News
Microsoft Security Response Center Progress Report http://www.microsoft.com/downloads/details.aspx?FamilyID=9954af26-046b-48e9-bb40-b3612665fb51&displaylang=en
Get the latest information from the Microsoft Security Response Centre on the progress of three initiatives that share information to foster deeper industry collaboration, increase community-based defences, and better protect customers.
Join the Security Compliance Manager Beta 2 Program https://connect.microsoft.com/site715
Preview this new security baseline, and gain knowledge to help you more effectively deploy and monitor your security baseline for Windows Server 2008 R2, Exchange 2007, Office 2010, SQL Server 2008, and SQL Server 2008 R2 as well as setting packs for Windows 7 and Internet Explorer 8.
Microsoft Security Bulletin Summary for August, 2010
http://www.microsoft.com/technet/security/bulletin/ms10-aug.mspx
Microsoft Security Response Center (MSRC) Blog Post http://go.microsoft.com/?linkid=9683067
Windows Media Video (WMV) http://go.microsoft.com/?linkid=9683068
Windows Media Audio (WMA) http://go.microsoft.com/?linkid=9683069
iPod Video (MP4) http://go.microsoft.com/?linkid=9683070
MP3 Audio http://go.microsoft.com/?linkid=9683071
High Quality WMV (2.5 Mbps) http://go.microsoft.com/?linkid=9683072
Zune Video (WMV) http://go.microsoft.com/?linkid=9683073
Microsoft Product Lifecycle Information
Find information about your particular products on the Microsoft Product Lifecycle Web site http://go.microsoft.com/?linkid=9669804
See a List of Supported Service Packs http://go.microsoft.com/?linkid=9669805
Microsoft provides free software updates for security and non-security issues for all supported service packs.
Follow the Microsoft Security Response team on Twitter http://go.microsoft.com/?linkid=9739346 @MSFTSecResponse for the latest information on the threat landscape.
Forefront TMG and ISA Server
Forefront Security TechCenter
http://technet.microsoft.com/forefront/default.aspx
Please note that if you have feedback on documentation or wish to request new documents - email isadocs@microsoft.com
Forefront Threat Management Gateway 2010 homepage
http://technet.microsoft.com/en-gb/forefront/ee807302.aspx
Forefront TMG (ISA Server) Product Team Blog
The ISA Server Product Team Blog (http://blogs.technet.com/isablog/) is updated on a regular basis. Latest entries include:
Announcement: Updates to “How to Configure ISA SSL Bridging for System Center Configuration Manager Internet-Based Client Management”
New in Forefront TMG SP1: Redirect on Deny with dynamic parameters
TMG URL Filtering category precedence
http://blogs.technet.com/b/isablog/archive/2010/08/03/tmg-url-filtering-category-precedence.aspx
Different HTTPS exclusion mechanisms
http://blogs.technet.com/b/isablog/archive/2010/08/04/different-https-exclusion-mechanisms.aspx
More than one L2TP VPN connection from behind a NAT device fails with error 809 when TMG 2010 has been configured as a VPN Server
Unable to authenticate using FBA with LDAP on ISA Server 2006
TMG 2010 SP1: Cannot publish a website through TMG server when using any port except port 80
Reporting improvements in Forefront TMG SP1
Understanding a scenario where TMG drops the packet as spoofed even when the source IP doesn’t belong to the internal network
Forefront Unified Access Gateway & Intelligent Application Gateway 2007
Forefront Unified Access Gateway 2010 Technical Resources
http://technet.microsoft.com/en-gb/forefront/edgesecurity/ee907407.aspx
For comments, feedback, and requests, contact the Forefront UAG User Assistance team at uagdocs@microsoft.com.
Forefront Unified Access Gateway Product Team Blog
The UAG Product Team Blog (http://blogs.technet.com/edgeaccessblog) is updated on a regular basis. Latest entries include:
UAG is certified for Windows Server 2008 R2
Microsoft Forefront UAG 2010 Administrator's Handbook
Free Willy!
http://blogs.technet.com/b/edgeaccessblog/archive/2010/08/11/free-willy.aspx
How to set per user inactivity and forced timeout in UAG
Exchange Offline Address Book is not being updated
Forefront Edge on the Wiki
The home of community-generated content about Microsoft technologies — that anyone can edit! Read the latest wiki articles about TMG and UAG.
TMG - http://social.technet.microsoft.com/wiki/contents/articles/tags/tmg/default.aspx
UAG - http://social.technet.microsoft.com/wiki/contents/articles/tags/UAG/default.aspx
Documents
Security Tip of the Month: Using the MSRC Exploitability Index http://technet.microsoft.com/en-gb/security/ff943560.aspx
Explore the reasons why home (non-domain) users and those who use enterprise (domain-joined) computers face different vulnerabilities then find a selection of best practices and solutions that should be considered to help protect your users.
Understanding Security Threats and Countermeasures for Office 2010 http://technet.microsoft.com/en-gb/library/cc179135.aspx
Get the information you need to plan for a secure desktop configuration for Office 2010, including which security risks and threats are relevant to Office 2010, and which might pose a risk to the organization's business assets or processes.
Configuring Security for Office 2010 http://technet.microsoft.com/en-gb/library/ff400327.aspx
Learn how to configure security settings for Office 2010 by using the Office Customization Tool (OCT) and Group Policy.
Planning for Security and Protection in Outlook 2010 http://technet.microsoft.com/en-gb/library/cc179213.aspx
Access guidance on how to choose security and protection settings, determine attachment settings, limit junk mail, and utilize email messaging cryptography in Outlook 2010.
Planning for Privacy in Office 2010 http://technet.microsoft.com/en-gb/library/cc179123.aspx
Learn how to configure privacy options in Office 2010 to meet your organization's security requirements.
Downloads
GrantPermissions PowerShell Script
GrantPermissions is a PowerShell script that you can use to help you configure core Web services.
Cumulative Update 1 for System Center Operations Manager 2007 SP1 (KB 2028594)
Cumulative Update 1 contains a number of fixes for the Operations Manager 2007 SP1. A number of fixes require manual steps to install. See Knowledgebase article 2028594 for details of included fixes and
installation steps.
System Center Operations Manager 2007 R2 Connectors Cumulative Update 2 (KB2274165)
The Systems Center Operations Manager 2007 R2 Connectors Cumulative Update 2 is the second update for the System Center Operations Manager 2007 R2 Connectors.
Software Vulnerability Management at Microsoft
Vulnerabilities are weaknesses in software that enable an attacker to compromise the integrity, availability, or confidentiality of that software. This paper describes the process that Microsoft uses to
investigate and release security updates that address vulnerabilities in the software it produces.
Enabling Strict KDC Validation in Windows Kerberos
Guidance to enable strict KDC Validation in Windows Kerberos.
Test Lab Guide: Demonstrate Forefront UAG DirectAccess with Network Access Protection (NAP)
Create a Test Lab to demonstrate how UAG DirectAccess and NAP work together
Test Lab Guide: Demonstrate UAG DirectAccess Remote Management
Create a Test Lab that demonstrates how to remotely manage DirectAccess clients
Test Lab Guide: Troubleshoot DirectAccess
This white paper describes DirectAccess troubleshooting tools, the results of the tools in a working DirectAccess test lab, and how to troubleshoot common problems in the DirectAccess test lab.
Test Lab Guide: Demonstrate Forefront UAG DirectAccess
Create a test lab that enables you to test Forefront UAG DirectAccess features and capabilities
Test Lab Guide: Demonstrate Forefront UAG DirectAccess Network Load Balancing and Array Configuration
Create a UAG DirectAccess Test Lab with Network Load Balancing and Array configuration
Test Lab Guide: Demonstrate DirectAccess with Network Access Protection (NAP)
This step-by-step guide shows you how to configure NAP enforcement for access to the intranet in the DirectAccess test lab.
Test Lab Guide: Demonstrate DirectAccess
Create a test lab to demonstrate DirectAccess with a simulated Internet, intranet, and home network.
Test Lab Guide: Troubleshoot DirectAccess with Network Access Protection (NAP)
Learn how to troubleshoot NAP problems in the DirectAccess with NAP test lab.
Update Rollup 12 for Microsoft Dynamics CRM 4.0 (KB 2028381)
Microsoft has released Update Rollup 12. This is a tested, cumulative set of updates for Microsoft Dynamics CRM 4.0. It includes performance enhancements that are packaged together for easy deployment.
Microsoft Forefront Protection Server Script Kit
The Microsoft® Forefront® Protection Server Script Kit provides multi-server management for Forefront Protection 2010 for Exchange Server and Forefront Protection 2010 for SharePoint®.
FOPE & EHA Support Escalation Path and Service Level Objective
This 2-page PDF file includes U.S. and international Technical Support contact information for Forefront Online Protection for Exchange and Exchange Hosted Archive services, along with details about when you
can expect a response to your Technical Support request.
Microsoft® Windows® Malicious Software Removal Tool (KB890830)
This tool checks your computer for infection by specific, prevalent malicious software (including Blaster, Sasser, and Mydoom) and helps to remove the infection if it is found. Microsoft will release an
updated version of this tool on the second Tuesday of each month.
Microsoft® Windows® Malicious Software Removal Tool (KB890830) x64
This tool checks your computer for infection by specific, prevalent malicious software (including Blaster, Sasser, and Mydoom) and helps to remove the infection if it is found. Microsoft will release an
updated version of this tool on the second Tuesday of each month.
Forefront UAG DirectAccess Proof of Concept Lab Guide
Step by step instructions for creating a UAG DirectAccess Proof of Concept lab
Microsoft Password Change Notification Service
The Password Change Notification Service synchronizes user passwords across multiple identity stores in an enterprise environment.
Microsoft Security Compliance Manager
The Microsoft Security Compliance Manager provides centralized security baseline management features, a baseline portfolio, customization capabilities, and security baseline export flexibility to accelerate
your organization’s ability to efficiently manage the security and compliance process for the most widely used Microsoft technologies.
Forefront Identity Manager Certificate Management 2010 Backup and Restore
Backing up Forefront Identity Manager Certificate Management (FIM CM) 2010
This document describes the steps for backing up and restoring FIM CM 2010 installations.
Forefront Identity Manager 2010 Backup and Restore
Backing up and Restoring FIM 2010
This document describes the steps for backing up and restoring FIM 2010 installations.
FIM 2010 Configuration Migration Deployment Guide
Migrating to Forefront Identity Manager (FIM) 2010
You can migrate the configuration settings that are stored in Microsoft® Forefront® Identity Manager (FIM) 2010 from one environment to another. This process enables end users to configure and validate FIM
2010 configuration in a pilot environment and then automatically apply this configuration to a production environment.
Test Lab Guide: Troubleshoot DirectAccess with Network Access Protection (NAP)
Learn how to troubleshoot NAP problems in the DirectAccess with NAP test lab.
Microsoft and Data Privacy
This paper examines trends in the evolving data management landscape and describes how Microsoft is providing leadership in protecting individuals’ personal information.
Configuring Kerberos Authentication for Microsoft SharePoint 2010 Products
Describes concepts of identity in SharePoint 2010 Products, Kerberos authentication, and how to use it in various scenarios
Forefront Identity Manager (FIM) 2010 Capacity Planning Guide
Determining capacity of your topology and hardware before deploying FIM to production
This document describes items to consider when planning the capacity of your 2010 FIM installation.
Test Lab Guide: Troubleshoot Forefront UAG DirectAccess with Network Access Protection (NAP)
Learn to troubleshoot UAG DirectAccess in a Test Lab
Hotfix for Microsoft Application Request Routing for IIS7 (KB2301898) (x64)
Kaspersky Engine Updates in Forefront & Antigen FAQ
Details on installing new rollups to enable the updated Kaspersky engine in Forefront and Antigen server protection products.
Hotfix for Microsoft Application Request Routing for IIS7 (KB2301898) (x86)
Update for Windows 7 for x64-based Systems (KB2028560)
This update provides performance improvements for the graphics platform.
System Update Readiness Tool for Windows Vista (KB947821) [August 2010]
This tool is being offered because an inconsistency was found in the Windows servicing store which may prevent the successful installation of future updates, service packs, and software.
System Update Readiness Tool for Windows Server 2008 R2 for Itanium-based Systems (KB947821) [August 2010]
This tool is being offered because an inconsistency was found in the Windows servicing store which may prevent the successful installation of future updates, service packs, and software.
System Update Readiness Tool for Windows Vista for x64-based Systems (KB947821) [August 2010]
This tool is being offered because an inconsistency was found in the Windows servicing store which may prevent the successful installation of future updates, service packs, and software.
System Update Readiness Tool for Windows 7 (KB947821) [August 2010]
This tool is being offered because an inconsistency was found in the Windows servicing store which may prevent the successful installation of future updates, service packs, and software.
System Update Readiness Tool for Windows Server 2008 R2 x64 Edition (KB947821) [August 2010]
This tool is being offered because an inconsistency was found in the Windows servicing store which may prevent the successful installation of future updates, service packs, and software.
System Update Readiness Tool for Windows Server 2008 (KB947821) [August 2010]
This tool is being offered because an inconsistency was found in the Windows servicing store which may prevent the successful installation of future updates, service packs, and software.
Platform Update Supplement Beta for Windows Vista for x64-based Systems (KB2117917)
This update provides fixes and improvements to graphics, media foundation and print for Windows Vista platform.
System Update Readiness Tool for Windows Server 2008 x64 Edition (KB947821) [August 2010]
This tool is being offered because an inconsistency was found in the Windows servicing store which may prevent the successful installation of future updates, service packs, and software.
System Update Readiness Tool for Windows Server 2008 for Itanium-based Systems (KB947821) [August 2010]
This tool is being offered because an inconsistency was found in the Windows servicing store which may prevent the successful installation of future updates, service packs, and software.
Update for Windows 7 (KB2028560)
This update provides performance improvements for the graphics platform.
Platform Update Supplement Beta for Windows Vista (KB2117917)
This update provides fixes and improvements to graphics, media foundation and print for Windows Vista platform.
System Update Readiness Tool for Windows 7 for x64-based Systems (KB947821) [August 2010]
This tool is being offered because an inconsistency was found in the Windows servicing store which may prevent the successful installation of future updates, service packs, and software.
Update for Windows Server 2008 R2 for Itanium-based Systems (KB982110)
Install this update to resolve a set of known application compatibility issues.
Update for Windows Server 2008 R2 x64 Edition (KB2264080)
Install this update to resolve a set of known issues with Hyper-V.
Update for Windows Server 2008 R2 Service Pack 1 Beta for Itanium-based Systems (KB2259539)
Install this update to address an issue in which thumbnail controls are not displayed in the taskbar for some applications that use these controls.
Update for Windows 7 Service Pack 1 Beta (KB2259539)
Install this update to address an issue in which thumbnail controls are not displayed in the taskbar for some applications that use these controls.
Update for Root Certificates [August 2010] (KB931125)
This item updates the list of root certificates on your computer to the list that is accepted by Microsoft as part of the Microsoft Root Certificate Program.
Update for Windows Server 2008 R2 for Itanium-based Systems (KB2272691)
Install this update to resolve issues with non-compatible applications.
Update for Windows 7 for x64-based Systems (KB2272691)
Install this update to resolve issues with non-compatible applications.
Update for Windows Server 2008 R2 x64 Edition (KB982110)
Install this update to resolve a set of known application compatibility issues.
Update for Windows Server 2008 R2 x64 Edition (KB2272691)
Install this update to resolve issues with non-compatible applications.
Update for Windows 7 for x64-based Systems (KB982110)
Install this update to resolve a set of known application compatibility issues.
Update for Windows 7 (KB2259539)
Install this update to address an issue in which thumbnail controls are not displayed in the taskbar for some applications that use these controls.
Update for Windows 7 for x64-based Systems (KB2259539)
Install this update to address an issue in which thumbnail controls are not displayed in the taskbar for some applications that use these controls.
Update for Windows 7 (KB2272691)
Install this update to resolve issues with non-compatible applications.
Update for Windows Server 2008 R2 x64 Edition (KB2259539)
Install this update to address an issue in which thumbnail controls are not displayed in the taskbar for some applications that use these controls.
Update for Windows 7 (KB982110)
Install this update to resolve a set of known application compatibility issues.
Unified Communications Managed API 2.0 Redist (64 Bit) Hotfix KB 2282949
This download includes all available updates for Unified Communications Managed API 2.0 Redist (64 Bit).
Update for Windows Server 2008 x64 Edition (KB2264107)
This update helps protect against DLL preloading vulnerabilities in software applications on the Windows platform.
Update for Windows Server 2003 (KB2264107)
This update helps protect against DLL preloading vulnerabilities in software applications on the Windows platform.
Update for Windows 7 (KB2264107)
This update helps protect against DLL preloading vulnerabilities in software applications on the Windows platform.
Events/WebCasts
Security Webcast Calendar http://go.microsoft.com/fwlink/?LinkId=37910
Find security webcasts listed in an easy-to-use calendar format.
Upcoming Security Webcasts
http://www.microsoft.com/events/security/upcoming.mspx
Register for the following Webcasts on the link above
TechNet Webcast: Information About Microsoft September Security Bulletins (Level 200)
Wednesday, September 15, 2010 11:00 A.M.-12:30 P.M. Pacific Time
TechNet Webcast: Data Governance for Privacy, Confidentiality, and Compliance: Moving to Cloud Computing (Part 4 of 4) (Level 100)
Thursday, September 16, 2010 10:00 A.M.-11:00 A.M. Pacific Time
On-Demand Security Webcasts
http://www.microsoft.com/events/security/ondemand.mspx
Visit TechNet Spotlight: www.microsoft.com/technetspotlight
Video on Demand, Video Downloads, PowerPoint Presentations, Audio and more