MicrosoftPaul_Huijbregts Thank you for sharing this with us. This is awesome news, I'm really excited about it.
I started to do some piloting but have hit some obstacle where you might be able to help me with. After installing the new MDE for Server on a 2012R2 server where no MMA was installed before, I was able to onboard the server and the Defender seems to get latest policy updates but unfortunately, SENSE service is not able to deliver data and is throwing errors. Windows Security Center say this device has impaired communication. We have no direct internet connection, our servers are forced to use a proxy server, which is configured appropriately to let though all necessary connection and is working fine with Server 2019. We also use the same GPO to configure the settings for Defender on Server 2012R2 and Windows Server 2019.
Looking at the event log, I can see SENSE complaining about not being able to connect to https://winatp-gw-weu.microsoft.com . I can't see those connections on our proxy server, which I was monitoring. The only ones from this server I can see are europe.cp.wd.microsoft.com:443 and eu-v20.events.data.microsoft.com:443 repeatedly.
As I said, we use the same config for Win2019 and Win2012R2 in GPO and have the telemetry service configured.
Any Idea there is some difference in behavior between the two version when it come to honoring the proxy service? Any hints will be highly appreciated.
