Alternative to Forefront Protection for Exchange

Since Microsoft is discontinuing Forefront Protection for Exchange, does anyone know how long they will continue to provide updates to the anti-virus engines? To be honest, our perimeter security provides just about all the protection we need but I don't
like not having anti-virus on Exchange, especially the mailbox servers.
Is MS providing any alternative other than going to the cloud or are we just being forced to find a third party product? I really liked the MS product because support would always play third party products every time we had a problem. Our agreement does
expire until 2016 but I think we will be on 2013 by then for sure and I hear 2013 has some remedial anti-virus support built in.

Since Microsoft is discontinuing Forefront Protection for Exchange, does anyone know how long they will continue to provide updates to the anti-virus engines? To be honest, our perimeter security provides just about all the protection we need but I don't
like not having anti-virus on Exchange, especially the mailbox servers.
Is MS providing any alternative other than going to the cloud or are we just being forced to find a third party product? I really liked the MS product because support would always play third party products every time we had a problem. Our agreement does
expire until 2016 but I think we will be on 2013 by then for sure and I hear 2013 has some remedial anti-virus support built in.
3rd party or cloud is the only option. 2013 has basic malware detection.
Twitter!:
Please Note: My Posts are provided “AS IS” without warranty of any kind, either expressed or implied.

Similar Messages

  • Expiration of "Subscription license of Microsoft Forefront Protection for Exchange Server"

    We have "Microsoft Forefront Protection for Exchange
    Server" running in the company. Now I face the expiration of "Subscription license of Microsoft Forefront Protection for Exchange Server".
    I learned from
    http://blogs.technet.com/b/server-cloud/archive/2012/09/12/important-changes-to-forefront-product-roadmaps.aspx that "... products will continue to be supported through that date (12/31/2015) in order to provide with customers sufficient
    time to move to alternative solutions". My concern is, that Microsoft Forefront Protection for Exchange Server does not know about that grace period.
    It claims:
    Your Subscription license of Microsoft Forefront Protection for Exchange Server has expired. The product will continue to operate during the extended grace period
    until 5/1/2013. Subsequently, scanner updates will be disabled and the product will operate with reduced functionality.
    Is there a way to get a new license number? I called our software vendor, but Microsoft does not sell licenses anymore.
    Thank you for your assistance.

    Hi
       We just talk about exchange deployment and configuration in this forum.
       If you have any questions about licensing, please use the contact information in
    here which would be the best place for seeking the answer.
    Terence Yu
    TechNet Community Support

  • Removing Forefront Protection for Exchange

    I am looking into moving away from Forefront Protection for Exchange since it can't be renewed (prob to Cisco Ironport).
    What exactly do I need to do remove it completely?
    Current set up:
    Exchange 2010 behind Forefront TMG.
    Forefront Protection for Exchange used to block spam and scan for viruses.
    I believe there is a edge subscription between TMG and Exchange
    Exchange transport role installed on TMG server
    Heath

    Hi,
    when FPE is integrated into TMG you first should disable the E-Mail protection in TMG. After that FPE runs indepented and you can simply uninstall it like any other installation.
    Greetings
    Christian
    Christian Groebner MVP Forefront
    Hi Christian
    Could you be more specific as to exactly what in TMG will "disable the E-Mail protection in TMG" as it relates to the uninstallation of FPE?
    E.g. In TMG, on the "E-Mail Policy" tree node with the focus on the "E-Mail Policy" tab, there are 3 configurable items that I'm unsure of will achieve the above. These are:
    "E-Mail Policy" : Enabled
    "Protection Manager Integration" : Enabled
    "Email Policy Integration Mode" : Enabled
    Any specific one of the above or all?
    Thanks
    Jaans

  • Forefront protection for exchange 2010 - updates?

    Installed Exchange EDGE server with Forefront Protection for Exchange 2010.
    Installed hotfix update rollup 4 for forefront (I think it's the latest because I haven't found any newer).
    We have basically left everything on default in forefront, and if we take a look on dashboard in gui we see this error message:
    not all the antimalware engines selected in the forefront adminstration console for scanning have been enabled for updates.
    where should we take a look whats not being updated. Please a little help.
    with best regards,
    bostjanc

    Hi.
    Meanwhile I have also found information that it has been retired
    https://social.technet.microsoft.com/Forums/forefront/en-US/400fa485-edc9-499f-8294-c196496437d8/not-all-of-the-antimalware-engines-enabled-for-updates-successfully-updated-at-the-last-attempt?forum=FSENext
    bostjanc

  • Reactivating Forefront Protection for Exchange

    My EA agreement expired few months back and with that Forefront Protection for Exchange also got expired.
    Now I have renewed EA agreement. 
    When I open Forefront Protection for Exchange, I get a message saying, "Enter your license agreement number and license end date." There is also a box to enter these details.
    Will this be reactivated if I enter my new EA agreement number and expired date.

    Hi,
    You may need to contact Microsoft to confirm this.
    Here is a article About product licensing.
    https://technet.microsoft.com/en-us/library/ee358857.aspx
    Best Regards,
    Joyce
    Please remember to mark the replies as answers if they help and unmark them if they provide no help. If you have feedback for TechNet Subscriber Support, contact [email protected]

  • Microsoft Forefront Server Protection for Exchange Registration Service does not start automatically

    Hello,
    I am having an issue when I start my TMG 2010 machine:
    (*TMG 2010 + Forefront protection for Exchange + Exchange Edge server role, acting like a SMTP relay and Antispam filter)
    The service "Microsoft Forefront Server Protection for Exchange Registration Service"
    does not start, it is set to "Manual".
    I tried to find some information about which services should be started and which should not, but I cannot find such information, not even in Technet (my fault probably).
    Thanks in advance.
    Luis Olías Técnico/Admon Sistemas . Sevilla (España - Spain)

    Hi,
    Have you received any errors in event logs when
    you started the Microsoft Forefront Server Protection for Exchange Registration Service?
    Based on my research,
    Microsoft Forefront Server Protection Controller service is a dependency of the Microsoft Forefront Server Protection Registration service and the Microsoft Forefront
    Server Protection Registration service is a dependency of the Microsoft Exchange Transport service.
    The Microsoft Forefront Server Protection Registration service normally only runs for a brief time (less than a minute) when FPE initializes. It then shuts
    down and does not need to be running for transport scanning to occur.
    You can refer to the link below:
    Services
    Best regards,
    Susie

  • Frorefront Protection for Exchange 2010 Version Number

    Afternoon Community
    I am currently research and planning the upgrade of an MS Exchange 2010 Virtual Server. One of the steps requires the upgrade of Forefront Protection for Exchange to be updated to the latest Rollup (KB230203 - Rollup 5). Due to ongoing projects i am aware
    that Forefront has never been upgraded by us.
    A few weeks ago we noticed our license for the product was due to expire, so we extended the license until Dec 2015. I have noticed that the version number of Forefront is now showing as 11.0.727.0 (Forefront Protection 2010 w Rollup 4). We havent installed
    any of the Rollup Hotfixes and i can find no trace of the install under control panel/programs and features.
    1. Has anyone recently updated their license and seen that it has changed their version number?
    2. How can i confirm that no Rollup Hotfix has been installed?
    3. If i go ahead and try to install KB2619883 (Rollup 4), will it cleanly install or will it fail as Forefront thinks the package is already at the correct level?
    Any help on this issue would be greatly appreciated.
    Barry Fitzpatrick

    Hi,
    Maybe you can check the Installed Updates in Programs and Features under Control Panel. In addition, if you have Windows PowerShell, you can use Get-Hotfix cmdlet to get the hotfixes that have been applied to the local computer.
    Best regards,
    Susie

  • Symantec Mail security & Forefront protection for Exchage on same environment

    We are Running Symantec Mail security on Edge transport with all strict antispam policies but still some users once in a while recieve a spam here or there ,so we are planning to install Forefront Protection for exchange on hub transport , so both products
    are running , is this a do able scnerio , will we face any issues....please suggest from Microsoft point of view,

    Hi,
    As far as I know,  no single tool or process can eliminate all spam. For more spam features and easier management, you can elect to purchase the Forefront Online Protection for Exchange (FOPE) hosted email filtering service or the next version
    of this service, Microsoft Exchange Online Protection (EOP).
    http://technet.microsoft.com/en-us/library/jj218660(v=exchg.150).aspx
    http://technet.microsoft.com/en-us/library/jj673032(v=exchg.150).aspx
    Thanks,
    Angela Shi
    TechNet Community Support

  • Cannot save any changes - Microsoft Forefront 2010 for exchange is unable to perform the requested function

    HI, I have Forefront 2010 for Exchange installed for an Exchange 2007 SP2 running on Windows 2003 x64 SP2. Exchange has all roles installed on the same server. 
    When I try to save any change on Forefront I got the following message:
    Microsoft Forefront 2010 for Exchange is unable to perform the requested function. This may be because Forefront services are unavailable. Ensure that all Microsoft Forefront services are running and that WindowsPower Shell is functional
    Well, our FF services are running and PowerShell is functional. I checked some forums and found some problems when there is entries in the IP Allow / Block lists in Exchange UI. I removed those entries but problem remains.
    Any ideas would be appreciated.
    Xavier Villafuerte

    In my case, I was able to work around this issue by using  PowerShell directly.  For example, to run an on-demand scan for all mailboxes, this worked:
    #open EMS
    $aliases = (get-mailbox -result unlimited).alias
    Add-PsSnapin FSSPSSnapin
    set-FseOnDemandScan -MailboxList $aliases
    Start-FseOnDemandScan -EnableVirusScan $true
    Windows 2008 R2 SP1
    Exchange 2010 SP3, RU9
    PowerShell 4.0 present on the machine (though EMS runs PS 2.0)
    Forefront PowerShell cmdlets:
    https://technet.microsoft.com/en-us/library/cc482986.aspx
    Mike Crowley | MVP
    My Blog --
    Baseline Technologies

  • Manual Updates for Forefront Security for Exchange server

    Hello Team
    I have installed forefront security for exchange server 2007 in  CCR  and but there is no internet connectivity as it is in my test lab, 
    I would like to enable the below scan engine and update the scan engine in weekly basis as i cannot do it on daily, (No Internet Connection)
    MS Antimalware engine
    Kaspersky
    and Norman 
    Where can i get / download  the scan engine updates  for the above each  scan engines...and how to installed them manually  without internet connection . Could someone please help

    Hi Quan, and Christian,
    Thanks for that.
    My Query is that,, where can i download the updates , i mean which website can i can download the udpate for the scan engines,
    Since it my testlab environment., i don't have internet connection
    i need to download the updates from external (out of my test lab) and transper those udpates via pendire / hard drive to the test lab and from there i need to update.
    first of all , i would like know which website any source can provide  the updates for these separate scan engine updates.
    Hope you all understand

  • EWS, SOAP: Unable to access Forefront-protected /EWS/Exchange.asmx

    This is a repost. I'm really hoping to get an answer from a Microsoft Forefront support engineer. Last time my question was ignored then closed, am I in the wrong place for Forefront support?
    I have this app that uses EWS to access mail, using the standard /EWS/Exchange.asmx SOAP endpoint.
    One my user's mail servers is protected by Microsoft Forefront, and the initial HTTP request to
    https://server_name/EWS/Exchange.asmx
    is redirected (HTTP 302) to:
    https://server_name/
    CookieAuth.dll?GetLogon?curl=Z2FEWSZ2FExchange.asmx&reason=0&formdir=3
    which is an regular HTML page, the point of which, I guess, is to make the user authenticate "manually".
    I've not heard about Forefront until today, not sure how to handle it.
    Is this normal behavior for Forefront (i.e. it always redirects the initial HTTP request), or is it triggered by something in my app? For example, user-agent? The formatting of my SOAP request? Some other heuristics?
    If it's normal, how am I supposed to get past this page and access /EWS/Exchange.asmx?
    If it's triggered by something my app is doing, how can I find out what it is?
    My code runs on Android and forms its own XML requests without using any SOAP library. At the transport level, I use Apache HTTP client components. The code works fine with Office 365/Exchange Online, and, according to user reports, "self-hosted"
    corporate Exchange servers with NTLM.
    However, in this case, I'm not even getting an HTTP 401: the HTTP 302 is returned by the very first HTTP roundtrip.
    Trying to preemptively authenticate the initial request using Basic authentication didn't make any difference.
    The user who reported this issue also mentioned that another EWS based app works, so there must be a solution to it.

    Quan,
    Thank you for responding.
    There is no error per se, but the initial HTTP request to <server>/EWS/Exchange.asmx gets redirected by Forefront (HTTP 302) to:
    https://server_name/
    CookieAuth.dll?GetLogon?curl=Z2FEWSZ2FExchange.asmx&reason=0&formdir=3
    ...which is an HTML page that asks the user to log in, "manually" by again entering his login and password. This is a problem, because my app is not a web browser.
    Normally, without Forefront, the first request for Exchange.asmx returns an HTTP 401, at which point the HTTP library provides authentication data, and then the server returns actual data that the app asked for.
    I do not know which Forefront it is, I'm not familiar with Forefront. Does the above URL (.../CookieAuth.dll?GetLogon) tell you that? Does it matter which Forefront it is?
    I hope that you are exactly a person "who is familiar with the issue" -- specifically, Forefront for Exchange -- or can escalate my question to someone who is.

  • Forefront Security for Exchange Server Porduct Kay

    Just installed Forefront Protection on SBS2008 and is asking for activation Key??? 
    Can't find key to down load on website
    Please advise

    Hi Ed,
    I assume it was a volume license product you purchased? if so you should be able to sign into the Volume License Service Centre and see the product listed along with any required keys. If it isn't showing contact your distributor and get them to ensure they
    have linked it to your account.
    Volume
    Licensing Service Center - Microsoft
    Thanks
    Daniel

  • Forefront Online Protection for Exchange - Cannot Receive Password Reset Email

    One of our users cannot gain access into her quarantined emails.
    I've entered her username and clicked on need your password. No email from Microsoft is being received to reset her password.
    what other means can we gain access?  She is missing out on important client emails.
    thank you

    Hi,
    Do you do follow the steps below? Please check it again
    Go to the FOPE Sign In page at http://admin.messaging.microsoft.com/.
    Click Need Your Password?    
    In the User Name text box, enter your Microsoft Online Services ID, and click
    Send.    
    You will receive an email from [email protected] The email will say, "To set or reset
    your password, go to:" and will provide a link. Click the link.
    In the Set New Password dialog box, enter your password in the
    New Password and Confirm new Password text boxes and click
    Submit.
    Best Regards
    Quan Gu

  • Forefront 2010 for Exchange- SPAM mails block

    Hi
    we have installed forefront 2010 in edge transport servers. we are getting SPAM mails from external and attachment are scanned successfully but mails are delivered to recipient.
    is there any way to stop the entire mails when attachment are detected as SPAM please suggest.

    Hi,
    Thank you for your post here.
    I think antispam filter can help you, please refer to the article below:
    http://technet.microsoft.com/en-us/library/dd639368.aspx
    Best Regards
    Quan Gu

  • Forefront Server Protection 2010 for Exchange: Notifications behaving differently on E2007/2010

    Hi all and happy holidays:
    I have this particular situation with two client FSPE implementations recently.
    I got one one client with a single E2007 server with FSPE v.11.0.713.0 and another one with a single E2010 server with FSPE v.11.0.713.0. I configured 'Keyword Filter Match' email notifications to Administrators and, to Internal Senders notifying them
    not to use certain keywords in the future. The configuration of the notifications is exaclty the same and is using the following fields in the body of the message:
    %Product% has detected a blocked keyword match on a message you sent.
          Filter Name: "%Filter%"
          State:  "%State%"
          Subject line:  "%Message%"
          Sender:  "%ISAddress%%ESAddress%"
          Recipients: "%IRAddresses%%ERAddresses%"
          Scan job:  "%ScanJob%"
          Location:  "%Company%/%Site%/%Server% (%Folder%)"
    Certain kewords are not allowed through this mail system as they may be offensive to others. Please refrain from using this word(s) in the future. If you believe you received this in error, contact your system administrator.
    Notifications are working great, detecting when a user is Internal Sender  and delivering the message correctly but here's the issue:
    1. On the E2007 system, when the user/administrator get the notification from FSPE, the %Filter% field it displays the actual keyword that that was used:
    Microsoft Forefront Protection for Exchange Server has detected a keyword filter match.
    Filter name:  "English Profanity: <RealUglyWord>;English Profanity: <RealUglyWord>"
    2. On the E2010 system however, when the user/administrator get the email notifications, the %Filter% field only displays the name of the keyword list:
    Microsoft Forefront Protection for Exchange Server has detected a keyword filter match.
          Filter Name: "English Profanity"
    No biggie you may think but, the issue is that the user has no way to know for sure which words should not use. Of course they can call the Administrator but this will cause uneeded calls to the helpdesk IMO. In the case of English profanity, it may
    be obvious but, in the case of other keyword lists, it may not be so obvious. For example, I also have another keyword list blocking racist terms. To some people the word 'gringo' may be offensive, but not to others. IMO, it should not be used
    at all, and I am hispanic. In any case, the user needs to know for sure which words are being blocked and not to use it IAW company policy and know that the message was not delivered. Similar keyword lists are in use on both clients for "Spam-like
    language', 'Sexual harassment', etc, etc so, this is an important client requierement and part of their 'Suitable Working Envrionment' policy and enforcement.
    Hope anybody has any ideas on how to fix it.
    Regards,
    Fred Larracuente

    Remove filter name from the notification area

Maybe you are looking for

  • Faces in iPhoto 11 video clips

    I used to be able to add "Faces" to video clips in iPhoto. Now with the upgrade to iPhoto11, I can't do it any more. Any ideas?

  • Runtime error in print preview of Purchase Order

    Hi, I am facing a problem regarding the Print Preview of Purchase Order. This is happening after applying the patch no SAP_APPL Level 15. The error is "<b>Z_ME_PO_FOR_PRINTING IS NOT FOUND IN THE FUNCTION GROUP ZMEDRUCK"</b> which is the copy of MEDR

  • Label problem in Forms 6i

    Hi everyone, We converted Form 4.5 to Forms 6 using the converting utility provided by oracle. When we run the forms the boilertext on few forms were disappreared. We digged around a little and found that it was happening if you use no_hide option wh

  • Firefox 4 hangs when accessing the "Verified By Visa" capability used by many UK online retailers including Tesco & The National Lottery; is this a known problem?

    I recently upgraded to Firefox 4 from version 3 and have experienced a problem when trying to purchase online using my Visa debit card. UK stores and services are using the "Verified By Visa" system to double-check the validity of credit and debit ca

  • Java Card Splitting

    Hi all. I am currently doing some research into my final year project for university. I have one simple question to ask. "Is it possible to split the chip into sections, so a company can only access their information on the chip, and not any other co