May 01 2024 02:21 PM
Hi.
Do you know if we can install MDE on Active directory servers ( on prem and Azure servers)
OS version of server are 2016 and 2022.
Which Microsoft defender product is best suited for Active Directory server ?
Please let me know with MS KB article link.
May 01 2024 10:24 PM
SolutionIt is advisable to equip all servers with Defender for Servers. Since this is about AD servers I can also recommend you to install password protection connectors and implement Defender for Identity
https://learn.microsoft.com/en-us/azure/defender-for-cloud/plan-defender-for-servers
https://learn.microsoft.com/en-us/entra/identity/authentication/concept-password-ban-bad-on-premises
https://learn.microsoft.com/en-us/defender-for-identity/what-is
May 02 2024 10:44 AM
May 04 2024 01:15 PM
May 07 2024 02:14 PM
May 16 2024 01:19 PM
@subhashv1986
So after going through Microsoft article, I conclude that the MDE can be installed on DOmain controller server but the server can't be managed under MDE or Intune. When you onboard the Domain controller to MDE, you can see Under managed option in Device inventory as "UNKNOWN".
Microsoft has not yet released the feature where in DC servers can be managed under Intune or Defender for Endpoint security settings.
Link
https://learn.microsoft.com/en-us/mem/intune/protect/mde-security-integration
https://learn.microsoft.com/en-us/mem/intune/protect/mde-security-integration#frequently-asked-quest...
May 01 2024 10:24 PM
SolutionIt is advisable to equip all servers with Defender for Servers. Since this is about AD servers I can also recommend you to install password protection connectors and implement Defender for Identity
https://learn.microsoft.com/en-us/azure/defender-for-cloud/plan-defender-for-servers
https://learn.microsoft.com/en-us/entra/identity/authentication/concept-password-ban-bad-on-premises
https://learn.microsoft.com/en-us/defender-for-identity/what-is