cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Microsoft Security Tech Accelerator
Dec 06 2023, 07:00 AM - 12:00 PM (PST)
Microsoft Tech Community
Find out more

Permit access for VM machine in Azure to Microsoft Defender365 via NSG rules

magielonczyk
Copper Contributor

‎Oct 27 2023 05:12 AM

‎Oct 27 2023 05:12 AM

Permit access for VM machine in Azure to Microsoft Defender365 via NSG rules

According to Azure service tags overview | Microsoft Learn Service Tag MicrosoftDefenderForEndpoint is not available since a long long time and no one know when Microsoft will add this. 

 

In the meantime I'm looking for a list of IP CIDR's so Virtual Machine within Azure can communicate with Microsoft Defender 365 (https://security.microsoft.com/).

 

Deploying Azure Firewall for this is unacceptable (cost is very high).

 

 

 

336 Views
0 Likes
4 Replies
Reply
4 Replies
eliekarkafy

‎Oct 27 2023 09:19 AM

‎Oct 27 2023 09:19 AM

Re: Permit access for VM machine in Azure to Microsoft Defender365 via NSG rules

@magielonczyk now you can onboard your VM with the new streamlined onboarding experience, the Defender for Endpoint-recognized simplified domain *.endpoint.security.microsoft.com will consolidate and replace URLs. So from your NSG outbound rule open connectivity to this url to allow your VM to communicate with MDE 

 

Microsoft Defender for Endpoint - Streamline device connectivity

0 Likes
Reply
magielonczyk

‎Oct 30 2023 03:58 AM

‎Oct 30 2023 03:58 AM

Re: Permit access for VM machine in Azure to Microsoft Defender365 via NSG rules

@eliekarkafy
How with Network Security Groups we can permit access with IP's CIDR instead of Service Tags for Microsoft Defender for Endpoint ?
0 Likes
Reply
eliekarkafy

‎Oct 30 2023 09:20 AM

‎Oct 30 2023 09:20 AM

Re: Permit access for VM machine in Azure to Microsoft Defender365 via NSG rules

run the MDE analyzer on your Azure VM to know which IP or URL your machine is trying to connect to

https://learn.microsoft.com/en-us/microsoft-365/security/defender-endpoint/run-analyzer-windows?view...
0 Likes
Reply
magielonczyk

‎Nov 07 2023 12:46 AM

‎Nov 07 2023 12:46 AM

Re: Permit access for VM machine in Azure to Microsoft Defender365 via NSG rules

https://feedback.azure.com/d365community/search/?q=MicrosoftDefenderForEndpoint - anyone can vote here for this tag to get availability.

Microsoft confirms that there is no GA for this service tag "MicrosoftDefenderForEnpoint". This will be remove soon from the service tag lists...
0 Likes
Reply