Forum Discussion
Does MS Defender with ATP require Intune?
Floyds_on_Greenwood Microsoft has several step-ups which would prove cheaper than an E5 license. Think the cost is something like;
Defender ATP is £3.27 per user per month
Defender ATP for Server is £3.27 per server per monthlooking 250 users, 25 servers
No you don't require Intune.
Intune is just one of the ways you can onboard devices into the Microsoft Defender for Endpoint.
https://docs.microsoft.com/en-us/windows/security/threat-protection/microsoft-defender-atp/onboard-configure
I agree this was/is correct with Intune, but does this apply with Endpoint Manager? A lot of configuration/policy is set with Endpoint Manager which hardens the devices - without it, ATP could report more vulnerabilities if in an Azure Active Directory only directory, no?
I assume you're talking about the Microsoft Defender ATP security baseline that you can deploy from Intune. This is just Microsoft recommended setting for use with Microsoft Defender for Endpoint is how I understand it. None of these settings actually require a device to be onboarded to Microsoft Defender for Endpoint.
All of the actual Microsoft Defender for Endpoint polices are configured within the Microsoft Defender Security Center portal http://securitycenter.microsoft.com/
Mark Aldridge This is correct, you don't need Endpoint Manager to deploy ATP Defender, however, hardening devices, software updates, policies etc. can help fill gaps in ATP Defender vulnerabilities.