Forum Discussion
Permit access for VM machine in Azure to Microsoft Defender365 via NSG rules
According to https://learn.microsoft.com/en-us/azure/virtual-network/service-tags-overview Service Tag MicrosoftDefenderForEndpoint is not available since a long long time and no one know when Micros...
magielonczyk now you can onboard your VM with the new streamlined onboarding experience, the Defender for Endpoint-recognized simplified domain *.endpoint.security.microsoft.com will consolidate and replace URLs. So from your NSG outbound rule open connectivity to this url to allow your VM to communicate with MDE
Microsoft Defender for Endpoint - Streamline device connectivity
- elieelkarkafi
How with Network Security Groups we can permit access with IP's CIDR instead of Service Tags for Microsoft Defender for Endpoint ?- run the MDE analyzer on your Azure VM to know which IP or URL your machine is trying to connect to
https://learn.microsoft.com/en-us/microsoft-365/security/defender-endpoint/run-analyzer-windows?view=o365-worldwide- https://feedback.azure.com/d365community/search/?q=MicrosoftDefenderForEndpoint - anyone can vote here for this tag to get availability.
Microsoft confirms that there is no GA for this service tag "MicrosoftDefenderForEnpoint". This will be remove soon from the service tag lists...
