Microsoft Defender ATP running on Windows 7 and Windows Server 2008R2 is moving to exclusively use SHA-2 signing, which will help drive greater security for our customers.
This change does not require any action unless you are running Microsoft Defender ATP on Windows 7 or Windows Server 2008 R2.
Customers that are running on these OS versions are required to take the following actions before November 2, 2020 or their agents will stop sending data to Microsoft Defender ATP:
- Install the SHA-2 signing Windows updates for your OS as described in https://support.microsoft.com/help/4472027/2019-sha-2-code-signing-support-requirement-for-windows-and-wsus
- Update to the latest version of the Log Analytics Windows agent (https://go.microsoft.com/fwlink/?LinkId=828603 or https://go.microsoft.com/fwlink/?LinkId=828604)
More information about SHA-2 signing enforcement is available in the https://docs.microsoft.com/en-us/azure/azure-monitor/platform/log-analytics-agent#sha-2-code-signing-support-requirement-for-windows.
For further questions, please feel free to reach out Microsoft Defender ATP Support.
Thank you,
The Microsoft Defender ATP team
