Forum Discussion
Defender for Endpoint - ConfigMgr
We are a strictly on-prem shop who uses ConfigMgr. We've onboarded our devices via the Onboarding script that was generated directly from Settings -> Endpoints -> Onboarding in 365 Defender and now ...
Hello lloydz,
Did you onboard your devices using this: Onboarding using Microsoft Endpoint Configuration Manager | Microsoft Learn ?
mikhailf Yes, we used the "on-premise architecture" instructions from that link. We had an existing Antimalware Policy in ConfigMgr - and we used the onboarding file generated from 365 Defender and imported it into ConfigMgr and applied it to our device collection.
lloydz, please check that MDE security configuration management is not enabled in the Defender portal under Settings, Endpoints and Enforcement Scope since you are planning to use only SCCM.
https://learn.microsoft.com/en-us/mem/intune/protect/mde-security-integration
- That might be the issue then. That option was enabled. I've turned it off - should the devices update themselves or would we need to offboard them and onboard them again?
