Office Office Exchange Server. Not an IT pro? Windows Client. Sign in. United States English. Ask a question. Quick access. Search related threads. Remove From My Forums. Answered by:. Archived Forums. Whilst you can install the new solution on these machines, no alerts will be displayed in Microsoft Defender for Cloud.
If you have fully updated your machines with the latest monthly rollup package, there are no additional prerequisites. The installer package will check if the following components have already been installed via an update:.
In order to successfully update the built-in version of Windows Defender, which has a version number starting with 4. In addition, to keep protection components updated, see Manage Microsoft Defender Antivirus updates and apply baselines. You will need to download both the installation and onboarding packages from the portal.
In this step you will install the prevention and detection components required before onboarding your device to the Microsoft Defender for Endpoint cloud environment, to prepare the machine for onboarding. Ensure all prerequisites have been met. Microsoft Defender Antivirus will get installed and will be active unless you set it to passive mode.
In the previous section, you downloaded an installation package. The installation package contains the installer for all Microsoft Defender for Endpoint components. To uninstall, ensure the machine is offboarded first using the appropriate offboarding script. Microsoft Defender Antivirus doesn't automatically go into passive mode. You can use the installer script to help automate installation, uninstallation, and onboarding.
For more information, see the instructions in the following section to use the script with Group Policy. In the Task window that opens, go to the General tab. Select Run whether user is logged on or not and check the Run with highest privileges check box.
In the Name field, type an appropriate name for the scheduled task for example, Defender for Endpoint Deployment. Go to the Actions tab and select New Ensure that Start a program is selected in the Action field. The installer script handles the installation, and immediately perform the onboarding step after installation completes. The recommended execution policy setting is Allsigned. The installer package md4ws.
Also ensure that the permissions of the UNC path allows read access to the computer account that's installing the platform. In the dialogue box that is displayed, select the Group Policy Object that you wish to link.
Click OK. For additional configuration settings, see Configure sample collection settings and Other recommended configuration settings. The following steps are only applicable if you're using a third-party anti-malware solution. You'll need to apply the following Microsoft Defender Antivirus passive mode setting.
Verify that it was configured correctly:. For more information on how to deploy scripts in Configuration Manager, see Packages and programs in Configuration Manager. Follow the steps provided in the Complete the onboarding steps section. After onboarding the device, you can choose to run a detection test to verify that a device is properly onboarded to the service. In some instances, Microsoft Defender Antivirus is referred to as Endpoint Protection ; however, the protection engine is the same.
Although the functionality, configuration, and management are largely the same for Microsoft Defender Antivirus on Windows 10 and Windows 11, there are a few key differences on Windows Server:.
On Windows Server, automatic exclusions are applied based on your defined Server Role. However, you can set Microsoft Defender Antivirus to passive or disabled mode manually. The process of setting up and running Microsoft Defender Antivirus on a server platform includes several steps:.
This option is not available for Windows Server R2. For more information, see Options to install Microsoft Defender for Endpoint. Refer to this article , and use the Add Roles and Features Wizard. When you get to the Features step of the wizard, select the Microsoft Defender Antivirus option.
Once Microsoft Defender Antivirus is installed, your next step is to verify that it's running. On your Windows Server endpoint, run the following PowerShell cmdlet:. To do that, run the following command from a command prompt:. The sc query command returns information about the Microsoft Defender Antivirus service. To get updated antimalware security intelligence, you must have the Windows Update service running. You can change this configuration by using one of the following methods:.
0コメント