The current policies look for Defender for servers/endpoint to be enabled and configured on clients. So recommendations show up all the time etc etc.  The secure score is affected I think if they don't have it enabled.  I thought there was a way to include a customer's existing endpoint solution if they are not using Defender. Am I wrong?  I know we can do something within Guest configuration to pull information from the customer's servers to show if their endpoint product is installed and running. Can this be passed into Defender for Cloud?