Defender AV Security Intelligence and Product Updates for Azure Virtual Desktops

BasraM 

Hi Basra,

I’m sure the article you linked to is a bit outdated, and the default behavior of Defender AV has changed since then. Defender AV will automatically receive security intelligence updates even if it is running in passive mode.

Product updates, on the other hand, are not automatically installed by default. You will need to configure Defender AV to receive product updates by following the steps in the article you linked to. Once you have configured Defender AV to receive product updates, it will automatically download and install the latest updates when they are available. However, if you are not comfortable configuring Defender AV yourself, you can always reach out to your https://triotechsystems.com/security/ for help. They will be able to help you configure Defender AV and ensure that your AVDs are properly protected.

I hope this helps!

Hi, that article only really applies to non-persistent environments when you want to offload the downloading of Defender Updates to a dedicated VM.

If you are running Persistent VMs and are running Defender in passivated mode then your VMs will still reach out and download security updates. You can see how this process works here - https://learn.microsoft.com/en-us/microsoft-365/security/defender-endpoint/microsoft-defender-antivirus-updates?view=o365-worldwide and here https://learn.microsoft.com/en-us/microsoft-365/security/defender-endpoint/cloud-protection-microsoft-defender-antivirus?view=o365-worldwide