The Endpoint Protection point site system role must be installed before you can use Endpoint Protection.
It must be installed on one site system server only, and it must be installed at the top of the hierarchy on a central administration site or a stand-alone primary site.
If your organization requires a Send connector with specific configuration options, or if you don't use the Edge Sync process, you must manually configure Send connectors.
Don't perform this procedure on an Edge Transport server that has been subscribed to the Exchange organization by using Edge Sync.
Ensure that you have configured antimalware policies before you deploy the Endpoint Protection client.
When you install an Endpoint Protection point, an Endpoint Protection client is installed on the server hosting the Endpoint Protection point.
The default antimalware policy is applied when the Endpoint Protection client is installed.
These cookies are set when you submit a form, login or interact with the site by doing something that goes beyond clicking on simple links.Some malware can compromise the security of your system, and may capture information you use to connect to other systems such as over the Internet, so we do recommend that Mac users install anti-malware software such as Sophos as a precaution.If you haven't already obtained Sophos you can download it via the following link: Please note: Before installing the Sophos software you must uninstall any other anti-virus software you may have installed on the machine (read the software manufacturer's instructions on how to do this).Updated: March 24, 2016Applies To: System Center 2012 R2 Endpoint Protection, System Center 2012 Configuration Manager, System Center 2012 Configuration Manager SP1, System Center 2012 Configuration Manager SP2, System Center 2012 R2 Configuration Manager, System Center 2012 Endpoint Protection SP1, System Center 2012 Endpoint Protection, System Center 2012 R2 Configuration Manager SP1If you manage endpoint protection for Windows 10 computers, then you must configure System Center 2012 Configuration Manager to update and distribute malware definitions for Windows Defender.Because Windows Defender is included in Windows 10, an endpoint protection agent does not need to be deployed to client computers.