Forum Discussion
Using Group policy to auto install Security Intelligence Update for Microsoft Defender Antivirus
Hi Guys,
I am trying to get a GPO to automatically install the update without user intervention. I have done the following settings but the update won't install.
We currently use Fortinet FortiClient but I still want to keep Defender up to date.
Any ideas on where i am going wrong?
J.
1 Reply
Defender signature updates are by default automatic. If this is not occurring, there could be other reasons -- licensing; passive mode. If you have MDE license and the device is onboarded to MDE, then default updates do occur automatically, but GPO prevails the default settings in fallback order, intervals, etc.,
Run MDECA to analyze the cause of signature updates; further in MPSupportFiles -> MpRegistry, MpSigStub will provide clarity on signature updates and cause for failures.
https://learn.microsoft.com/en-us/defender-endpoint/run-analyzer-windows
