Share This Post

How to install Endpoint Protection Point in SCCM 2012 R2

In part 1 of this blog series, we planned our hierarchy, prepared our Server and Active Directory.

In part 2, we installed and configured SQL in order to install SCCM.

In part 3, we installed a stand-alone Primary site.

In the next 16 parts, we will describe how to install the numerous Site Systems roles available in SCCM. Role installation order is not important, you can install roles independently of others.

This part will describe how to install SCCM 2012 R2 Endpoint Protection Point (EPP).

Role Description

The Endpoint Protection Point provides the default settings for all antimalware policies and installs the Endpoint Protection client on the Site System server to provide a data source from which the SCCM database resolves malware IDs to names. When you install this Site System Role, you must accept the license terms for System Center 2012 R2 Endpoint Protection.

This is not a mandatory Site System but you need to install a EPP if you’re planning to use SCCM as your anti-virus management solution (using Endpoint Protection).

sccm 2012 endpoint protection point

Site System Role Placement in Hierarchy

This Site System is a hierarchy-wide option. SCCM supports a single instance of this site system role in a hierarchy and only at the top-level site in the hierarchy. It’s supported to install this role on a Central Administration Site or stand-alone Primary Site.

Requirements

Before installing the EP role, you must have a Software Update Point installed and configured.

EPP Installation

  • Open the SCCM console
  • Navigate to Administration / Site Configuration / Servers and Site System Roles
  • Right click your Site System and click Add Site System Roles
  • On the General tab, click Next

sccm 2012 install fallback status point

  • On the Proxy tab, click Next

sccm 2012 install fallback status point

  • On the Site System Role tab, select Endpoint Protection Point, click Next

sccm 2012 endpoint protection point

  • Accept the License Terms and click Next

sccm 2012 endpoint protection point

  • Select Do not join MAPS, click NEXT

sccm 2012 endpoint protection point

• On the Summary tab, review your settings and click Next

sccm 2012 endpoint protection point

  • Wait for the setup to complete and click Close

sccm 2012 endpoint protection point

SUP Configuration

After the installation, you must add Endpoint Protection definition files in your Software Update Point.

  • Open the SCCM console
  • Navigate to Administration / Site Configuration / Servers and Site System Roles
  • Click the Configure Site Components button and select Software Update Point

sccm 2012 endpoint protection point

  • On the Product tabs, check Forefront Endpoint Protection 2010 and click Ok

sccm 2012 endpoint protection point

Verification

  • ConfigMgrInstallationPathLogsEPSetup.log – Detailed EP Installation status

4171 (13)

  • ConfigMgrInstallationPathLogsWsyncmgr.log – SUP Synchronization status

sccm 2012 endpoint protection point

You are now ready to manage EndPoint Protection using SCCM. In a future post, we will describe on to manage your anti-malware policy and definition updates.

sccm 2012 endpoint protection point

The post How to install Endpoint Protection Point in SCCM 2012 R2 appeared first on System Center Dudes.

Share This Post

The myITforum Admin is a regular member and author of myITforum. In addition, he is constantly watching and monitoring the community for potential IT superheroes.

Leave a Reply