Forum Discussion
Defender for Endpoint permission for part of Devices
An automation should be able to flag all windows 10 machines in defender for endpoint (only some selected should be flagged, depending on "things")
As it is an automation, we use app registration f...
Hi pwahlmueller
According to the docs here ( M365 Defender - List Machines API ) you should be able to pull the osPlatform alongside any attributes you may be using to filter in your automations.
Perhaps you could use this initial "list machines" request to create a set of the Device ID's that meet your constraints and then run the rest of your automation on each device in the resulting set? or something like that..
Best!
Dylan