I am evaluating a standalone install of ForeFront EndPoint Protection 2010 on a Windows 2008 Standard server. So far, it works fine. I have no exclusions set. My next test is running on a server with DNS, IIS7, and SQL Express. Do I have to setup complex scan exclusions? From what I understand, this is required with some antivirus programs so that that do not interfere with Windows update, SQL server, IIS compression directory etc. I know how to set exclusions. But I was hoping that since Forefront is a Microsoft product it would play nice on a server. Is anyone running Forefront without any exclusions? Any other issues I should know about?