For compliance reasons there is a server that we can not have on a domain. It was/is a workgroup server with a couple of local accounts. All users that need access to the data need to have background checks by the German police (this includes "domain admins/backup operators etc). Those checks involve interviews with family/doctors etc.
Can we be part of defender 365 without being part of AAD? Perhaps AAD is not what i think it is, but if it means anyone can access the system (including our IT "admins") I need to know.