Well you are good to go with System Center Endpoint Protection 2012, once you have got the role enabled and client rolled out, now while its pretty simple to manage the client with the client interface available in task bar, but how do you manage Hyper V Core server without GUI.
Seems a challenge right, well here is a tool you can leverage.
One
of the most vital tools for an SCEP admin is MpCmdRun.exe. With this
command-line utility, you can perform a definition rollback, force a signature
update, restore a file from quarantine, or kick off a scan. Almost any
operational scripting tasks you wish to perform will center on MpCmdRun.exe.
Getting Ready…
By
default, MpcmdRun is stored in the C:\Program Files\Microsoft Security Client\
Antimalware directory. Although MpcmdRun can be used to accomplish many tasks
with SCEP, this recipe will only describe how to launch a full scan from the
command line.
How to do it…
1. Open the
Command Prompt window.
2. Navigate to
C:\Program Files\Microsoft Security Client\Antimalware directory.
3. Enter the
following command:
4. MpCmdRun
-scan -2
5. Once the full
scan is completed, close the Command Prompt window.
How it works…
To
view all options available for the utility, enter MpCmdRun -? in the Command
Prompt window. A partial output is included for reference in the following
example. The full contents of the Mpcmdrun help file can be found in the
appendix.
Usage:
MpCmdRun.exe [command] [-options]
Command Description
-? /
-h
Displays all available
options for this tool
-Scan [-ScanType #]
[-File [-DisableRemediation]] Scans for
malicious
-Scan [-ScanType
value]
0 Default, according to your configuration
1 Quick scan
2 Full system scan
3 File and directory custom scan
[-File ]
No comments:
Post a Comment