This article describes the Microsoft Forefront Client Security (FCS) revised installation package which is specifically for Windows 2000 SP4 computers.
INTRODUCTION
This package revises the current deployment package described in:
976669 Forefront Client Security deployment package (1.0.1725.0): December 2009 The purpose for this revision is to enable Windows 2000 computers to install the latest version of the Client Security client without having to apply multiple updates. This package is published to Windows Server Update Services (WSUS) and is used to perform new installations of the Forefront Client Security client components.
Hotfix information
A supported hotfix is available from Microsoft. Note This hotfix is available only from Windows Server Update Services.
Prerequisites
There are no prerequisites for installing this update.
Update replacement information
This update replaces the following:
976669 Forefront Client Security deployment package (1.0.1725.0): December 2009 This update also replaces the initial release of the Forefront Client Security deployment package that is available from WSUS under the following title:
Client Update for Microsoft Forefront Client Security (1.0.1703.0)
More Information
The contents of this update are as follows:
-
clientsetup.exe
-
FCSSSA.MSI
-
MOMAgent.MSI
-
mp_AMBits.MSI
Clientsetup.exe
This update installation starts the clientsetup.exe program which is in the package. ClientSetup.exe program starts the subordinate installation files in this section.Changes in this release
-
Checks were added to detect the following products. If they are detected setup will not continue and an error will be written to the setup log file.
-
Microsoft Security Essentials version 2
-
Forefront Endpoint Protection client
-
Forefront Client Security, x86-based versions
|
File name |
File version |
File size |
Date |
Time |
|---|---|---|---|---|
|
Clientsetup.exe |
1.0.1732.0 |
116,120 |
13-Nov-2010 |
00:16 |
FCSSSA.MSI
This subordinate component will install the Microsoft Forefront Client Security State Assessment (SSA) client. The SSA client is compromised of the service host and the assessment definitions. The assessment definitions functionality is the same as the release listed in the following article, but the version number has been incremented to match the version in the title of the update package. For more information, click the following article number to view the article in the Microsoft Knowledge Base:
974253 Description of a Security State Assessment update (1.0.1710.103) for Forefront Client SecurityThe service host (FcsSAS.exe) functionality has not changed from the release to manufacturing build, but its version number has been incremented to match the version in the title of the update package.Forefront Client Security, x86-based versions
|
File name |
File version |
File size |
Date |
Time |
|---|---|---|---|---|
|
Bpacommon.dll |
1.0.1732.0 |
223,128 |
12-Nov-2010 |
21:01 |
|
Bpaconfigcollector.dll |
1.0.1732.0 |
364,952 |
12-Nov-2010 |
21:01 |
|
Eula.rtf |
206,773 |
03-Jun-2010 |
13:24 |
|
|
Fcssas.exe |
1.0.1732.0 |
69,528 |
12-Nov-2010 |
21:01 |
|
Fcssasengine.dll |
1.0.1732.0 |
84,376 |
12-Nov-2010 |
21:01 |
|
Fcssasmsg.dll |
1.0.1732.0 |
18,840 |
13-Nov-2010 |
00:16 |
|
Fcssasondemand.exe |
1.0.1732.0 |
17,816 |
12-Nov-2010 |
21:01 |
|
Fcssasrpc.dll |
1.0.1732.0 |
22,424 |
12-Nov-2010 |
21:01 |
|
Gdiplus.dll |
5.2.6001.22319 |
1,748,992 |
12-Nov-2010 |
20:45 |
|
Muauth.cab |
7,699 |
03-Jun-2010 |
13:23 |
|
|
Vacatalog_chinesesimplified |
6,355 |
12-Nov-2010 |
21:00 |
|
|
Vacatalog_chinesetraditional |
6,355 |
12-Nov-2010 |
21:00 |
|
|
Vacatalog_english |
6,355 |
12-Nov-2010 |
21:01 |
|
|
Vacatalog_french |
6,355 |
12-Nov-2010 |
21:01 |
|
|
Vacatalog_german |
6,355 |
12-Nov-2010 |
21:00 |
|
|
Vacatalog_italian |
6,355 |
12-Nov-2010 |
21:00 |
|
|
Vacatalog_japanese |
6,355 |
12-Nov-2010 |
21:00 |
|
|
Vacatalog_korean |
6,355 |
12-Nov-2010 |
21:01 |
|
|
Vacatalog_spanish |
6,355 |
12-Nov-2010 |
21:01 |
|
|
Vamanifest_chinesesimplified |
125,628 |
12-Nov-2010 |
20:52 |
|
|
Vamanifest_chinesetraditional |
126,035 |
12-Nov-2010 |
20:52 |
|
|
Vamanifest_english |
134,024 |
12-Nov-2010 |
20:37 |
|
|
Vamanifest_french |
132,407 |
12-Nov-2010 |
20:53 |
|
|
Vamanifest_german |
131,532 |
12-Nov-2010 |
20:52 |
|
|
Vamanifest_italian |
131,118 |
12-Nov-2010 |
20:52 |
|
|
Vamanifest_japanese |
138,909 |
12-Nov-2010 |
20:52 |
|
|
Vamanifest_korean |
131,933 |
12-Nov-2010 |
20:52 |
|
|
Vamanifest_spanish |
131,854 |
12-Nov-2010 |
20:53 |
MOMAgent.MSI
The Microsoft Operations Manager agent installation has not changed from the deployment package release. The installation package is the version released with MOM 2005 Service Pack 1. For more information, visit the following Microsoft website:
MOM 2005 Service Pack 1http://technet.microsoft.com/en-us/opsmgr/bb498239.aspx
mp_AMBits.MSI
This subordinate component installs the Microsoft Forefront Client Security antimalware client. The changes and binary versions of this antimalware client installation are described in the following Microsoft Knowledge Base article:
2459065 Real-time protection fails on Windows 2000 after you apply Forefront Client Security October 2010 update
WSUS Applicability Logic
As described earlier, this update is published only to Windows Server Updates Services (WSUS) and is not available to computers directly from Microsoft Update. WSUS uses detection logic to determine which computers should receive this update. The logic it uses is as follows:
-
Supported operating systemThe computer must be running Windows 2000 operating system with Service Pack 4.
-
FCS policy registry settingsor the deployment package to apply to potential clients those computers must have already received Client Security policy produced by the FCS management server console. The policy contains certain registry values which are used in determining package applicability. Additionally, when clientsetup.exe runs, the registry settings determine the Collection server to which the client reports.
-
All three agents client components are not installedThe update detection logic looks for all three Client Security client components (anti-malware, security state assessment, Operation Manager 2005 agent). If any of these components are missing, and the other applicability rules match, the update applies and tries to install all three components. This can be useful if client computers are installed or imaged without one or more of the three components (for example, installed with the /NoMOM switch).
As soon as the applicability logic is passed, the client computer downloads and installs the appropriate localized version of the Client Security client, as described in the Client Security planning guide at http://go.microsoft.com/fwlink/?LinkId=103309, in compliance with the configured Windows update policy.
