder, M.D., MCSE
Sr. Consultant / Technical Writer
Prowess Consulting www.prowessconsulting.com
PROWESS CONSULTING documentation | integration | virtualization
Email: tshinder@isaserver.org
MVP — Forefront Edge Security (ISA/TMG/IAG)

The Visual Round Trip Analyzer tool helps web developers and testers visualize the download of their page, identify best practices and changes that improve web performance. The network Round-Trip between the client and server(s) is the single biggest impact to web page performance – much greater than server response time. VRTA examines the communications protocol, identifying the causes of excessive round-trips, and recommending solutions. Performance engineers, testers, developers, operations personnel should use VRTA to conduct their web performance analysis.

Download the Visual Round Trip Analyzer at:

http://www.microsoft.com/downloads/details.aspx?fa...ang=en

HTH,

Tom

Thomas W Shinder, M.D., MCSE
Sr. Consultant / Technical Writer
Prowess Consulting www.prowessconsulting.com
PROWESS CONSULTING documentation | integration | virtualization
Email: tshinder@isaserver.org
MVP — Forefront Edge Security (ISA/TMG/IAG)

If you used the old Network Monitor 2.0 and haven’t seen the new NetMon 3.2, then you’re in for a treat! NetMon 3.2 is a full rewrite and the new app is a formidable tool. In fact, I’ve moved from Wireshark to NetMon 3.2 because of its ease of use and its power.

In this article, the NetMon 3.2 team shows you how to customize the user interface so that you can see more of the information that you’re interested in.

Check out this article at:

http://blogs.technet.com/netmon/archive/2008/11/13...e.aspx

HTH,

Tom

Thomas W Shinder, M.D., MCSE
Sr. Consultant / Technical Writer
Prowess Consulting www.prowessconsulting.com
PROWESS CONSULTING documentation | integration | virtualization
Email: tshinder@isaserver.org
MVP — Forefront Edge Security (ISA/TMG/IAG)

Digital certificates are used in a great variety of networking client and server applications. You can’t have a secure network solution without digital certificates. For many network admins, certificates and PKI are a bit magic, a bit trial and error, and a bit “I’ll keep pushing buttons until it works and then I stop and lock it down”.

The fact is that once you have the facts, certificates and certificate authentication and security actually begin to make sense. The problem is that much of the writing on certificates assumes that you already understand how they work and they just restate information to people who also know the material.

Jan De Clercq did a good job in putting together an introduction to certificates. In this article you’ll get a nice overview of digital certificates and how that work. You’ll also receive a good grounding in certificate vocabulary.

Check out the article at:

http://technet.microsoft.com/en-us/library/cc700805.aspx

HTH,

Tom

Thomas W Shinder, M.D., MCSE
Sr. Consultant / Technical Writer
Prowess Consulting www.prowessconsulting.com
PROWESS CONSULTING documentation | integration | virtualization
Email: tshinder@isaserver.org
MVP — Forefront Edge Security (ISA/TMG/IAG)