Forum Widgets
Latest Discussions
WEB content filtering
Hello everyone, For a few days now, the “WEB content filtering” feature has not been performing its role of filtering web content by category, even though the rule is still in place and correctly configured. What surprises me is that this rule has been working for at least 2 years. I've deleted and re-created the rule several times, without success. Have you seen this behavior before? Do you know how to correct this problem?AzeddineJOUMARJan 14, 2025Copper Contributor26Views0likes2CommentsApi's problem
All the other api's i use work properly, but these does not. "https://api.securitycenter.microsoft.com/api/users/{user_id}/machines" "https://api.securitycenter.microsoft.com/api/users/{user_id}/alerts" Always return empty set. Any idea?Gerard Forcada BigasJan 13, 2025Copper Contributor8Views0likes0CommentsDefender for Linux clients?
Hi all, I wonder if someone could help answering this one as I can't get proper help from my organisation on this. I am a Ubuntu client platform developer in Sweden at a university and we wish to use MS Defender on Ubuntu desktop clients, but there seems to be very unclear here about the license regarding where this Defender is allowed to be run. We have it on our Windows and Mac clients today. We have a Defender package for Linux server, but can we run it? Our Windows team says it is only for Linux server and the Linux clients are excluded from the same license level as Windows and Mac clients reside on. I tried searching the internet on this, but there is none to find it seems. Please helpJaxilianJan 10, 2025Copper Contributor1.4KViews0likes13CommentsHow can I create an exception for a security recommendation for a specific device?
There are some security recommendations that I want to apply to some devices and create an exception for other devices. Is that possible? If so, how do I do that?WillRJan 08, 2025Copper Contributor55Views0likes3CommentsGet-MpComputerStatus output is blank
Hello, We recently transitioned from ESET AV to a solution that uses the Microsoft Defender engine. However, we're encountering an issue where domain-joined VMs running Windows Server 2022 return no output when executing the following command: Get-MpComputerStatus | Select AntivirusEnabled The antivirus application (Heimdal Next-Gen Antivirus) relies on this output to verify that real-time scanning is enabled. We have tried several troubleshooting steps, including rebooting the machines, running the command D i s m /Online /Enable-Feature /FeatureName:Windows-Defender, and checking the registry to ensure that Defender is not in passive mode. However, the issue persists. Has anyone encountered a similar issue, or can anyone suggest additional steps to resolve this? Any help would be greatly appreciated!unslogJan 07, 2025Brass Contributor81Views0likes3CommentsBulk Isolation Using Defender for Endpoint API
Hi Everyone, I have been recently studying the implementation of Defender for Endpoint API to perform bulk isolation/release for endpoints. This documentation (https://docs.microsoft.com/en-us/microsoft-365/security/defender-endpoint/isolate-machine?view=o365-worldwide) says that there's a limitation of 100 calls/minute and 1500 calls/hour. So I have to think of another way to overcome this. API structure uses endpoint ID as follows: POST https://api.securitycenter.microsoft.com/api/machines/{id}/isolate One of the things I thought of is that if I can run this API and fill in a 'Device Group' ID instead of endpoint ID...Not quite sure if this is applicable as per my understanding device groups are used to identify set of permissions on multiple devices. Would it work though? If there's any other solution to this I'm happy to receive suggestions.ShahinMoJan 02, 2025Copper Contributor3.9KViews0likes6CommentsCERTIFICATION PATH and EXAM CODE: Microsoft Defender for Endpoint
Hi Everyone Merry Christmas, I am interested in learning "Microsoft Defender for Endpoint" only. Could you please help with the certification path and Exam code for "Microsoft Defender for Endpoint" only. , I explored all the Microsoft documents and credential portals but its confusing or I am not able to understand.SIntuneDec 30, 2024Copper Contributor54Views0likes1CommentI have a query on cloud servers can be best managed by Intune / SCCM?
I have a query: can we onboard cloud servers to MS Defender and manage those servers via Intune? And do we have any limitations to manage via Intune? Also, what are the steps to onboard via Intune for cloud servers?madhusinha1Dec 26, 2024Copper Contributor71Views1like5Comments
Resources
Tags
- Defender14 Topics
- MDATP13 Topics
- Defender for Endpoint13 Topics
- defender atp10 Topics
- ATP10 Topics
- security7 Topics
- microsoft defender for endpoint6 Topics
- MDE5 Topics
- Microsoft Defender ATP5 Topics