Update: Hotfix solves issue publishing Network Device Enrollement Service (NDES) through Web Application Proxy (WAP) KB30137609

UPDATE! Hereby a quick note that you no longer have to contact support, it’s available in the in the December Windows Update. Just install the latest Windows Update on your Windows Server 2012 R2 and you should be good to go. December 2014 update rollup for Windows RT 8.1, Windows 8.1, and Windows Server 2012 R2 http://support.microsoft.com/kb/3013769

UPDATE! A private hofix (for now) is available that fixes URL length issues with Windows Application Proxy (applicable for NDES deployments) KB523052. This hotfix can be requested through a PSS case. For more details click here.

For those who are using Web Application Proxy (WAP) and intent or already have been published Network Device Enrolment Service (NDES) might noticed this isn’t working, even when pass-through preauthentication is configured. This post will go into details how NDES is working including a brief explanation of the issue.

The Network Device Enrollment Service (NDES) allows mobile devices running without domain credentials to obtain certificates based on the Simple Certificate Enrollment Protocol (SCEP). The user certificates can be used for managing company resource access (E-mail, WiFi- and VPN profiles) instead of using user name + password. This existing technique is recently emphatically re-evaluated by the use and application for mobile device management in relation to BYOD scenarios.

Continue reading “Update: Hotfix solves issue publishing Network Device Enrollement Service (NDES) through Web Application Proxy (WAP) KB30137609”

Microsoft releases update for System Center Endpoint Protection

Microsoft has made available a significant Hotfix for Endpoint Protection when it is integrated with Microsoft System Center 2012 Configuration Manager or Microsoft System Center Configuration Manager 2007. More specifically, the Hotfix is a platform update for Microsoft System Center 2012 Endpoint Protection Service Pack 1 (SP1) clients and Microsoft Forefront Endpoint Protection 2010 clients.

The platform update provides the following additions, enhancements, and fixes:

  • Update to the network real-time behavior monitoring functionality.
  • Provides Manageability support through the WMIv2 provider.
  • Anti-tampering improvements.
  • Performance improvements.
  • Configurable option for sending harmful samples to Microsoft.
  • More languages supported.
  • Fixes Exchange Server 2003 problems.
  • Fixes a problem where duplicate environment variables are created during installation.
  • Fixes the ability to install on an alternate drive letter.

The Hotfix, 2865173, replaces both 2828233 and 2827684.

The KB Article is here:  An anti-malware platform update for Endpoint Protection clients is available from Microsoft Support