Microsoft Endpoint Protection for Azure (Antivirus) Management Service as a Service
It's great that we now can deploy the "System Center Endpoint Protection" client directly during provisioning using the new VM extensions, but we are still missing a management tool for managing policies and monitoring. Microsoft should provide the Microsoft Endpoint Protection antivirus product as a service or independent product that doesn't rely on System Center licensing model.
Many customers doesn't want to maintain complex infrastructures like System Center Configuration Manager or System Center Operations Manager. The requirement of System Center Advisor to have the integration with OpsMgr to get the benefits of the Security Intelligence Packs is great for System Center customers, but would about the rest that doesn't want SC.
Customers needs somekind of Windows server AV management tool like Windows Intune manage clients.
Following features would be nice:
- Reporting on health and state - Just like SC Advisor
- Ability to define policies
Basically the same features that TrueSec did for FEP:
Bart Kock commented
I'm actually looking for e-mail notification in case of threats so the person who has to act when something goes wrong also receives an e-mail.
Also our own monitoring tool has the capability to analyze e-mail messages and give warnings when something goes wrong.
Peter Selch Dahl commented
I would also be nice if you could configure the specific AV management server as part of the installation like puppet + If you had deployed the AV Management service as part of the subscription where the VM is getting deployed it should be populate as a default.