MSAS and SMS 2003

[Remy Fuscius]

According to KB892375, users may be prompted to allow or
block administrative actions that originate from a
central management tool after they install Windows
AntiSpyware (Beta) on a computer that is managed by
Systems Management Server 2003. The suggested workaround
for this issue is to turn off the "Real-time spyware
threat protection" feature in Windows AntiSpyware.
Is there any other way beside turning off the Real-time
spyware protection?

 

[Bill Sanderson]

If you can predict the individual mechanisms involved in every
administrative action you might take, you could disable just the specific
checkpoints. I don't believe you can prevent the user at the workstation
from turning them back on again at this point, though.

The workaround given is one which can be enforced via Group Policy, I think.
If there were a less intrusive way to handle this, I'm sure they'd have
mentioned it.

You could prevent installation of the app in the first place, of course.

 

[Steve Dodson [MSFT]]

Unfortunately you do have to turn off real-time protection or the end users
will be able to stop the SMS script from executing.


-steve

Steve Dodson [MSFT]
MCSE, CISSP
PSS Security

--

This posting is provided "AS IS" with no warranties, and confers no rights.
Use of included script samples are subject to the terms specified at
http://www.microsoft.com/info/cpyright.htm

Note: For the benefit of the community-at-large, all responses to this
message are best directed to the newsgroup/thread from which they
originated.