One the best features in FEP was the use of policy templates. Microsoft included a list of pre-configured policies for just about every type of server-based application that they offer (SQL, Exchange, IIS, and so on). These policy templates were based off Microsoft's best practices for OS-level anti-virus products and included all the exclusions and exceptions needed to maximize performance, while maintaining a proper level of security.
Luckily, Microsoft has decided to include these policy templates in SCEP, but the way they are accessed and utilized is a little bit different from before. In this recipe, we will be building a policy for an Exchange 2010 server.
For this recipe, you will need to be utilizing an account that has at least the SCEP administrator role assignment attached to it.
Follow these steps:
Assets and Compliance
| Overview
| Endpoint Protection
| Antimalware Policies
.The SCEP product team has worked with different server application product teams to build policy templates that include the ideal set of exclusions and exceptions. Although the XML files for these policy templates start with the letters FEP, they are still valid for use in SCEP.
Merging policy templates:
One way in which policy templates could be useful is to merge them with your existing general server policy. In this scenario, your own server policy would be chosen as the base during the merge. The end result would be a policy that has all your standard settings for scheduled scan times, update sources, and so on, and the additional settings for the necessary folder and file exclusions that Microsoft recommends to keep the given application running at peak performance.
If you have a server that runs two or more Microsoft applications, you could also merge the policies for both applications to create a new super policy that includes the exclusions for both products.