Forum Discussion

Fhilp's avatar
Fhilp
Brass Contributor
Dec 06, 2023
Solved

Defender for Endpoints - Domain Controllers

Hi

What is the correct process for managing and deploying policies for  Windows server 2019 domain controllers.

 

I know that  Security settings management doesn't work on and isn't supported on 2019 DCs as per  (https://learn.microsoft.com/en-us/mem/intune/protect/mde-security-integration?view=o365-worldwide#configure-your-tenant-to-support-microsoft-defender-for-endpoint-security-configuration-management

 

So how do I manage and get policies to a 2019 DC

 

Thanks

microsoft defender for endpoint
onboarding
threat intelligence
  • HeikeRitter's avatar
    HeikeRitter
    Dec 06, 2023
    Hi Fhilp, yes correct and this is by design, intentionally! The recommended way to manage domain controllers is via GPOs.

4 Replies

  • Sreejith_r's avatar
    Sreejith_r
    Brass Contributor
    Nov 25, 2024

    MDE Security management supports Domain controllers (preview). See important information in Use of security settings management on domain controllers (in this below article)

     https://learn.microsoft.com/en-us/mem/intune/protect/mde-security-integration?view=o365-worldwide#use-of-security-settings-management-on-domain-controllers 

  • Deleted's avatar
    Deleted
    Dec 08, 2023
    Yes the best practies is to manage mde on dc with gpo, security management features is not supported on domain controller.
  • HeikeRitter's avatar
    HeikeRitter
    Icon for Microsoft rankMicrosoft
    Dec 06, 2023
    Hi Fhilp, yes correct and this is by design, intentionally! The recommended way to manage domain controllers is via GPOs.

Resources