Reporting is the key to keeping your network virus-free. Some readers may object to this statement. Some may believe, it's your client policies or your definition update methodology that are the most important factor in keeping malware off your network. And while these things are important, reporting is the most vital.

It goes without saying that reporting gives you awareness into the status of your client policies and also your current definition status, but that's not why it's so important. Reporting is key, because it enables you to identify trends and common attacking vectors by allowing you to view your environment as a whole over a span of time. This in turn empowers you, the AV admin, to be proactive. It gives you the knowledge you need to plug the dike, to stamp out fires, and deal with small problems before they become massive ones.

The recipes in this chapter will show you how to best leverage the built-in reports for SCEP within SCCM 2012, as well as showing you how to tap into the most unlimited options for custom reporting with Microsoft SQL Report Builder 3.0.