DetailPage-MSS-KB

Microsoft small business knowledge base

Article ID: 976669 - Last Review: January 20, 2011 - Revision: 2.0

Hotfix Download Available
View and request hotfix downloads
 
This article describes the Microsoft Forefront Client Security (FCS) revised installation package.

INTRODUCTION

This package revises the current release to manufacturing deployment package:
Client Update for Microsoft Forefront Client Security (1.0.1703.0)
The purpose for this revision is to let new computers to install the latest version of the Client Security client without having to later apply previously released updates. This package is published to Windows Server Update Services (WSUS) and is used to perform new installations of the Forefront Client Security client components.

Hotfix information

A supported hotfix is available from Microsoft.

Note This hotfix is available only from Windows Server Update Services.

Prerequisites

There are no prerequisites for installing this update.

Restart requirement

Windows XP SP2 client without KB914882 must restart the computer after you apply this update.

Update replacement information

This update replaces the current Forefront Client Security deployment package that is available from WSUS and that has the following title:
Client Update for Microsoft Forefront Client Security (1.0.1703.0)

MORE INFORMATION

The contents of this update are as follows:
  • clientsetup.exe
  • FCSSSA.MSI
  • MOMAgent.MSI
  • mp_AMBits.MSI
  • windowsxp-kb914882-x86-XXX.exe (x86 only)

Clientsetup.exe

This update installation starts the clientsetup.exe program that is in the package. ClientSetup.exe program starts the subordinate installation files in this section.

Changes in this release

The following revisions were made to ClientSetup.exe for this release:
  • Checks were added to detect the following products. If they are detected setup will not continue and an error will be written to the setup log file.
    • Microsoft Security Essentials
    • Microsoft Security Essentials Codename "Morro" beta
    • Forefront Endpoint Protection Beta client
  • In earlier version of ClientSetup.exe installation on Windows XP Media Center Edition was blocked. That block has been removed in accordance with a revised support statement.
  • In earlier version of ClientSetup.exe installation on Windows Vista Home Editions produced warnings in the setup log file. Those warnings have been removed in accordance with a revised support statement.
Forefront Client Security, x86-based versions
Collapse this tableExpand this table
File nameFile versionFile sizeDateTime
Clientsetup.exe1.0.1725.0116,10423-Oct-200903:46
Forefront Client Security, x64-based versions
Collapse this tableExpand this table
File nameFile versionFile sizeDateTime
Clientsetup.exe1.0.1725.0121,22422-Oct-200922:57

FCSSSA.MSI

This subordinate component will install the Microsoft Forefront Client Security State Assessment (SSA) client. The SSA client is compromised of the service host and the assessment definitions.

The assessment definitions functionality is the same as the release listed in the following article, but its version number has been incremented to match the version in the title of the update package. For more information, click the following article number to view the article in the Microsoft Knowledge Base:
974253  (http://support.microsoft.com/kb/974253/ ) Description of a Security State Assessment update (1.0.1710.103) for Forefront Client Security


The service host (FcsSAS.exe) functionality has not changed from the release to manufacturing build, but its version number has been incremented to match the version in the title of the update package.

Forefront Client Security, x86-based versions
Collapse this tableExpand this table
File nameFile versionFile sizeDateTime
Bpacommon.dll1.0.1725.0223,11223-Oct-090:31
Bpaconfigcollector.dll1.0.1725.0364,93623-Oct-090:31
Eula.rtf206,77320-Apr-0720:45
Fcssas.exe1.0.1725.069,51223-Oct-090:31
Fcssasengine.dll1.0.1725.084,36023-Oct-090:31
Fcssasmsg.dll1.0.1725.018,82423-Oct-093:46
Fcssasondemand.exe1.0.1725.017,80023-Oct-090:31
Fcssasrpc.dll1.0.1725.022,40823-Oct-090:31
Gdiplus.dll5.2.6001.223191,748,99223-Oct-090:09
Muauth.cab7,69920-Apr-0720:45
Vacatalog_chinesesimplified6,34223-Oct-090:31
Vacatalog_chinesetraditional6,34223-Oct-090:31
Vacatalog_english6,34223-Oct-090:31
Vacatalog_french6,34223-Oct-090:31
Vacatalog_german6,34223-Oct-090:31
Vacatalog_italian6,34223-Oct-090:31
Vacatalog_japanese6,34223-Oct-090:31
Vacatalog_korean6,34223-Oct-090:31
Vacatalog_spanish6,34223-Oct-090:31
\2052\Vulnerabilitydefinitions.manifest125,62823-Oct-090:24
\1028\Vulnerabilitydefinitions.manifest126,03523-Oct-090:24
\1033\Vulnerabilitydefinitions.manifest134,02423-Oct-090:01
\1036\Vulnerabilitydefinitions.manifest132,40723-Oct-090:24
\1031\Vulnerabilitydefinitions.manifest131,53223-Oct-090:24
\1040\Vulnerabilitydefinitions.manifest131,11823-Oct-090:24
\1041\Vulnerabilitydefinitions.manifest138,90923-Oct-090:24
\1042\Vulnerabilitydefinitions.manifest131,93323-Oct-090:24
\3082\Vulnerabilitydefinitions.manifest131,85423-Oct-090:24
Forefront Client Security, x64-based versions
Collapse this tableExpand this table
File nameFile versionFile sizeDateTime
Bpacommon.dll1.0.1725.0264,58422-Oct-0919:37
Bpaconfigcollector.dll1.0.1725.0408,96822-Oct-0919:37
Eula.rtf206,77320-Apr-0720:45
Fcssas.exe1.0.1725.073,60822-Oct-0919:37
Fcssasengine.dll1.0.1725.099,72022-Oct-0919:37
Fcssasmsg.dll1.0.1725.018,82422-Oct-0922:57
Fcssasondemand.exe1.0.1725.017,80022-Oct-0919:37
Fcssasrpc.dll1.0.1725.023,43222-Oct-0919:37
Muauth.cab7,69920-Apr-0720:45
Vacatalog_chinesesimplified6,34222-Oct-0919:37
Vacatalog_chinesetraditional6,34222-Oct-0919:37
Vacatalog_english6,34222-Oct-0919:37
Vacatalog_french6,34222-Oct-0919:37
Vacatalog_german6,34222-Oct-0919:37
Vacatalog_italian6,34222-Oct-0919:37
Vacatalog_japanese6,34222-Oct-0919:37
Vacatalog_korean6,34222-Oct-0919:37
Vacatalog_spanish6,34222-Oct-0919:37
\2052\Vulnerabilitydefinitions.manifest125,62822-Oct-0919:31
\1028\Vulnerabilitydefinitions.manifest126,03522-Oct-0919:31
\1033\Vulnerabilitydefinitions.manifest134,02422-Oct-0919:07
\1036\Vulnerabilitydefinitions.manifest132,40722-Oct-0919:31
\1031\Vulnerabilitydefinitions.manifest131,53222-Oct-0919:30
\1040\Vulnerabilitydefinitions.manifest131,11822-Oct-0919:31
\1041\Vulnerabilitydefinitions.manifest138,90922-Oct-0919:31
\1042\Vulnerabilitydefinitions.manifest131,93322-Oct-0919:31
\3082\Vulnerabilitydefinitions.manifest131,85422-Oct-0919:31

MOMAgent.MSI

The Microsoft Operations Manager agent installation has not changed from the deployment package release. The installation package is the version released with MOM 2005 Service Pack 1. For more information, visit the following Microsoft Web site:
MOM 2005 Service Pack 1
http://technet.microsoft.com/en-us/opsmgr/bb498239.aspx (http://technet.microsoft.com/en-us/opsmgr/bb498239.aspx)

mp_AMBits.MSI

This subordinate component installs the Microsoft Forefront Client Security anti-malware client. The changes and binary versions of this anti-malware client installation are described in the following Microsoft Knowledge Base article:
976668  (http://support.microsoft.com/kb/976668/ ) Forefront Client Security anti-malware update: December 2009

WindowsXP-kb914882-x86-XXX.exe

This updates is only applied on 32-bit Windows XP Service Pack 2 computers which do not have it already installed. Each localized Forefront Client Security deployment package will contain a corresponding localized version of this update.

If KB914882 is applied during installation of this update package then a restart is required.

For more information, click the following article number to view the article in the Microsoft Knowledge Base:
914882  (http://support.microsoft.com/kb/914882/ ) The filter manager rollup package for Windows XP S

WSUS Applicability Logic

As described earlier, this update is published only to Windows Server Updates Services (WSUS) and is not available to computers directly from Microsoft Update. WSUS uses detection logic to determine which computers should receive this update. The logic it uses is as follows:
  1. Supported operating system
    The computer must be running an FCS supported operating system. A list of supported operating systems can be found on the TechNet system requirements page at the following Microsoft Web site: http://go.microsoft.com/fwlink/?LinkId=77561 (http://go.microsoft.com/fwlink/?LinkId=77561)
  2. FCS policy registry settings
    In order for the deployment package to apply to potential clients those computers must have already received Client Security policy produced by the FCS management server console. The policy contains certain registry values which are used in applicability. Additionally, when clientsetup.exe runs the settings will determine the Collection server to which the client reports.
  3. All three agents client components are not installed
    The update detection logic looks for all three Client Security client components (anti-malware, security state assessment, Operation Manager 2005 agent). If any of these components are missing, and the other applicability rules match, the update applies and tries to install all three components. This can be useful if client computers are installed or imaged without one or more of the three components (for example installed with the /NoMOM switch).


As soon as the applicability logic is passed, the client computer will download and install the appropriate localized version of the Client Security client, as described in the Client Security planning guide at http://go.microsoft.com/fwlink/?LinkId=103309 (http://go.microsoft.com/fwlink/?LinkId=103309) , in accordance with the configured Windows update policy.

APPLIES TO
  • Microsoft Forefront Client Security
Keywords: 
kbsurveynew kbexpertiseinter kbqfe kbhotfixserver fep2010swept KB976669
Share
Additional support options
Ask The Microsoft Small Business Support Community
Contact Microsoft Small Business Support
Find Microsoft Small Business Support Certified Partner
Find a Microsoft Store For In-Person Small Business Support