Protecting Windows Server with Windows Defender ATP

Published Oct 04 2018 01:16 PM 148K Views
Microsoft

Windows Defender Advanced Threat Protection (Windows Defender ATP) is a unified security platform that covers endpoint protection platform (EPP) and endpoint detection and response (EDR). Initially we released the product for Windows 10 only, but customers have asked for support on other platforms, Windows Server in particular. This year, we've made Windows Defender ATP available to Windows 7 and Windows 8.1 clients, as well as macOS, Linux, and Windows Server. As we continue engineering a unified security platform, you will see a more seamless approach across platforms.

 

This blog is for enterprise customers who want to use the Windows Defender ATP platform on Windows Server and need practical guidance on what needs to be in place for licensing and infrastructure.

 

Screen Shot 2018-10-04 at 21.54.05.png

 Image: Windows Server 2016 onboarded to Windows Defender ATP 

 

The Microsoft-recommended configuration for the best security is staying current with Windows. While we provide support for previous versions of Windows, the latest releases provide superior security capabilities. If you are running previous versions of Windows, one of the most important things you can be doing is getting a plan to update your Windows environment.  

 

Endpoint protection platform

The endpoint protection platform (EPP) of Windows Defender ATP includes two capabilities: (1) Attack surface reduction (ASR), which helps seal the available attack surface that can be leveraged by threat actors as much as possible, and (2) Next generation protection (NGP), which is a cloud-powered antivirus solution.

 

Attack surface reduction is a set of capabilities that helps organizations reduce the available attack surface. The technologies that power ASR are network protection, exploit protection, controlled folder access, and ASR rules. ASR is available on Windows 10 Fall Creators Update or later and on Windows Server 1803 and later.

 

Operating System

License

Deployment

Configuration

Reporting

Windows 10

Windows E5 or Microsoft 365 Enterprise E5

ASR relies on Windows Defender Antivirus, which is built-in and requires no agent installation

If licensed, through Microsoft Intune or System Center Configuration Manager. Alternatively, PowerShell or Group Policies.

Windows Defender Security Center, or if licensed System Center Configuration Manager or Microsoft Intune

Windows Server 1803, Windows Server 2019

Azure Security Center Pay-As-You-Go

ASR relies on Windows Defender Antivirus, which is built-in and requires no agent installation

If licensed, through System Center Configuration Manager. Alternatively, PowerShell or Group Policies.

Windows Defender Security Center, or if licensed System Center Configuration Manager

 

Windows Defender Antivirus is available to enterprise customers starting with Windows 10 Anniversary Update and Windows Server 2016. Previous versions of Windows and Windows Server continue to leverage System Center Endpoint Protection. The following table has information about Windows Defender Antivirus on different Windows versions and Windows Server versions on-premises, on Azure, or on third-party cloud service.

 

Operating System

License

Deployment

Configuration

Reporting

Windows 10

No additional license required to use Windows Defender Antivirus

Windows Defender Antivirus is built-in and requires no agent installation

If licensed, through Microsoft Intune or System Center Configuration Manager. Alternatively, Group Policies or PowerShell.

If licensed, through Windows Defender Security Center, System Center Configuration Manager or Microsoft Intune

Windows 8.1 and Windows 7

System Center Configuration Manager with System Center Endpoint Protection

System Center Endpoint Protection agent can be deployed through System Center Configuration Manager

System Center Configuration Manager

If licensed, through Windows Defender Security Center or System Center Configuration Manager

Windows Server 1803, Windows Server 2019

No additional license required to use Windows Defender Antivirus

Windows Defender Antivirus is built-in and requires no agent installation

If licensed, through System Center Configuration Manager. Alternatively, Group Policies or PowerShell.

If licensed, through Windows Defender Security Center or System Center Configuration Manager

Windows Server 2016

No additional license required to use Windows Defender Antivirus

Windows Defender Antivirus is built-in and requires no agent installation

If licensed, through System Center Configuration Manager. Alternatively, Group Policies or PowerShell.

If licensed, Windows Defender Security Center, System Center Configuration Manager or Azure Security Center

Windows Server 2012 R2

System Center Configuration Manager with System Center Endpoint Protection

System Center Endpoint Protection agent can be deployed with System Center Configuration Manager

System Center Configuration Manager

System Center Configuration Manager or if licensed, through Windows Defender Security Center or Azure Security Center

Windows Server 2012, Windows Server 2008 R2, Windows Server 2008

 System Center Configuration Manager with System Center Endpoint Protection

System Center Endpoint Protection agent can be deployed with System Center Configuration Manager

System Center Configuration Manager

System Center Configuration Manager or if licensed, through Azure Security Center

(Windows Defender Security Center is the web portal available for Windows Defender ATP customers (requires Windows E5 or Microsoft 365 Enterprise E5)

 

In addition to Windows Defender Antivirus and System Center Endpoint Protection, enterprise customers can use Microsoft Antimalware for Azure for virtual machines that are hosted on Microsoft Azure. Note that If you are a Windows Defender ATP customer you should assess which Antivirus solution best fits your needs.

 

Supporting Documentation:

 

Endpoint detection and response

Endpoint detection and response (EDR) capabilities in Windows Defender ATP were first available to enterprise customers as a built-in solution starting with Windows 10 Anniversary Update and Windows Server 1803, but these capabilities have since expanded to support previous versions of Windows and Windows Server. The following table has information about Windows Defender ATP on different Windows versions and Windows Server versions on-premises, on Azure, or on third-party cloud service.

 

Operating System

License

Deployment

Configuration

Reporting

Windows 10

Windows E5 or Microsoft 365 Enterprise E5

Windows Defender ATP is built-in to the operating system

Local script, Group Policies, System Center Configuration Manager, or Microsoft Intune

Windows Defender Security Center

Windows 8.1 and Windows 7

Windows E5 or Microsoft 365 Enterprise E5

Windows Defender ATP on legacy operating system requires installation of an agent

Agent deployment can be through any preferred deployment method such as System Center Configuration Manager

Windows Defender Security Center

Windows Server 1803, Windows Server 2019

Azure Security Center Pay-As-You-Go

Windows Defender ATP is built-in to the operating system

Local script, group policies and, if licensed, through System Center Configuration Manager

Windows Defender Security Center

Windows Server 2016, Windows Server 2012 R2

Azure Security Center Pay-As-You-Go

Windows Defender ATP on legacy operating system requires installation of an agent

Agent deployment can be through any preferred deployment method such as System Center Configuration Manager

Windows Defender Security Center and Azure Security Center

 

Support for Windows Server 2019 and Windows Server 1803 is currently in public preview for Windows Defender ATP.

 

Supporting Documentation:

 

Windows Defender ATP unified endpoint security platform

Windows Defender ATP is a unified platform that helps keep your business data and users safe from advanced attacks. And with expanded support for Windows Server, previous versions of Windows, and additional client hardware, you can protect a wider array of devices, servers, and endpoints. Your feedback is important to us as we continue to make improvements to Windows Defender ATP.

 

WDATP.png

54 Comments
%3CLINGO-SUB%20id%3D%22lingo-sub-323493%22%20slang%3D%22en-US%22%3ERe%3A%20Protecting%20Windows%20Server%20with%20Windows%20Defender%20ATP%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-323493%22%20slang%3D%22en-US%22%3E%3CP%3EHi%26nbsp%3B%3CSPAN%20class%3D%22UserName%20lia-user-name%20lia-user-rank-Occasional-Visitor%20lia-component-message-view-widget-author-username%22%3E%3CSPAN%20class%3D%22%22%3E%3CA%20id%3D%22link_44%22%20class%3D%22lia-link-navigation%20lia-page-link%20lia-user-name-link%22%20href%3D%22https%3A%2F%2Ftechcommunity.microsoft.com%2Ft5%2Fuser%2Fviewprofilepage%2Fuser-id%2F260653%22%20target%3D%22_self%22%3ED8234842%3C%2FA%3E%2C%20the%20licensing%20model%20for%20Windows%20Defender%20ATP%20EDR%20on%20Server%20is%20through%20Azure%20Security%20Center.%20For%20the%20successful%20on-boarding%20you%20will%20want%20to%20ensure%20that%20the%20servers%20are%20first%20added%20to%20Azure%20Security%20Center%20and%20have%20the%20integration%20between%20Azure%20Security%20Center%20and%20Windows%20Defender%20ATP%20enabled.%20If%20that's%20the%20case%20all%20your%20Servers%20in%20Azure%20Security%20Center%20will%20automatically%20show%20up%20in%20the%20Windows%20Defender%20Security%20Center.%3C%2FSPAN%3E%3C%2FSPAN%3E%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-SUB%20id%3D%22lingo-sub-309206%22%20slang%3D%22en-US%22%3ERe%3A%20Protecting%20Windows%20Server%20with%20Windows%20Defender%20ATP%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-309206%22%20slang%3D%22en-US%22%3EEDR%20for%20Server%202012%2F2016%20and%20EPP%20for%20Server%202019%20states%20that%20%22Azure%20Security%20Center%20Pay-As-You-Go%22%20license%20is%20required.%20The%20onboarding%20instructions%20for%20WDATP%20state%20Install%20the%20MMA%20and%20configured%20it%20for%20the%20Defender%20Workspace%20ID.%20If%20you%20attempt%20to%20onboard%20to%20Azure%20Security%20Center%20you%20receive%20a%20separate%20Workspace%20ID.%20We%20want%20all%20of%20our%20devices%20to%20be%20managed%20from%20the%20%22Windows%20Defender%20Security%20Center%22%20as%20the%20WDATP%20technical%20instructions%20specify.%20In%20this%20case%20what%20license%20is%20required%20as%20the%20device%20does%20not%20appear%20in%20the%20Azure%20Security%20Center%3F%3C%2FLINGO-BODY%3E%3CLINGO-SUB%20id%3D%22lingo-sub-298932%22%20slang%3D%22en-US%22%3ERe%3A%20Protecting%20Windows%20Server%20with%20Windows%20Defender%20ATP%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-298932%22%20slang%3D%22en-US%22%3E%3CP%3E%3CSPAN%3EN%C3%A3o%20deixe%20a%20diversidade%20se%20transformar%20em%20adversidade%20porque%20a%20tecnologia%20j%C3%A1%20%C3%A9%20a%20diferen%C3%A7a%26nbsp%3B%3C%2FSPAN%3E%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-SUB%20id%3D%22lingo-sub-298926%22%20slang%3D%22en-US%22%3ERe%3A%20Protecting%20Windows%20Server%20with%20Windows%20Defender%20ATP%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-298926%22%20slang%3D%22en-US%22%3E%3CP%3E%3CSPAN%3Esaber%20lidar%20com%20a%20diversidade%2C%20n%C3%A3o%20%C3%A9%20aceitar%20as%20diferen%C3%A7as%2C%20%C3%A9%20estar%20apto%20e%20seguro%20de%20si%20proprio%20e%20saber%20deixar%20as%20pessoas%20livres%20dentro%20da%20tecnologia%20porque%20l%C3%A1%20e%20onde%20a%20muita%20diversidade%20de%20generos%20de%20varios%20modos%3C%2FSPAN%3E%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-SUB%20id%3D%22lingo-sub-272088%22%20slang%3D%22en-US%22%3ERe%3A%20Protecting%20Windows%20Server%20with%20Windows%20Defender%20ATP%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-272088%22%20slang%3D%22en-US%22%3ECertainly%20something%20we%20started%20to%20discuss%20between%20the%20Azure%20Security%20Center%20and%20Windows%20Defender%20ATP%20team.%20For%20now%20you%20want%20to%20make%20sure%20you%20look%20for%20WDATP%20when%20it%20comes%20to%20endpoint%20and%20ASC%20for%20server%20security%20recommendation.%3C%2FLINGO-BODY%3E%3CLINGO-SUB%20id%3D%22lingo-sub-272087%22%20slang%3D%22en-US%22%3ERe%3A%20Protecting%20Windows%20Server%20with%20Windows%20Defender%20ATP%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-272087%22%20slang%3D%22en-US%22%3E%3CP%3EGood%20suggestion%20Susan.%20I%20will%20defiantly%20pass%20it%20to%20my%20colleague%20who%20is%20responsible%20for%20threat%20analytics.%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-SUB%20id%3D%22lingo-sub-268714%22%20slang%3D%22en-US%22%3ERe%3A%20Protecting%20Windows%20Server%20with%20Windows%20Defender%20ATP%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-268714%22%20slang%3D%22en-US%22%3E%3CP%3EA%20couple%20of%20questions%3A%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CUL%3E%3CLI%3EAbout%20the%20Secure%20Socore%20in%20Windows%20Defender%20ATP%20(securitycenter.windows.com).%20The%20Security%20Controls%20(EDR%2C%20Antivirus%2C%20OS%20Security%20Updates%2C%20Exploint%20Guard%2C%20etc)%20currently%20applied%20to%20Windows%2010%20machines.%20Will%20those%20controles%20also%20apply%20for%20Windows%20Server%20Machines%3F%20(I've%20attached%20a%20screenshot%20of%20the%20controls%20to%20clarify.)%3C%2FLI%3E%3C%2FUL%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CUL%3E%3CLI%3ENow%20Azure%20Security%20Center%20has%20it's%20own%20Secure%20Score%2C%20with%20recommanations%20for%20Virtual%20Machines%20(ex%3A%20Apply%20disk%20encryption%2C%20Install%20endpoint%20protection%2C%20etc).%20If%20I%20have%20a%20Windows%20Server%20Machine%20with%20WDATP%20for%20Server%20and%20also%20onboarded%20on%26nbsp%3BAzure%20Security%20Center%2C%20will%20I%20have%20to%20check%20out%20both%26nbsp%3B%3CSPAN%3Esecuritycenter.windows.com%20and%20Azure%20Security%20Center%20for%20Score%20%2F%20Security%20Controles%20%2F%20Recommanations%3F%3C%2FSPAN%3E%3C%2FLI%3E%3C%2FUL%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-SUB%20id%3D%22lingo-sub-268530%22%20slang%3D%22en-US%22%3ERe%3A%20Protecting%20Windows%20Server%20with%20Windows%20Defender%20ATP%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-268530%22%20slang%3D%22en-US%22%3E%3CP%3EAlerts%20I%20get%2C%20I%20want%20to%20get%20notified%20when%20there%20are%20new%20threat%20analytics%20posted%20to%20the%20console.%26nbsp%3B%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-SUB%20id%3D%22lingo-sub-268527%22%20slang%3D%22en-US%22%3ERe%3A%20Protecting%20Windows%20Server%20with%20Windows%20Defender%20ATP%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-268527%22%20slang%3D%22en-US%22%3E%3CP%3EHi!%20Happy%20to%20help.%20Both%20Windows%20Defender%20ATP%20and%20Azure%20Security%20Center%20can%20send%20email%20notifications%20when%20new%20stuff%20happens.%20Check%20out%3A%20(WDATP)%26nbsp%3B%3CA%20href%3D%22https%3A%2F%2Fdocs.microsoft.com%2Fen-us%2Fwindows%2Fsecurity%2Fthreat-protection%2Fwindows-defender-atp%2Fconfigure-email-notifications-windows-defender-advanced-threat-protection%22%20target%3D%22_blank%22%20rel%3D%22noopener%20noreferrer%22%3Ehttps%3A%2F%2Fdocs.microsoft.com%2Fen-us%2Fwindows%2Fsecurity%2Fthreat-protection%2Fwindows-defender-atp%2Fconfigure-email-notifications-windows-defender-advanced-threat-protection%3C%2FA%3E%20and%20(ASC)%26nbsp%3B%3CA%20href%3D%22https%3A%2F%2Fblogs.msdn.microsoft.com%2Fazuresecurity%2F2016%2F11%2F22%2Ftip-of-the-day-azure-security-center-email-alerts%2F%22%20target%3D%22_blank%22%20rel%3D%22noopener%20noreferrer%22%3Ehttps%3A%2F%2Fblogs.msdn.microsoft.com%2Fazuresecurity%2F2016%2F11%2F22%2Ftip-of-the-day-azure-security-center-email-alerts%2F%3C%2FA%3E%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-SUB%20id%3D%22lingo-sub-268378%22%20slang%3D%22en-US%22%3ERe%3A%20Protecting%20Windows%20Server%20with%20Windows%20Defender%20ATP%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-268378%22%20slang%3D%22en-US%22%3E%3CP%3EPardon%20for%20the%20additional%20question%2C%20is%20the%20threat%20console%20information%20available%20outside%20of%20the%20security%20center%2C%20or%20is%20there%20a%20way%20to%20get%20alerted%20when%20a%20new%20post%20goes%20up%3F%26nbsp%3B%20Also%20can%20one%20share%20this%20data%20with%20other%20team%20members%2Fpeople%3F%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-SUB%20id%3D%22lingo-sub-268116%22%20slang%3D%22en-US%22%3ERe%3A%20Protecting%20Windows%20Server%20with%20Windows%20Defender%20ATP%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-268116%22%20slang%3D%22en-US%22%3E%3CP%3EHi!%26nbsp%3BIt%20is%20the%20same%20console%20securitycenter.windows.com.%20Once%20Azure%20Security%20Center%20support%20this%20Server%20build%20it%20will%20be%20the%20same%20reporting%20story%20like%20other%20versions.%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-SUB%20id%3D%22lingo-sub-268050%22%20slang%3D%22en-US%22%3ERe%3A%20Protecting%20Windows%20Server%20with%20Windows%20Defender%20ATP%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-268050%22%20slang%3D%22en-US%22%3E%3CP%3ESo%20is%20the%20Server%202019%20ATP%20in%20a%20different%20console%20than%20the%20workstations%20console%3F%20%26nbsp%3B%3CA%20href%3D%22https%3A%2F%2Fsecuritycenter.windows.com%2Fdashboard%22%20target%3D%22_blank%22%20rel%3D%22nofollow%20noopener%20noreferrer%22%3Ehttps%3A%2F%2Fsecuritycenter.windows.com%2Fdashboard%3C%2FA%3E%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-SUB%20id%3D%22lingo-sub-651967%22%20slang%3D%22en-US%22%3ERe%3A%20Protecting%20Windows%20Server%20with%20Windows%20Defender%20ATP%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-651967%22%20slang%3D%22en-US%22%3E%3CP%3E%3CA%20href%3D%22https%3A%2F%2Ftechcommunity.microsoft.com%2Ft5%2Fuser%2Fviewprofilepage%2Fuser-id%2F69202%22%20target%3D%22_blank%22%3E%40Milad%20Aslaner%3C%2FA%3E%26nbsp%3Bthank%20you.%20%26nbsp%3BI%20am%20still%20a%20little%20unclear%20about%20which%20workspace%20ID%20to%20install%20MMA%20to.%20%26nbsp%3BI%20already%20have%20servers%20with%20the%20OMS%20agent%20(now%20MMA)%20installed%20using%20my%20log%20analytics%20workspace%20ID.%20%26nbsp%3BHow%20do%20I%20onboard%20these%20same%20servers%20to%20ATP%20now%3F%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-SUB%20id%3D%22lingo-sub-713187%22%20slang%3D%22en-US%22%3ERe%3A%20Protecting%20Windows%20Server%20with%20Windows%20Defender%20ATP%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-713187%22%20slang%3D%22en-US%22%3E%3CP%3EHi%20%3CA%20href%3D%22https%3A%2F%2Ftechcommunity.microsoft.com%2Ft5%2Fuser%2Fviewprofilepage%2Fuser-id%2F69202%22%20target%3D%22_blank%22%3E%40Milad%20Aslaner%3C%2FA%3E%20%2C%3C%2FP%3E%3CP%3EI'm%20confused%20over%20licencing%20here%20-%20there%20is%20no%20such%20product%20as%20security%20centre%20'Pay%20as%20you%20go'%20-%20how%20is%20the%20licence%20actually%20working%20here%3F%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3EFor%20example%20if%20I%20just%20connect%20all%20my%20Azure%20servers%20to%20the%20Defender%20ATP%20workspace%20directly%20and%20don't%20use%20security%20centre%20at%20all%20-%20what%20licence%20is%20required%20for%20that%3F%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3EThanks%2C%3C%2FP%3E%3CP%3ERich%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-SUB%20id%3D%22lingo-sub-728479%22%20slang%3D%22en-US%22%3ERe%3A%20Protecting%20Windows%20Server%20with%20Windows%20Defender%20ATP%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-728479%22%20slang%3D%22en-US%22%3E%3CP%3E%3CA%20href%3D%22https%3A%2F%2Ftechcommunity.microsoft.com%2Ft5%2Fuser%2Fviewprofilepage%2Fuser-id%2F64296%22%20target%3D%22_blank%22%3E%40Richard%20Harrison%3C%2FA%3E%20the%20pay%20as%20you%20go%20subscription%20information%20can%20be%20found%20here%3A%26nbsp%3B%3CFONT%20style%3D%22background-color%3A%20%23ffffff%3B%22%3E%3CA%20href%3D%22https%3A%2F%2Fazure.microsoft.com%2Fen-us%2Foffers%2Fms-azr-0003p%2F%22%20target%3D%22_blank%22%20rel%3D%22noopener%20noreferrer%22%3Ehttps%3A%2F%2Fazure.microsoft.com%2Fen-us%2Foffers%2Fms-azr-0003p%2F%3C%2FA%3E%3C%2FFONT%3E%3C%2FP%3E%0A%3CP%3E%26nbsp%3B%3C%2FP%3E%0A%3CP%3ERegarding%20the%20second%20part%20of%20your%20question...%20to%20be%20compliant%20with%20MDATP%20licensing%20for%20servers%2C%20each%20server%20needs%20to%20have%20an%20Azure%20Security%20Center%20Standard%20(per%20node)%20license.%20There%20are%20two%20ways%20to%20license%20ASC%3A%20Pay-as-you-go%20or%20ASC%20reservations.%26nbsp%3B%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-SUB%20id%3D%22lingo-sub-728612%22%20slang%3D%22en-US%22%3ERe%3A%20Protecting%20Windows%20Server%20with%20Windows%20Defender%20ATP%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-728612%22%20slang%3D%22en-US%22%3E%3CP%3E%3CA%20href%3D%22https%3A%2F%2Ftechcommunity.microsoft.com%2Ft5%2Fuser%2Fviewprofilepage%2Fuser-id%2F111421%22%20target%3D%22_blank%22%3E%40Chris%20Jones%3C%2FA%3E-%20The%20ASC%20pay-as-you-go%20pricing%20for%20servers%20put%20MDATP%20out%20of%20reach%20for%20us%20(literally%206x%20vs.%20two%20other%20EDR%20products%20we%20had%20quoted)%2C%20but%20I%20just%20went%20looking%20for%20the%20reservations%20you%20mentioned%20and%20can't%20find%20any%20info%20in%20Azure%20portal%20or%20the%20pricing%20calculator.%26nbsp%3B%20Do%20you%20have%20a%20link%20to%20the%20ASC%20reservations%3F%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3EThanks%2C%3C%2FP%3E%3CP%3EJoe%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-SUB%20id%3D%22lingo-sub-728652%22%20slang%3D%22en-US%22%3ERe%3A%20Protecting%20Windows%20Server%20with%20Windows%20Defender%20ATP%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-728652%22%20slang%3D%22en-US%22%3E%3CP%3EHi%20%3CA%20href%3D%22https%3A%2F%2Ftechcommunity.microsoft.com%2Ft5%2Fuser%2Fviewprofilepage%2Fuser-id%2F209082%22%20target%3D%22_blank%22%3E%40Joe%20Sanders%3C%2FA%3E%20-%26nbsp%3BI%20understand%20your%20concern%20regarding%20the%20pricing.%20I'd%20recommend%20reaching%20out%20to%20your%20Microsoft%20account%20team%20or%20reseller%20regarding%20this.%20There%20are%20benefits%20if%20you%20have%20MDATP%20client%20licensing%20that%20should%20be%20able%20to%20help%20on%20the%20server%20side%20of%20things%20from%20a%20cost%20perspective.%3C%2FP%3E%0A%3CP%3E%26nbsp%3B%3C%2FP%3E%0A%3CP%3ERegarding%20the%20reservations%2C%20it's%20really%20just%20another%20term%20for%20an%20Azure%20Monetary%20Commitment%20that%20is%20done%20through%20an%20Enterprise%20Agreement.%20If%20you%20don't%20have%20one%2C%20you%20can%20speak%20with%20someone%20about%20setting%20one%20up%20%3CA%20title%3D%22Microsoft%20Azure%20EA%22%20href%3D%22https%3A%2F%2Fazure.microsoft.com%2Fen-us%2Fpricing%2Fpurchase-options%2Fenterprise-agreement%2F%22%20target%3D%22_blank%22%20rel%3D%22noopener%20noreferrer%22%3Ehere%3C%2FA%3E.%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-SUB%20id%3D%22lingo-sub-729065%22%20slang%3D%22en-US%22%3ERe%3A%20Protecting%20Windows%20Server%20with%20Windows%20Defender%20ATP%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-729065%22%20slang%3D%22en-US%22%3E%3CP%3EHi%26nbsp%3B%3CA%20href%3D%22https%3A%2F%2Ftechcommunity.microsoft.com%2Ft5%2Fuser%2Fviewprofilepage%2Fuser-id%2F303781%22%20target%3D%22_blank%22%3E%40Chris_Jones%3C%2FA%3E%2C%3C%2FP%3E%3CP%3ENow%20you%20are%20making%20things%20even%20more%20confusing%20%3A)%3C%2Fimg%3E%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3EWhat%20on%20earth%20are%20ASC%20reservations%3F%20There%20are%20various%20things%20you%20can%20reserve%20in%20Azure%20but%20ASC%20is%20not%20one%20of%20them%3F%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3EI%20think%20the%20statement%20needs%20to%20be%20to%20use%20windows%20defender%20ATP%20portal%20for%20'servers'%20in%20Azure%20they%20have%20to%20attached%20to%20an%20Azure%20Security%20Centre%20standard%20subscription%20-%20as%20simple%20as%20that%3F%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3ECheers%2C%3C%2FP%3E%3CP%3ERich%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-SUB%20id%3D%22lingo-sub-789767%22%20slang%3D%22en-US%22%3ERe%3A%20Protecting%20Windows%20Server%20with%20Windows%20Defender%20ATP%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-789767%22%20slang%3D%22en-US%22%3E%3CP%3EHi%2C%20I%20don't%20quite%20understand%20the%20server%20licencing%20for%20on%20premise%20servers.%20are%20they%20still%20required%20to%20have%20azure%20PAYG%3F%20They%20would%20be%20from%20versions%202008R2%20to%202019.%20Also%2C%20I%20presume%20I%20can%20deploy%20the%20agent%20manually%20or%20via%20GPO%3F%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-SUB%20id%3D%22lingo-sub-832145%22%20slang%3D%22en-US%22%3ERe%3A%20Protecting%20Windows%20Server%20with%20Windows%20Defender%20ATP%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-832145%22%20slang%3D%22en-US%22%3E%3CP%3EWhat%20is%20the%20pricing%20model%20for%20On-Prem%20Windows%20servers%20we're%20monitoring%20through%20the%20Azure%20Security%20Center%3F%20The%20pricing%20wasn't%20explained%20here%3A%26nbsp%3B%3CFONT%3E%3CA%20href%3D%22https%3A%2F%2Fazure.microsoft.com%2Fen-us%2Fblog%2Fazure-security-center-extends-advanced-threat-protection-to-hybrid-cloud-workloads%2F%22%20target%3D%22_blank%22%20rel%3D%22noopener%20noreferrer%22%3Ehttps%3A%2F%2Fazure.microsoft.com%2Fen-us%2Fblog%2Fazure-security-center-extends-advanced-threat-protection-to-hybrid-cloud-workloads%2F%3C%2FA%3E%3C%2FFONT%3E%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-SUB%20id%3D%22lingo-sub-858125%22%20slang%3D%22en-US%22%3ERe%3A%20Protecting%20Windows%20Server%20with%20Windows%20Defender%20ATP%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-858125%22%20slang%3D%22en-US%22%3E%3CP%3EHi%26nbsp%3B%3CA%20href%3D%22https%3A%2F%2Ftechcommunity.microsoft.com%2Ft5%2Fuser%2Fviewprofilepage%2Fuser-id%2F303781%22%20target%3D%22_blank%22%3E%40Chris_Jones%3C%2FA%3E%3CSPAN%3E%2C%26nbsp%3B%3C%2FSPAN%3E%26amp%3B%26nbsp%3B%3CSPAN%20class%3D%22UserName%20lia-user-name%20lia-user-rank-Microsoft%20lia-component-message-view-widget-author-username%22%3E%3CA%20href%3D%22https%3A%2F%2Ftechcommunity.microsoft.com%2Ft5%2Fuser%2Fviewprofilepage%2Fuser-id%2F69202%22%20target%3D%22_self%22%3E%3CSPAN%20class%3D%22%22%3EMilad%20Aslaner%2C%3C%2FSPAN%3E%3C%2FA%3E%3C%2FSPAN%3E%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3E%3CSPAN%20class%3D%22UserName%20lia-user-name%20lia-user-rank-Microsoft%20lia-component-message-view-widget-author-username%22%3E%3CSPAN%20class%3D%22%22%3EHas%20there%20been%20any%20clarification%20on%20the%20Licensing%20costs%20for%20running%20MDATP%20on%20Servers%20either%20onPrem%20or%20in%20AWS%20or%20Azure%3F%3C%2FSPAN%3E%3C%2FSPAN%3E%3C%2FP%3E%3CP%3E%3CSPAN%20class%3D%22UserName%20lia-user-name%20lia-user-rank-Microsoft%20lia-component-message-view-widget-author-username%22%3E%3CSPAN%20class%3D%22%22%3EMy%20simple%20take%20on%20this%20discussion%20is%20that%20they%20need%20to%20be%20attached%2Fregistered%2Fmonitored%20by%20ASC%20to%20be%20valid%3F%3C%2FSPAN%3E%3C%2FSPAN%3E%3C%2FP%3E%3CP%3E%3CSPAN%20class%3D%22UserName%20lia-user-name%20lia-user-rank-Microsoft%20lia-component-message-view-widget-author-username%22%3E%3CSPAN%20class%3D%22%22%3EAnd%20if%20a%20Customer%20is%20already%20using%20MDATO%20either%20via%20M365%20E5%20or%20has%20Windows%2010%20E5%20licenses%20then%20they%20need%20to%20check%20with%20their%20account%20rep%20to%20get%20a%20%22deal%22%3F%3C%2FSPAN%3E%3C%2FSPAN%3E%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3E%3CSPAN%20class%3D%22UserName%20lia-user-name%20lia-user-rank-Microsoft%20lia-component-message-view-widget-author-username%22%3E%3CSPAN%20class%3D%22%22%3EIs%20this%20the%20case%3F%20Just%20trying%20to%20simplify%20it%20for%20a%20customer%20at%20this%20end...%3C%2FSPAN%3E%3C%2FSPAN%3E%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3E%3CSPAN%20class%3D%22UserName%20lia-user-name%20lia-user-rank-Microsoft%20lia-component-message-view-widget-author-username%22%3E%3CSPAN%20class%3D%22%22%3ERegards%2C%3C%2FSPAN%3E%3C%2FSPAN%3E%3C%2FP%3E%3CP%3E%3CSPAN%20class%3D%22UserName%20lia-user-name%20lia-user-rank-Microsoft%20lia-component-message-view-widget-author-username%22%3E%3CSPAN%20class%3D%22%22%3EDave%20C%26nbsp%3B%3C%2FSPAN%3E%3C%2FSPAN%3E%3C%2FP%3E%3CP%3E%3CSPAN%3E%26nbsp%3B%3C%2FSPAN%3E%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-SUB%20id%3D%22lingo-sub-858349%22%20slang%3D%22en-US%22%3ERe%3A%20Protecting%20Windows%20Server%20with%20Windows%20Defender%20ATP%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-858349%22%20slang%3D%22en-US%22%3E%3CP%3EFirst%20you%20need%20the%20M365%20E5%20or%20the%20Windows%20E5%2C%20then%20you%20need%20to%20pay%20~15%24%20usd%20per%20machine%20for%20data%20storage%20in%20your%20log%20analytics%20workspace%20attached%20to%20Security%20Centre%2C%20alternatively%20you%20can%20pay%20a%20per%20GB%20cost%20for%20data%20storage.%20%26nbsp%3BEither%20way%20you%20need%20to%20pay%20for%20storage%20based%20on%20how%20long%20you%20wish%20to%20retain%20it.%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-SUB%20id%3D%22lingo-sub-867469%22%20slang%3D%22en-US%22%3ERe%3A%20Protecting%20Windows%20Server%20with%20Windows%20Defender%20ATP%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-867469%22%20slang%3D%22en-US%22%3E%3CP%3EHaving%20E5%20is%20not%20a%20requirement%20to%20onboard%20servers%20into%20MDATP.%26nbsp%3B%20Servers%20that%20are%20licensed%20for%20ASC%20can%20be%20onboarded%20into%20MDATP.%26nbsp%3B%20The%20data%20is%20retained%20in%20MDATP%20for%20both%20servers%20or%20workstations%20up%20to%20a%20maximum%20of%206%20months.%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-SUB%20id%3D%22lingo-sub-1086491%22%20slang%3D%22en-US%22%3ERe%3A%20Protecting%20Windows%20Server%20with%20Windows%20Defender%20ATP%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-1086491%22%20slang%3D%22en-US%22%3E%3CP%3EWithin%20my%20tenant%3A%20I%20have%20a%20Pay%20as%20you%20Go%20subscription%2C%20and%20a%20CSP%20subscription.%26nbsp%3B%20I%20have%20a%20Log%20Analytics%20workspace%20in%20each.%26nbsp%3B%20When%20I%20go%20to%20the%20defender%20portal%20%26gt%3B%20settings%20%26gt%3B%20onboarding%20it%20has%20a%20Workspace%20ID%20and%20Workspace%20key%20to%20a%20Log%20Analytics%20workspace%20that%20I%20can't%20identify%20as%20being%20in%20my%20Tenants%20resources%20(I%20got%20to%20All%20Resources%20and%20look%20for%20it%2C%20and%20can't%20find%20it%2C%20wondering%20if%20it%20is%20a%20'special'%20MDATP%20workspace%20that%20isn't%20in%20my%20normal%20resources).%26nbsp%3B%20I%20am%20confused%3A%26nbsp%3B%20am%20I%20supposed%20to%20point%20MMA%20at%20the%20Log%20Analytics%20space%20of%20my%20choice%3F%20or%20the%20one%20defaulted%20by%20defender%20portal%20%26gt%3B%20settings%20%26gt%3B%20onboarding%3F%26nbsp%3B%20Of%20course%2C%20I%20would%20rather%20only%20be%20billed%20for%20one%20space%20per%20machine%20per%20month.%26nbsp%3B%20But%20since%20I%20don't%20even%20see%20the%20one%20workspace%2C%20I%20don't%20even%20know%20if%20that's%20charged%20or%20not.%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-SUB%20id%3D%22lingo-sub-1091638%22%20slang%3D%22en-US%22%3ERe%3A%20Protecting%20Windows%20Server%20with%20Windows%20Defender%20ATP%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-1091638%22%20slang%3D%22en-US%22%3E%3CP%3EHi%20Ron%2C%20my%20understanding%20is%20that%20the%20Log%20Analytics%20piece%20in%20the%20MD%20ATP%20is%20effectively%20hidden%20and%20you%20don't%20access%20it%20directly.%3C%2FP%3E%3CP%3EThe%20storage%20consumed%20by%20this%20solution%20is%20not%20charged%20to%20your%20billing%20%3B)%3C%2Fimg%3E%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-SUB%20id%3D%22lingo-sub-1091943%22%20slang%3D%22en-US%22%3ERe%3A%20Protecting%20Windows%20Server%20with%20Windows%20Defender%20ATP%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-1091943%22%20slang%3D%22en-US%22%3E%3CP%3EYes%20that's%20correct%2C%20the%20workspace%20is%20separate%20and%20won't%20appear%20within%20your%20resources.%26nbsp%3B%20If%20you%20are%20using%20the%20MMA%20(only%20required%20for%20older%20platforms)%20then%20you%20should%20point%20it%20to%20the%20workspace%20specified%20in%20the%20MDATP%20portal.%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-SUB%20id%3D%22lingo-sub-1126022%22%20slang%3D%22en-US%22%3ERe%3A%20Protecting%20Windows%20Server%20with%20Windows%20Defender%20ATP%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-1126022%22%20slang%3D%22en-US%22%3E%3CP%3EOn-prem%20licensing%20question.%20If%20you%20go%20to%20defender%20security%20center%20and%20select%20server%202019%20on-boarding%2C%20it%20just%20gives%20you%20a%20script%20to%20run%20on%20the%20server.%20This%20doesn't%20appear%20to%20actually%20bring%20the%20server%20into%20Azure%20security%20center%20so%20that%20I%20can%20pay%20my%20%2415%2Fmonth%20for%20it.%20So%20in%20this%20case%20do%20I%20need%20to%20manually%20add%20this%20server%20to%20Azure%20Security%20center%2C%20create%20a%20new%20workspace%2C%20set%20the%20price%20tier%20of%20the%20workspace%20to%20standard%2C%20install%20the%20monitoring%20agent%20on%20the%20server%20then%20it%20should%20automatically%20be%20added%20to%20defender%20security%20center%3F%20Just%20not%20sure%20why%20build%20the%20EDR%20engine%20into%20server%202019%20then%20require%20the%20monitoring%20agent%20to%20be%20installed.%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3EThanks.%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-SUB%20id%3D%22lingo-sub-1141756%22%20slang%3D%22en-US%22%3ERe%3A%20Protecting%20Windows%20Server%20with%20Windows%20Defender%20ATP%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-1141756%22%20slang%3D%22en-US%22%3E%3CP%3EMDATP%20is%20~%2415%20per%20server%2Fmonth%20regardless%20of%20whether%20it%20is%20on-prem%20or%20in%20Azure.%20I%20highlighted%20the%20important%20stuff%20below.%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3Esee%20this%20link%3A%26nbsp%3B%3CA%20href%3D%22https%3A%2F%2Fazure.microsoft.com%2Fen-us%2Fpricing%2Fdetails%2Fsecurity-center%2F%22%20target%3D%22_blank%22%20rel%3D%22noopener%20noreferrer%22%3Ehttps%3A%2F%2Fazure.microsoft.com%2Fen-us%2Fpricing%2Fdetails%2Fsecurity-center%2F%3C%2FA%3E%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3E%3CSPAN%20class%3D%22lia-inline-image-display-wrapper%20lia-image-align-inline%22%20style%3D%22width%3A%20400px%3B%22%3E%3CIMG%20src%3D%22https%3A%2F%2Fgxcuf89792.i.lithium.com%2Ft5%2Fimage%2Fserverpage%2Fimage-id%2F168199i920C8B0381D69290%2Fimage-size%2Fmedium%3Fv%3D1.0%26amp%3Bpx%3D400%22%20alt%3D%22clipboard_image_2.png%22%20title%3D%22clipboard_image_2.png%22%20%2F%3E%3C%2FSPAN%3E%3C%2FP%3E%3CP%3E%3CSPAN%20class%3D%22lia-inline-image-display-wrapper%20lia-image-align-inline%22%20style%3D%22width%3A%20400px%3B%22%3E%3CIMG%20src%3D%22https%3A%2F%2Fgxcuf89792.i.lithium.com%2Ft5%2Fimage%2Fserverpage%2Fimage-id%2F168197i991375F331F658B1%2Fimage-size%2Fmedium%3Fv%3D1.0%26amp%3Bpx%3D400%22%20alt%3D%22clipboard_image_0.png%22%20title%3D%22clipboard_image_0.png%22%20%2F%3E%3C%2FSPAN%3E%3C%2FP%3E%3CP%3E%3CSPAN%20class%3D%22lia-inline-image-display-wrapper%20lia-image-align-inline%22%20style%3D%22width%3A%20400px%3B%22%3E%3CIMG%20src%3D%22https%3A%2F%2Fgxcuf89792.i.lithium.com%2Ft5%2Fimage%2Fserverpage%2Fimage-id%2F168198i5D5637D5CF3B0B6D%2Fimage-size%2Fmedium%3Fv%3D1.0%26amp%3Bpx%3D400%22%20alt%3D%22clipboard_image_1.png%22%20title%3D%22clipboard_image_1.png%22%20%2F%3E%3C%2FSPAN%3E%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-SUB%20id%3D%22lingo-sub-1267950%22%20slang%3D%22en-US%22%3ERe%3A%20Protecting%20Windows%20Server%20with%20Windows%20Defender%20ATP%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-1267950%22%20slang%3D%22en-US%22%3E%3CP%3EHi%20All%2C%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3EI%20have%20small%20doubt%20and%20help%20from%20you%20that%20here%20we%20are%20deploying%20Windows%20Defender%20on%20Windows%20Server%202008%20R2%20%2C2012%2C2016%20servers%20.%20Do%20we%20need%20license%20for%20use%20Windows%20defender%20on%20Servers%20opertaing%20system%3F%3C%2FP%3E%3CP%3EMy%20second%20question%20is%20will%20windows%20server%202019%20will%20support%20windows%20defernder%3F%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3EI%20am%20sure%20Windows%20Server%202003%2C2000%20will%20not%20support%20Windows%20defender%20but%20need%20your%20help.%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3EThanks%20%26amp%3B%20Regards%2C%3C%2FP%3E%3CP%3EDevendra%20Singh%26nbsp%3B%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-SUB%20id%3D%22lingo-sub-1268067%22%20slang%3D%22en-US%22%3ERe%3A%20Protecting%20Windows%20Server%20with%20Windows%20Defender%20ATP%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-1268067%22%20slang%3D%22en-US%22%3E%3CP%3EOn%20Server%202008%20and%20above%20you%20do%20need%20a%20separate%20license%20for%20MDATP%20(older%20versions%20are%20not%20supported).%20Currently%20this%20licensing%20model%20is%20via%20a%20subscription%20to%20Azure%20Security%20Center%3B%20however%20a%20dedicated%20MDATP%20server%20license%20is%20coming.%3C%2FP%3E%0A%3CP%3EIf%20you%20are%20just%20talking%20about%20Windows%20Defender%20(the%20AV%20only%20component)%20then%20this%20is%20built%20into%20Server%202016%20and%20above%20(including%202019).%26nbsp%3B%20On%20older%20versions%20you%20would%20need%20to%20use%20System%20Center%20Endpoint%20Protection%20(%3CFONT%20style%3D%22background-color%3A%20%23ffffff%3B%22%3E%3CA%20href%3D%22https%3A%2F%2Fdocs.microsoft.com%2Fen-us%2Fconfigmgr%2Fprotect%2Fdeploy-use%2Fendpoint-protection%22%20target%3D%22_blank%22%20rel%3D%22noopener%20noreferrer%22%3Ehttps%3A%2F%2Fdocs.microsoft.com%2Fen-us%2Fconfigmgr%2Fprotect%2Fdeploy-use%2Fendpoint-protection%3C%2FA%3E%3CBR%20%2F%3E%3C%2FFONT%3E)%3C%2FP%3E%0A%3CP%3EHope%20this%20helps.%3C%2FP%3E%0A%3CP%3E%26nbsp%3B%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-SUB%20id%3D%22lingo-sub-1268435%22%20slang%3D%22en-US%22%3ERe%3A%20Protecting%20Windows%20Server%20with%20Windows%20Defender%20ATP%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-1268435%22%20slang%3D%22en-US%22%3E%3CP%3EIs%20there%20any%20other%20way%20to%20mange%20license%20or%20Onboarding%20machines%20except%20Azure%20security%20center.%3C%2FP%3E%3CP%3EYou%20mean%20on%20Windows%202008%20R2%20and%202012%20R2%20we%20need%20to%20installed%20System%20Endpoint%20Protection%20because%20Inbuild%20operating%20system%20it%20is%20not%20coming%3F%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3EIf%20I%20installed%20MDM%20agent%20on%20Servers%20manually%20still%20I%20required%20license%20for%20WDATP%3F%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3EThanks%20in%20advance.%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3ERegards%2C%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-SUB%20id%3D%22lingo-sub-1268525%22%20slang%3D%22en-US%22%3ERe%3A%20Protecting%20Windows%20Server%20with%20Windows%20Defender%20ATP%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-1268525%22%20slang%3D%22en-US%22%3E%3CP%3EAs%20I%20said%20we%20are%20going%20to%20be%20releasing%20a%20standalone%20server%20license%20for%20MDATP.%26nbsp%3B%20This%20is%20coming%20soon.%3C%2FP%3E%0A%3CP%3EYes%20on%202008%20or%202012%20there%20is%20no%20built%20in%20Defender%20AV.%3C%2FP%3E%0A%3CP%3E%26nbsp%3B%3C%2FP%3E%0A%3CP%3EWhat%20do%20you%20mean%20%22MDM%20agent%22%3F%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-SUB%20id%3D%22lingo-sub-1270167%22%20slang%3D%22en-US%22%3ERe%3A%20Protecting%20Windows%20Server%20with%20Windows%20Defender%20ATP%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-1270167%22%20slang%3D%22en-US%22%3E%3CP%3EHi%20Steve%2C%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3EAs%20you%20know%20there%20two%20option%20for%20onboarding%20machines.%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3EOne%20through%20Azure%20security%20center%20and%20another%20one%20is%20from%20WDATP%20portal.%3C%2FP%3E%3CP%3ESo%20if%20I%20select%20WDATP%20portal%20onboarding%20machine%20for%20servers%20%2Chow%20I%20will%20use%20licensing%20part.%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3EPlease%20clear%20my%20doubt%20about%20licensing%20part%26nbsp%3B%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-SUB%20id%3D%22lingo-sub-1270425%22%20slang%3D%22en-US%22%3ERe%3A%20Protecting%20Windows%20Server%20with%20Windows%20Defender%20ATP%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-1270425%22%20slang%3D%22en-US%22%3E%3CP%3EOk%20so%20either%20way%20you%20need%20a%20license.%3C%2FP%3E%0A%3CP%3EPrior%20to%20today%20the%20only%20licensing%20mechanism%20for%20MDATP%20on%20servers%20was%20via%20ASC.%26nbsp%3B%20In%20terms%20of%20onboarding%20if%20you%20onboarded%20a%20server%20into%20ASC%20then%20it%20would%20automatically%20onboard%20it%20through%20into%20MDATP.%3C%2FP%3E%0A%3CP%3EThe%20other%20onboarding%20mechanism%20allows%20you%20to%20onboard%20a%20server%20directly%20into%20MDATP%2C%20but%20you%20would%20still%20need%20an%20ASC%20license%2C%20meaning%20you%20would%20then%20need%20to%20onboard%20into%20ASC.%3C%2FP%3E%0A%3CP%3EHowever%20we%20now%20have%20the%20option%20for%20a%20standalone%20MDATP%20license%20for%20servers%20meaning%20that%20you%20can%20purchase%20this%20and%20onboard%20the%20server%20directly%20into%20MDATP%20without%20involving%20ASC.%3C%2FP%3E%0A%3CP%3EHope%20this%20helps.%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-SUB%20id%3D%22lingo-sub-1312268%22%20slang%3D%22en-US%22%3ERe%3A%20Protecting%20Windows%20Server%20with%20Windows%20Defender%20ATP%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-1312268%22%20slang%3D%22en-US%22%3E%3CP%3EI'm%20really%20confused%2C%20and%20even%20the%20Microsoft%20engineers%20replying%20to%20my%20helpdesk%20ticket%20don't%20seem%20to%20fully%20understand%20it%20either.%26nbsp%3B%20When%20accessing%26nbsp%3B%3CA%20href%3D%22https%3A%2F%2Fsecuritycenter.windows.com%2Fdashboard%22%20target%3D%22_blank%22%20rel%3D%22nofollow%20noopener%20noreferrer%22%3Ehttps%3A%2F%2Fsecuritycenter.windows.com%2Fdashboard%3C%2FA%3E%26nbsp%3BI%20get%20the%20message%2C%20%22no%20subscriptions%20found%22.%26nbsp%3B%20Microsoft%20are%20telling%20me%20I%20need%20to%20have%20an%20E5%20licence%2C%20but%20all%20I%20want%20to%20manage%20are%20on-prem%20servers%20on%202019.%26nbsp%3B%20The%20chart%20indicates%20that%20I%20need%20an%20azure%20pay%20as%20you%20go%2C%20as%20does%20my%20reseller.%26nbsp%3B%20What%20do%20I%20need%20to%20do%20please%3F%26nbsp%3B%20Ideally%20I'd%20also%20like%20it%20on%20the%20desktops%2C%20but%20it's%20a%20user%20licence%20only%20(no%20device)%20and%20we%20have%2011%2C000%20users%20but%20only%201%2C500%20desktops%20(we're%20a%20college%20running%20mostly%20zero%20thin%20client%20terminals).%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-SUB%20id%3D%22lingo-sub-1312300%22%20slang%3D%22en-US%22%3ERe%3A%20Protecting%20Windows%20Server%20with%20Windows%20Defender%20ATP%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-1312300%22%20slang%3D%22en-US%22%3E%3CP%3EYou%20either%20need%20an%20Azure%20pay%20as%20you%20go%20subscription%20for%20the%20servers%20(it%20doesn't%20matter%20if%20they%20are%20on-prem%20or%20in%20the%20cloud)%20or%20a%20dedicated%20MDATP%20for%20Servers%20license%20which%20was%20only%20announced%20at%20the%20beginning%20of%20this%20month.%3C%2FP%3E%0A%3CP%3EFor%20your%20desktops%20there%20are%20some%20exceptions%20we%20can%20make%20for%20education%20to%20make%20this%20a%20per-device%20license.%26nbsp%3B%20You%20should%20talk%20to%20your%20MS%20account%20manager%20about%20this.%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-SUB%20id%3D%22lingo-sub-1389995%22%20slang%3D%22en-US%22%3ERe%3A%20Protecting%20Windows%20Server%20with%20Windows%20Defender%20ATP%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-1389995%22%20slang%3D%22en-US%22%3E%3CP%3E%3CA%20href%3D%22https%3A%2F%2Ftechcommunity.microsoft.com%2Ft5%2Fuser%2Fviewprofilepage%2Fuser-id%2F46360%22%20target%3D%22_blank%22%3E%40Steve%20Newby%3C%2FA%3E%26nbsp%3Bcan%20you%20please%20provide%20the%26nbsp%3B%3CSPAN%3Ededicated%20MDATP%20for%20Servers%20license%3C%2FSPAN%3E%20Sku%3F%3C%2FP%3E%3CP%3EI%20was%20searching%20everywhere%2C%20but%20I%20can't%20find%20it.%3C%2FP%3E%3CP%3EThanks%20in%20advance.%3C%2FP%3E%3CP%3EPedro%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-SUB%20id%3D%22lingo-sub-1390624%22%20slang%3D%22en-US%22%3ERe%3A%20Protecting%20Windows%20Server%20with%20Windows%20Defender%20ATP%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-1390624%22%20slang%3D%22en-US%22%3E%3CP%3E%3CA%20href%3D%22https%3A%2F%2Ftechcommunity.microsoft.com%2Ft5%2Fuser%2Fviewprofilepage%2Fuser-id%2F46360%22%20target%3D%22_blank%22%3E%40Steve%20Newby%3C%2FA%3E%26nbsp%3BYes%2C%20please%20clarify%20the%20requirements%20for%20MD%20ATP%20on%20servers%20with%20the%20new%20SKU.%20I%20found%20%3CA%20href%3D%22https%3A%2F%2Fwww.infusedinnovations.com%2Fblog%2Fsecure-intelligent-workplace%2Fmicrosoft-defender-atp-standalone-is-now-available%22%20target%3D%22_self%22%20rel%3D%22nofollow%20noopener%20noreferrer%22%3Ethis%20article%3C%2FA%3E%20which%20states%20%22%3CEM%3EHowever%2C%20the%20MDATP%20Server%20license%20is%20only%20available%20if%20you%20purchase%20a%20combined%20minimum%20of%2050%20seats%20for%20any%20of%20the%20following%3A%20Windows%2010%20E5%20%2F%20Microsoft%20365%20E5%20%2F%20Microsoft%20365%20E5%20Security.%3C%2FEM%3E%22%20Is%20this%20correct%3F%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-SUB%20id%3D%22lingo-sub-1548155%22%20slang%3D%22en-US%22%3ERe%3A%20Protecting%20Windows%20Server%20with%20Windows%20Defender%20ATP%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-1548155%22%20slang%3D%22en-US%22%3E%3CP%3E%3CEM%3EVersion%20compatibility%20-%26nbsp%3B%20DS%20runs%20some%20older%20Windows%20servers%2C%20and%20it%20looks%20like%20Defender%20platform%20updates%20are%20only%20available%20for%20Windows%20Server%202016%20%26amp%3B%202019.%26nbsp%3B%20Are%20there%20any%20features%20or%20functionality%20unavailable%20if%20an%20older%20version%20of%20Defender%20is%20used%20on%20older%20server%20operating%20systems%20(like%20Windows%202012)%3F%3C%2FEM%3E%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-SUB%20id%3D%22lingo-sub-1564520%22%20slang%3D%22en-US%22%3ERe%3A%20Protecting%20Windows%20Server%20with%20Windows%20Defender%20ATP%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-1564520%22%20slang%3D%22en-US%22%3E%3CP%3E%3CA%20href%3D%22https%3A%2F%2Ftechcommunity.microsoft.com%2Ft5%2Fuser%2Fviewprofilepage%2Fuser-id%2F69202%22%20target%3D%22_blank%22%3E%40Milad%20Aslaner%3C%2FA%3E%26nbsp%3B-%20A%20document%20(%3CA%20href%3D%22https%3A%2F%2Fdocs.microsoft.com%2Fen-us%2Fwindows%2Fsecurity%2Fthreat-protection%2Fmicrosoft-defender-atp%2Fconfigure-server-endpoints%22%20target%3D%22_blank%22%20rel%3D%22noopener%20noreferrer%22%3Ehttps%3A%2F%2Fdocs.microsoft.com%2Fen-us%2Fwindows%2Fsecurity%2Fthreat-protection%2Fmicrosoft-defender-atp%2Fconfigure-server-endpoints%3C%2FA%3E)%20doesn't%20say%20that%20it%20applies%20to%20Windows%20Server%202012.%20Is%20there%20any%20reason%20for%20this%20is%20missing%20here.%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-SUB%20id%3D%22lingo-sub-1564576%22%20slang%3D%22en-US%22%3ERe%3A%20Protecting%20Windows%20Server%20with%20Windows%20Defender%20ATP%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-1564576%22%20slang%3D%22en-US%22%3E%3CP%3E%3CA%20href%3D%22https%3A%2F%2Ftechcommunity.microsoft.com%2Ft5%2Fuser%2Fviewprofilepage%2Fuser-id%2F748706%22%20target%3D%22_blank%22%3E%40joinimran%3C%2FA%3E%26nbsp%3B%3CA%20href%3D%22https%3A%2F%2Ftechcommunity.microsoft.com%2Ft5%2Fuser%2Fviewprofilepage%2Fuser-id%2F69202%22%20target%3D%22_blank%22%3E%40Milad%20Aslaner%3C%2FA%3E%26nbsp%3BServer%202012%20is%20*NOT*%20covered%2C%20bummer%20-%20but%20that's%20the%20numbers%20game%20for%20you%20-%20we%20also%20ran%20into%20this.%3C%2FP%3E%3CP%3EI'm%20afraid%20it%20is%20what%20it%20is...%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-SUB%20id%3D%22lingo-sub-1566094%22%20slang%3D%22en-US%22%3ERe%3A%20Protecting%20Windows%20Server%20with%20Windows%20Defender%20ATP%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-1566094%22%20slang%3D%22en-US%22%3E%3CP%3EHi%2C%26nbsp%3B%3C%2FP%3E%3CP%3EWe%20have%20MDATP%20for%20server%20license%20purchased%20and%20servers%20are%20on%20boarded%20to%20both%20Defender%20ATP%20and%20ASC.%26nbsp%3B%3C%2FP%3E%3CP%3EI%20assigned%20%22MDATP%26nbsp%3B%20for%20servers%22%20licenses%20to%20an%20AD%20Group%20which%20contains%20the%20on-prem%20servers%20as%20members%20of%20the%20group.%3C%2FP%3E%3CP%3Ebut%20still%20number%20of%20assigned%20license%20is%20showing%200.%20how%20can%20we%20make%20sure%20that%2C%20servers%20are%20licensed%20and%20compliance%3F%20do%20we%20need%20to%20sync%20the%20server%20object%20to%20assign%20the%20license%3F%20Please%20clarify%20on%20this.%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-SUB%20id%3D%22lingo-sub-1788951%22%20slang%3D%22en-US%22%3ERe%3A%20Protecting%20Windows%20Server%20with%20Windows%20Defender%20ATP%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-1788951%22%20slang%3D%22en-US%22%3E%3CP%3ESo%20I%20have%20a%20couple%20questions%20here%20on%20Security%20Center%20and%20how%20Azure%20Defender%20is%20incorporated%20for%20non-Azure%20resources.%26nbsp%3B%20We%20have%20added%20the%20on-premise%20resources%20per%20instructions%20with%20the%20agent%20installation%20and%20can%20see%20all%20of%20those%20resources%20in%20the%20Inventory%20within%20Security%20Center.%26nbsp%3B%20What%20I%20am%20looking%20to%20understand%20here%2C%20how%20can%20I%20view%20those%20same%20on-premise%20resources%20under%20Azure%20Defender%3F%26nbsp%3B%20The%20only%20resources%20that%20show%20up%20there%20are%20items%20within%20Azure%3F%26nbsp%3B%20Just%20making%20sure%20that%20the%20vulnerability%20assessments%20for%20the%20on-premise%20servers%20are%20using%20the%20same%20process%20as%20VMs%20in%20Azure%3F%26nbsp%3B%20If%20that%20is%20the%20case%2C%20where%20can%20that%20information%20be%20reviewed%20from%20an%20on-premise%20server%3F%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3EOn%20the%20licensing%2Fpricing%20piece%2C%20I%20see%20the%20server%20count%20listed%20there%20includes%20both%20on-premise%20and%20Azure%20resources%20and%20has%20been%20turned%20on.%26nbsp%3B%20Just%20to%20make%20sure%20I%20have%20this%20right%2C%20if%20licenses%20were%20purchased%20separately%20prior%20to%20using%20Azure%20Security%20Center%2C%20those%20would%20not%20need%20to%20be%20renewed%20and%20just%20move%20forward%20with%20the%20monthly%20cost%20using%20Azure%20Defender%20within%20Azure%20Security%20Center%3F%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3EI%20understand%20that%20things%20are%20being%20updated%2Fchanged%20within%20Azure%20Security%20Center%20(%3CA%20href%3D%22https%3A%2F%2Fwww.microsoft.com%2Fsecurity%2Fblog%2F%3Fp%3D91813%22%20target%3D%22_blank%22%20rel%3D%22noopener%20noreferrer%22%3Ehttps%3A%2F%2Fwww.microsoft.com%2Fsecurity%2Fblog%2F%3Fp%3D91813%3C%2FA%3E)%20from%20September%2022%2C%202020%20to%20now%20by%20Microsoft%20365%20Defender.%26nbsp%3B%20The%20challenges%20we%20are%20seeing%20is%20around%20the%20non-Azure%20resources%20right%20now%20and%20looking%20to%20get%20a%20better%20handle%20on%20how%20to%20view%20that%20information%20in%20Security%20Center%20today%3F%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3EThank%20you%2C%3C%2FP%3E%3CP%3E-Bob%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-SUB%20id%3D%22lingo-sub-2002428%22%20slang%3D%22en-US%22%3ERe%3A%20Protecting%20Windows%20Server%20with%20Windows%20Defender%20ATP%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-2002428%22%20slang%3D%22en-US%22%3E%3CP%3EWe%20are%20managing%20the%20on-premise%20servers%20in%26nbsp%3B%3CSPAN%3EWindows%20Defender%20Security%20Center%3C%2FSPAN%3E%20with%20E5.%20Currently%20having%20connectivity%20issues%20with%20servers%20hosted%20in%20AWS%20during%20defender%20rollout%20(different%20server%20OSs).%20Are%20there%20any%20limitations%20when%20managing%20these%20servers%20in%20WDSC%20or%20does%20it%20require%20a%20different%20configuration%20to%20have%20them%20report%20to%20the%20portal%3F%20Or%20is%20Azure%20Security%20center%20is%20the%20only%20solution%3F%20Thank%20you.%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-SUB%20id%3D%22lingo-sub-2121567%22%20slang%3D%22en-US%22%3ERe%3A%20Protecting%20Windows%20Server%20with%20Windows%20Defender%20ATP%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-2121567%22%20slang%3D%22en-US%22%3E%3CP%3E%3CA%20href%3D%22https%3A%2F%2Ftechcommunity.microsoft.com%2Ft5%2Fuser%2Fviewprofilepage%2Fuser-id%2F69202%22%20target%3D%22_blank%22%3E%40Milad%20Aslaner%3C%2FA%3E%26nbsp%3Bhope%20you%20are%20fine%20and%20can%20still%20help%20on%20this%20old%20thread.%20Since%202018%20many%20things%20have%20apparently%20changed%20to%20the%20better.%3C%2FP%3E%3CP%3Emany%20questions%20still%20arise%20for%20newbs%20in%20to%20this%20topic%3C%2FP%3E%3CP%3E2020%20Ignite%3C%2FP%3E%3CP%3E-%20announced%20Azure%20Security%20Center%20-%20is%20this%20merging%20the%20capability%20to%20manage%20Windows%20Server%20and%20Client%20at%20a%20single%20dashboard%3C%2FP%3E%3CP%3E-%20Why%20there%20is%20still%20a%20need%20for%20Microsoft%20365%20Defender%20dashboard%20in%20M365%20admin%20center%26nbsp%3B%3C%2FP%3E%3CP%3E-%20Now%20as%20I%20understood%20Server%20could%20be%20licensed%20with%20M365%20prerequisites%20to%20a%20standalone%20ATP%20license%20it%20is%20not%20described%20in%20the%20docs%20how%20to%20do%20this.%3C%2FP%3E%3CP%3E-%20your%20tables%20from%202018%20already%20stated%20that%20on-premises%20Windows%20server%20LTSC%202016%20%2F%202019%20do%20not%20need%20any%20agent%20to%20work%20with%20Azure%20Security%20Center%3C%2FP%3E%3CBLOCKQUOTE%3E%3CP%3E%3CSPAN%3EWindows%20Defender%20Antivirus%20is%20built-in%20and%20requires%20no%20agent%20installation%22%3C%2FSPAN%3E%3C%2FP%3E%3C%2FBLOCKQUOTE%3E%3CP%3Eyet%20the%20docs%20still%20talk%20about%20you%20need%20to%20install%20a%20MMA%20Monitoring%20agent%20even%20in%20Option%202%2C%20so%20we%20apparently%20still%20need%20to%20install%20something.%3CBR%20%2F%3E%3CA%20href%3D%22https%3A%2F%2Fdocs.microsoft.com%2Fen-us%2Fwindows%2Fsecurity%2Fthreat-protection%2Fmicrosoft-defender-atp%2Fconfigure-server-endpoints%23option-2-onboard-windows-servers-through-azure-security-center%22%20target%3D%22_blank%22%20rel%3D%22noopener%20noreferrer%22%3EOnboard%20Windows%20servers%20to%20the%20Microsoft%20Defender%20ATP%20service%20-%20Windows%20security%20%7C%20Microsoft%20Docs%3C%2FA%3E%3CBR%20%2F%3E%3CBR%20%2F%3EThank%20you%20very%20much%20for%20you%20time!%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-SUB%20id%3D%22lingo-sub-2121575%22%20slang%3D%22en-US%22%3ERe%3A%20Protecting%20Windows%20Server%20with%20Windows%20Defender%20ATP%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-2121575%22%20slang%3D%22en-US%22%3E%3CP%3Eas%20editing%20capabilities%20has%20been%20removed%20for%20posts%20%2F%20replies%3A%3CBR%20%2F%3E%3CSPAN%3EMicrosoft%20365%20Defender%20dashboard%26nbsp%3B%26gt%3B%26nbsp%3BMicrosoft%20365%20Security%20dashboard%3C%2FSPAN%3E%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-SUB%20id%3D%22lingo-sub-2121812%22%20slang%3D%22en-US%22%3ERe%3A%20Protecting%20Windows%20Server%20with%20Windows%20Defender%20ATP%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-2121812%22%20slang%3D%22en-US%22%3E%3CP%3E%3CA%20href%3D%22https%3A%2F%2Ftechcommunity.microsoft.com%2Ft5%2Fuser%2Fviewprofilepage%2Fuser-id%2F69202%22%20target%3D%22_blank%22%3E%40Milad%20Aslaner%3C%2FA%3E%26nbsp%3Bthere%20is%20also%20another%20thing%20that%20is%20not%20easy%20to%20understand%3C%2FP%3E%3CP%3E%3CA%20href%3D%22https%3A%2F%2Fdocs.microsoft.com%2Fen-us%2Fazure%2Fsecurity-center%2Fsecurity-center-wdatp%22%20target%3D%22_blank%22%20rel%3D%22noopener%20noreferrer%22%3EUsing%20the%20Microsoft%20Defender%20for%20Endpoint%20license%20included%20with%20Azure%20Security%20Center%20%7C%20Microsoft%20Docs%3C%2FA%3E%3C%2FP%3E%3CP%3EIt%20says%20that%20EDR%20is%20only%20supported%20for%202016%20and%20older%20and%20exclude%20Server%202019%20and%20Windows%2010%20to%20be%20supported%20(Article%20is%20dated%20from%2020.10.2020)%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-SUB%20id%3D%22lingo-sub-2267065%22%20slang%3D%22en-US%22%3ERe%3A%20Protecting%20Windows%20Server%20with%20Windows%20Defender%20ATP%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-2267065%22%20slang%3D%22en-US%22%3E%3CP%3EIs%20EDR%20supported%20on%20Windows%20Server%202012%3F%20Documentation%20states%20MMA%20agent%20is%20deployed%20but%20isn't%20MMA%20agent%20is%20just%20a%20read-only%20log%20analytics%20agent%20and%20all%20it%20can%20do%20is%20report%20the%20server%20status%20in%20security%20center%20but%20can't%20take%20any%20actions%20on%20the%20server.%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-SUB%20id%3D%22lingo-sub-267114%22%20slang%3D%22en-US%22%3EProtecting%20Windows%20Server%20with%20Windows%20Defender%20ATP%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-267114%22%20slang%3D%22en-US%22%3E%3CP%3E%3CSPAN%3EWindows%20Defender%20Advanced%20Threat%20Protection%20(%3CA%20href%3D%22https%3A%2F%2Fwww.microsoft.com%2Fen-us%2FWindowsForBusiness%2Fwindows-atp%22%20target%3D%22_blank%22%20rel%3D%22noopener%20noreferrer%22%3EWindows%20Defender%20ATP%3C%2FA%3E)%20is%20a%20unified%20security%20platform%20that%20covers%20endpoint%20protection%20platform%20(EPP)%20and%20endpoint%20detection%20and%20response%20(EDR).%20Initially%20we%20released%20the%20product%20for%20Windows%2010%20only%2C%20but%20customers%20have%20asked%20for%20support%20on%20other%20platforms%2C%20Windows%20Server%20in%20particular.%20This%20year%2C%20we've%20made%20Windows%20Defender%20ATP%20available%20to%20Windows%207%20and%20Windows%208.1%20clients%2C%20as%20well%20as%20macOS%2C%20Linux%2C%20and%20Windows%20Server.%20As%20we%20continue%20engineering%20a%20unified%20security%20platform%2C%20you%20will%20see%20a%20more%20seamless%20approach%20across%20platforms.%3C%2FSPAN%3E%3C%2FP%3E%0A%3CP%3E%3CSPAN%3E%26nbsp%3B%3C%2FSPAN%3E%3C%2FP%3E%0A%3CP%3E%3CSPAN%3EThis%20blog%20is%20for%20enterprise%20customers%20who%20want%20to%20use%20the%20Windows%20Defender%20ATP%20platform%20on%20Windows%20Server%20and%20need%20practical%20guidance%20on%20what%20needs%20to%20be%20in%20place%20for%20licensing%20and%20infrastructure.%3C%2FSPAN%3E%3C%2FP%3E%0A%3CP%3E%26nbsp%3B%3C%2FP%3E%0A%3CP%3E%3CSPAN%3E%3CSPAN%20class%3D%22lia-inline-image-display-wrapper%20lia-image-align-left%22%20image-alt%3D%22Screen%20Shot%202018-10-04%20at%2021.54.05.png%22%20style%3D%22width%3A%20999px%3B%22%3E%3CIMG%20src%3D%22https%3A%2F%2Ftechcommunity.microsoft.com%2Ft5%2Fimage%2Fserverpage%2Fimage-id%2F55537iAF9CF709D7E1E454%2Fimage-size%2Flarge%3Fv%3Dv2%26amp%3Bpx%3D999%22%20role%3D%22button%22%20title%3D%22Screen%20Shot%202018-10-04%20at%2021.54.05.png%22%20alt%3D%22Screen%20Shot%202018-10-04%20at%2021.54.05.png%22%20%2F%3E%3C%2FSPAN%3E%3C%2FSPAN%3E%3C%2FP%3E%0A%3CP%3E%26nbsp%3B%3CEM%3E%3CSPAN%3EImage%3A%20Windows%20Server%202016%20onboarded%20to%20Windows%20Defender%20ATP%26nbsp%3B%3C%2FSPAN%3E%3C%2FEM%3E%3C%2FP%3E%0A%3CP%3E%26nbsp%3B%3C%2FP%3E%0A%3CP%3E%3CSPAN%3EThe%20Microsoft-recommended%20configuration%20%3C%2FSPAN%3E%3CSPAN%3Efor%20%3C%2FSPAN%3Ethe%20best%20security%20is%20staying%20current%20with%20Windows.%26nbsp%3BWhile%20we%20provide%20support%20for%20previous%20versions%20of%20Windows%2C%20the%20latest%20releases%20provide%20superior%26nbsp%3Bsecurity%20capabilities.%26nbsp%3B%3CSPAN%3EIf%20you%20are%20running%20previous%20versions%20of%20Windows%2C%20one%20of%20the%20most%20important%20things%20you%20can%20be%20doing%20is%20getting%20a%20plan%20to%20update%20your%20Windows%20environment.%20%26nbsp%3B%3C%2FSPAN%3E%3C%2FP%3E%0A%3CP%3E%3CSPAN%3E%26nbsp%3B%3C%2FSPAN%3E%3C%2FP%3E%0A%3CP%3E%3CSTRONG%3EEndpoint%20protection%20platform%3C%2FSTRONG%3E%3C%2FP%3E%0A%3CP%3E%3CSPAN%3EThe%20endpoint%20protection%20platform%20(EPP)%20of%20Windows%20Defender%20ATP%20includes%20two%20capabilities%3A%20(1)%20Attack%20surface%20reduction%20(ASR)%2C%20which%20helps%20seal%20the%20available%20attack%20surface%20that%20can%20be%20leveraged%20by%20threat%20actors%20as%20much%20as%20possible%2C%20and%20(2)%20Next%20generation%20protection%20(NGP)%2C%20which%20is%20a%20cloud-powered%20antivirus%20solution.%3C%2FSPAN%3E%3C%2FP%3E%0A%3CP%3E%3CSPAN%3E%26nbsp%3B%3C%2FSPAN%3E%3C%2FP%3E%0A%3CP%3E%3CSPAN%3EAttack%20surface%20reduction%20is%20a%20set%20of%20capabilities%20that%20helps%20organizations%20reduce%20the%20available%20attack%20surface.%20The%20technologies%20that%20power%20ASR%20are%20network%20protection%2C%20exploit%20protection%2C%20controlled%20folder%20access%2C%20and%20ASR%20rules.%20ASR%20is%20available%20on%20Windows%2010%20Fall%20Creators%20Update%20or%20later%20and%20on%20Windows%20Server%201803%20and%20later.%3C%2FSPAN%3E%3C%2FP%3E%0A%3CP%3E%26nbsp%3B%3C%2FP%3E%0A%3CTABLE%20width%3D%22619%22%3E%0A%3CTBODY%3E%0A%3CTR%3E%0A%3CTD%20width%3D%22137%22%3E%3CP%3E%3CSTRONG%3E%3CSPAN%3EOperating%20System%3C%2FSPAN%3E%3C%2FSTRONG%3E%3C%2FP%3E%0A%3C%2FTD%3E%0A%3CTD%20width%3D%22120%22%3E%3CP%3E%3CSTRONG%3E%3CSPAN%3ELicense%3C%2FSPAN%3E%3C%2FSTRONG%3E%3C%2FP%3E%0A%3C%2FTD%3E%0A%3CTD%20width%3D%22128%22%3E%3CP%3E%3CSTRONG%3E%3CSPAN%3EDeployment%3C%2FSPAN%3E%3C%2FSTRONG%3E%3C%2FP%3E%0A%3C%2FTD%3E%0A%3CTD%20width%3D%22131%22%3E%3CP%3E%3CSTRONG%3E%3CSPAN%3EConfiguration%3C%2FSPAN%3E%3C%2FSTRONG%3E%3C%2FP%3E%0A%3C%2FTD%3E%0A%3CTD%20width%3D%22103%22%3E%3CP%3E%3CSTRONG%3E%3CSPAN%3EReporting%3C%2FSPAN%3E%3C%2FSTRONG%3E%3C%2FP%3E%0A%3C%2FTD%3E%0A%3C%2FTR%3E%0A%3CTR%3E%0A%3CTD%20width%3D%22137%22%3E%3CP%3E%3CSPAN%3EWindows%2010%3C%2FSPAN%3E%3C%2FP%3E%0A%3C%2FTD%3E%0A%3CTD%20width%3D%22120%22%3E%3CP%3E%3CSPAN%3EWindows%20E5%20or%20Microsoft%20365%20Enterprise%20E5%3C%2FSPAN%3E%3C%2FP%3E%0A%3C%2FTD%3E%0A%3CTD%20width%3D%22128%22%3E%3CP%3E%3CSPAN%3EASR%20relies%20on%20Windows%20Defender%20Antivirus%2C%20which%20is%20built-in%20and%20requires%20no%20agent%20installation%3C%2FSPAN%3E%3C%2FP%3E%0A%3C%2FTD%3E%0A%3CTD%20width%3D%22131%22%3E%3CP%3E%3CSPAN%3EIf%20licensed%2C%20through%20Microsoft%20Intune%20or%20System%20Center%20Configuration%20Manager.%20Alternatively%2C%20PowerShell%20or%20Group%20Policies.%3C%2FSPAN%3E%3C%2FP%3E%0A%3C%2FTD%3E%0A%3CTD%20width%3D%22103%22%3E%3CP%3E%3CSPAN%3EWindows%20Defender%20Security%20Center%2C%20%3C%2FSPAN%3E%3CSPAN%3Eor%20if%20licensed%20System%20Center%20Configuration%20Manager%20or%20Microsoft%20Intune%3C%2FSPAN%3E%3C%2FP%3E%0A%3C%2FTD%3E%0A%3C%2FTR%3E%0A%3CTR%3E%0A%3CTD%20width%3D%22137%22%3E%3CP%3E%3CSPAN%3EWindows%20Server%201803%2C%20Windows%20Server%202019%3C%2FSPAN%3E%3C%2FP%3E%0A%3C%2FTD%3E%0A%3CTD%20width%3D%22120%22%3E%3CP%3E%3CSPAN%3EAzure%20Security%20Center%20Pay-As-You-Go%3C%2FSPAN%3E%3C%2FP%3E%0A%3C%2FTD%3E%0A%3CTD%20width%3D%22128%22%3E%3CP%3E%3CSPAN%3EASR%20relies%20on%20Windows%20Defender%20Antivirus%2C%20which%20is%20built-in%20and%20requires%20no%20agent%20installation%3C%2FSPAN%3E%3C%2FP%3E%0A%3C%2FTD%3E%0A%3CTD%20width%3D%22131%22%3E%3CP%3E%3CSPAN%3EIf%20licensed%2C%20through%20System%20Center%20Configuration%20Manager.%20Alternatively%2C%20PowerShell%20or%20Group%20Policies.%3C%2FSPAN%3E%3C%2FP%3E%0A%3C%2FTD%3E%0A%3CTD%20width%3D%22103%22%3E%3CP%3E%3CSPAN%3EWindows%20Defender%20Security%20Center%2C%20%3C%2FSPAN%3E%3CSPAN%3Eor%20if%20licensed%20System%20Center%20Configuration%20Manager%3C%2FSPAN%3E%3C%2FP%3E%0A%3C%2FTD%3E%0A%3C%2FTR%3E%0A%3C%2FTBODY%3E%0A%3C%2FTABLE%3E%0A%3CP%3E%26nbsp%3B%3C%2FP%3E%0A%3CP%3E%3CSPAN%3EWindows%20Defender%26nbsp%3BAntivirus%20is%3C%2FSPAN%3E%3CSPAN%3E%26nbsp%3Bavailable%20to%20enterprise%20customers%20starting%20with%20Windows%2010%20Anniversary%20Update%20%3C%2FSPAN%3E%3CSPAN%3Eand%20Windows%20Server%202016.%20Previous%20versions%20of%20Windows%20and%20Windows%20Server%20%3C%2FSPAN%3E%3CSPAN%3Econtinue%20to%20leverage%20%3C%2FSPAN%3E%3CSPAN%3ESystem%20Center%20Endpoint%20Protection.%20The%20%3C%2FSPAN%3E%3CSPAN%3Efollowing%20table%20has%20information%20about%20Windows%20Defender%20Antivirus%20on%20different%20Windows%20versions%20and%20Windows%20Server%20versions%20on-premises%2C%20on%20Azure%2C%20or%20on%20third-party%20cloud%20service.%3C%2FSPAN%3E%3C%2FP%3E%0A%3CP%3E%3CSPAN%3E%26nbsp%3B%3C%2FSPAN%3E%3C%2FP%3E%0A%3CTABLE%20width%3D%22647%22%3E%0A%3CTBODY%3E%0A%3CTR%3E%0A%3CTD%20width%3D%2297%22%3E%3CP%3E%3CSTRONG%3E%3CSPAN%3EOperating%20System%3C%2FSPAN%3E%3C%2FSTRONG%3E%3C%2FP%3E%0A%3C%2FTD%3E%0A%3CTD%20width%3D%22103%22%3E%3CP%3E%3CSTRONG%3E%3CSPAN%3ELicense%3C%2FSPAN%3E%3C%2FSTRONG%3E%3C%2FP%3E%0A%3C%2FTD%3E%0A%3CTD%20width%3D%22103%22%3E%3CP%3E%3CSTRONG%3E%3CSPAN%3EDeployment%3C%2FSPAN%3E%3C%2FSTRONG%3E%3C%2FP%3E%0A%3C%2FTD%3E%0A%3CTD%20width%3D%22168%22%3E%3CP%3E%3CSTRONG%3E%3CSPAN%3EConfiguration%3C%2FSPAN%3E%3C%2FSTRONG%3E%3C%2FP%3E%0A%3C%2FTD%3E%0A%3CTD%20width%3D%22175%22%3E%3CP%3E%3CSTRONG%3E%3CSPAN%3EReporting%3C%2FSPAN%3E%3C%2FSTRONG%3E%3C%2FP%3E%0A%3C%2FTD%3E%0A%3C%2FTR%3E%0A%3CTR%3E%0A%3CTD%20width%3D%2297%22%3E%3CP%3E%3CSPAN%3EWindows%2010%3C%2FSPAN%3E%3C%2FP%3E%0A%3C%2FTD%3E%0A%3CTD%20width%3D%22103%22%3E%3CP%3E%3CSPAN%3ENo%20additional%20license%20required%20to%20use%20Windows%20Defender%20Antivirus%3C%2FSPAN%3E%3C%2FP%3E%0A%3C%2FTD%3E%0A%3CTD%20width%3D%22103%22%3E%3CP%3E%3CSPAN%3EWindows%20Defender%20Antivirus%20is%20built-in%20and%20requires%20no%20agent%20installation%3C%2FSPAN%3E%3C%2FP%3E%0A%3C%2FTD%3E%0A%3CTD%20width%3D%22168%22%3E%3CP%3E%3CSPAN%3EIf%20licensed%2C%20through%20Microsoft%20Intune%20or%20System%20Center%20Configuration%20Manager.%20Alternatively%2C%20Group%20Policies%20or%20PowerShell.%3C%2FSPAN%3E%3C%2FP%3E%0A%3C%2FTD%3E%0A%3CTD%20width%3D%22175%22%3E%3CP%3E%3CSPAN%3EIf%20licensed%3C%2FSPAN%3E%3CSPAN%3E%2C%20through%3C%2FSPAN%3E%3CSPAN%3E%26nbsp%3BWindows%20Defender%20Security%20Center%2C%20System%20Center%20Configuration%20Manager%20or%20Microsoft%20Intune%3C%2FSPAN%3E%3C%2FP%3E%0A%3C%2FTD%3E%0A%3C%2FTR%3E%0A%3CTR%3E%0A%3CTD%20width%3D%2297%22%3E%3CP%3E%3CSPAN%3EWindows%208.1%20and%20Windows%207%3C%2FSPAN%3E%3C%2FP%3E%0A%3C%2FTD%3E%0A%3CTD%20width%3D%22103%22%3E%3CP%3E%3CSPAN%3ESystem%20Center%20Configuration%20Manager%20with%20System%20Center%20Endpoint%20Protection%3C%2FSPAN%3E%3C%2FP%3E%0A%3C%2FTD%3E%0A%3CTD%20width%3D%22103%22%3E%3CP%3E%3CSPAN%3ESystem%20Center%20Endpoint%20Protection%20agent%20can%20be%20deployed%20through%20System%20Center%20Configuration%20Manager%3C%2FSPAN%3E%3C%2FP%3E%0A%3C%2FTD%3E%0A%3CTD%20width%3D%22168%22%3E%3CP%3E%3CSPAN%3ESystem%20Center%20Configuration%20Manager%3C%2FSPAN%3E%3C%2FP%3E%0A%3C%2FTD%3E%0A%3CTD%20width%3D%22175%22%3E%3CP%3E%3CSPAN%3EIf%20licensed%2C%20through%20Windows%20Defender%20Security%20Center%20or%20System%20Center%20Configuration%20Manager%3C%2FSPAN%3E%3C%2FP%3E%0A%3C%2FTD%3E%0A%3C%2FTR%3E%0A%3CTR%3E%0A%3CTD%20width%3D%2297%22%3E%3CP%3E%3CSPAN%3EWindows%20Server%201803%2C%20Windows%20Server%202019%3C%2FSPAN%3E%3C%2FP%3E%0A%3C%2FTD%3E%0A%3CTD%20width%3D%22103%22%3E%3CP%3E%3CSPAN%3ENo%20additional%20license%20required%20to%20use%20Windows%20Defender%20Antivirus%3C%2FSPAN%3E%3C%2FP%3E%0A%3C%2FTD%3E%0A%3CTD%20width%3D%22103%22%3E%3CP%3E%3CSPAN%3EWindows%20Defender%20Antivirus%20is%20built-in%20and%20requires%20no%20agent%20installation%3C%2FSPAN%3E%3C%2FP%3E%0A%3C%2FTD%3E%0A%3CTD%20width%3D%22168%22%3E%3CP%3E%3CSPAN%3EIf%20licensed%2C%20through%20System%20Center%20Configuration%20Manager.%20Alternatively%2C%20Group%20Policies%20or%20PowerShell.%3C%2FSPAN%3E%3C%2FP%3E%0A%3C%2FTD%3E%0A%3CTD%20width%3D%22175%22%3E%3CP%3E%3CSPAN%3EIf%20licensed%2C%20through%20Windows%20Defender%20Security%20Center%20or%20System%20Center%20Configuration%20Manager%3C%2FSPAN%3E%3C%2FP%3E%0A%3C%2FTD%3E%0A%3C%2FTR%3E%0A%3CTR%3E%0A%3CTD%20width%3D%2297%22%3E%3CP%3E%3CSPAN%3EWindows%20Server%202016%3C%2FSPAN%3E%3C%2FP%3E%0A%3C%2FTD%3E%0A%3CTD%20width%3D%22103%22%3E%3CP%3E%3CSPAN%3ENo%20additional%20license%20required%20to%20use%20Windows%20Defender%20Antivirus%3C%2FSPAN%3E%3C%2FP%3E%0A%3C%2FTD%3E%0A%3CTD%20width%3D%22103%22%3E%3CP%3E%3CSPAN%3EWindows%20Defender%20Antivirus%20is%20built-in%20and%20requires%20no%20agent%20installation%3C%2FSPAN%3E%3C%2FP%3E%0A%3C%2FTD%3E%0A%3CTD%20width%3D%22168%22%3E%3CP%3E%3CSPAN%3EIf%20licensed%2C%20through%20System%20Center%20Configuration%20Manager.%20Alternatively%2C%20Group%20Policies%20or%20PowerShell.%3C%2FSPAN%3E%3C%2FP%3E%0A%3C%2FTD%3E%0A%3CTD%20width%3D%22175%22%3E%3CP%3E%3CSPAN%3EIf%20licensed%2C%20Windows%20Defender%20Security%20Center%2C%20System%20Center%20Configuration%20Manager%20or%20Azure%20Security%20Center%3C%2FSPAN%3E%3C%2FP%3E%0A%3C%2FTD%3E%0A%3C%2FTR%3E%0A%3CTR%3E%0A%3CTD%20width%3D%2297%22%3E%3CP%3E%3CSPAN%3EWindows%20Server%202012%20R2%3C%2FSPAN%3E%3C%2FP%3E%0A%3C%2FTD%3E%0A%3CTD%20width%3D%22103%22%3E%3CP%3E%3CSPAN%3ESystem%20Center%20Configuration%20Manager%20with%20System%20Center%20Endpoint%20Protection%3C%2FSPAN%3E%3C%2FP%3E%0A%3C%2FTD%3E%0A%3CTD%20width%3D%22103%22%3E%3CP%3E%3CSPAN%3ESystem%20Center%20Endpoint%20Protection%20agent%20can%20be%20deployed%20with%20System%20Center%20Configuration%20Manager%3C%2FSPAN%3E%3C%2FP%3E%0A%3C%2FTD%3E%0A%3CTD%20width%3D%22168%22%3E%3CP%3E%3CSPAN%3ESystem%20Center%20Configuration%20Manager%3C%2FSPAN%3E%3C%2FP%3E%0A%3C%2FTD%3E%0A%3CTD%20width%3D%22175%22%3E%3CP%3E%3CSPAN%3ESystem%20Center%20Configuration%20Manager%20or%20if%20licensed%2C%20through%20Windows%20Defender%20Security%20Center%20or%20Azure%20Security%20Center%20%3C%2FSPAN%3E%3C%2FP%3E%0A%3C%2FTD%3E%0A%3C%2FTR%3E%0A%3CTR%3E%0A%3CTD%20width%3D%2297%22%3E%3CP%3E%3CSPAN%3EWindows%20Server%202012%2C%20Windows%20Server%202008%20R2%2C%20Windows%20Server%202008%3C%2FSPAN%3E%3C%2FP%3E%0A%3C%2FTD%3E%0A%3CTD%20width%3D%22103%22%3E%3CP%3E%3CSPAN%3E%26nbsp%3BSystem%20Center%20Configuration%20Manager%20with%20System%20Center%20Endpoint%20Protection%3C%2FSPAN%3E%3C%2FP%3E%0A%3C%2FTD%3E%0A%3CTD%20width%3D%22103%22%3E%3CP%3E%3CSPAN%3ESystem%20Center%20Endpoint%20Protection%20agent%20can%20be%20deployed%20with%20System%20Center%20Configuration%20Manager%3C%2FSPAN%3E%3C%2FP%3E%0A%3C%2FTD%3E%0A%3CTD%20width%3D%22168%22%3E%3CP%3E%3CSPAN%3ESystem%20Center%20Configuration%20Manager%3C%2FSPAN%3E%3C%2FP%3E%0A%3C%2FTD%3E%0A%3CTD%20width%3D%22175%22%3E%3CP%3E%3CSPAN%3ESystem%20Center%20Configuration%20Manager%20or%20if%20licensed%2C%20through%20Azure%20Security%20Center%20%3C%2FSPAN%3E%3C%2FP%3E%0A%3C%2FTD%3E%0A%3C%2FTR%3E%0A%3C%2FTBODY%3E%0A%3C%2FTABLE%3E%0A%3CP%3E%3CEM%3E(Windows%20Defender%20Security%20Center%20is%20the%20web%20portal%20available%20for%20Windows%20Defender%20ATP%20customers%20(requires%20Windows%20E5%20or%20Microsoft%20365%20Enterprise%20E5)%3C%2FEM%3E%3C%2FP%3E%0A%3CP%3E%26nbsp%3B%3C%2FP%3E%0A%3CP%3E%3CSPAN%3EIn%20addition%20to%20Windows%20Defender%20Antivirus%20and%20System%20Center%20Endpoint%20Protection%2C%20enterprise%20customers%20can%20use%20Microsoft%20Antimalware%20for%20Azure%20for%20virtual%20machines%20that%20are%20hosted%20on%20Microsoft%20Azure.%20Note%20that%20If%20you%20are%20a%20Windows%20Defender%20ATP%20customer%20you%20should%20assess%20which%20Antivirus%20solution%20best%20fits%20your%20needs.%3C%2FSPAN%3E%3C%2FP%3E%0A%3CP%3E%26nbsp%3B%3C%2FP%3E%0A%3CP%3E%3CSTRONG%3E%3CSPAN%3ESupporting%20Documentation%3A%20%3C%2FSPAN%3E%3C%2FSTRONG%3E%3C%2FP%3E%0A%3CUL%3E%0A%3CLI%3E%3CSPAN%3E%3CA%20href%3D%22https%3A%2F%2Fdocs.microsoft.com%2Fen-us%2Fwindows%2Fsecurity%2Fthreat-protection%2Fwindows-defender-atp%2Fconfigure-attack-surface-reduction%22%20target%3D%22_blank%22%20rel%3D%22noopener%20noreferrer%22%3EConfigure%20Attack%20Surface%20Reduction%3C%2FA%3E%3C%2FSPAN%3E%3C%2FLI%3E%0A%3CLI%3E%3CSPAN%3E%3CA%20href%3D%22https%3A%2F%2Fdocs.microsoft.com%2Fen-us%2Fwindows%2Fsecurity%2Fthreat-protection%2Fwindows-defender-antivirus%2Fconfigure-windows-defender-antivirus-features%22%20target%3D%22_blank%22%20rel%3D%22noopener%20noreferrer%22%3EConfigure%20Next%20Generation%20Protection%3C%2FA%3E%3C%2FSPAN%3E%3C%2FLI%3E%0A%3CLI%3E%3CSPAN%3E%3CA%20href%3D%22https%3A%2F%2Fdocs.microsoft.com%2Fen-us%2Fwindows%2Fsecurity%2Fthreat-protection%2Fwindows-defender-exploit-guard%2Fwindows-defender-exploit-guard%23requirements%22%20target%3D%22_blank%22%20rel%3D%22noopener%20noreferrer%22%3EAttack%20Surface%20Reduction%20Requirements%3C%2FA%3E%3C%2FSPAN%3E%3C%2FLI%3E%0A%3C%2FUL%3E%0A%3CP%3E%3CSPAN%3E%26nbsp%3B%3C%2FSPAN%3E%3C%2FP%3E%0A%3CP%3E%3CSTRONG%3EEndpoint%20detection%20and%20response%3C%2FSTRONG%3E%3C%2FP%3E%0A%3CP%3E%3CSPAN%3EEndpoint%20detection%20and%20response%20(EDR)%20capabilities%20in%20Windows%20Defender%20ATP%20were%20first%20available%20to%20enterprise%20customers%20as%20a%20built-in%20solution%20starting%20with%20Windows%2010%20%3C%2FSPAN%3E%3CSPAN%3EAnniversary%20Update%20and%20Windows%20Server%201803%2C%20but%20these%20capabilities%20have%20since%20expanded%20to%20support%20previous%20versions%20of%20Windows%20and%20Windows%20Server.%20The%20%3C%2FSPAN%3E%3CSPAN%3Efollowing%20table%20has%20information%20about%20Windows%20Defender%20ATP%20on%20different%20Windows%20versions%20and%20Windows%20Server%20versions%20on-premises%2C%20on%20Azure%2C%20or%20on%20third-party%20cloud%20service.%3C%2FSPAN%3E%3C%2FP%3E%0A%3CP%3E%26nbsp%3B%3C%2FP%3E%0A%3CTABLE%20width%3D%22635%22%3E%0A%3CTBODY%3E%0A%3CTR%3E%0A%3CTD%20width%3D%22131%22%3E%3CP%3E%3CSTRONG%3E%3CSPAN%3EOperating%20System%3C%2FSPAN%3E%3C%2FSTRONG%3E%3C%2FP%3E%0A%3C%2FTD%3E%0A%3CTD%20width%3D%22116%22%3E%3CP%3E%3CSTRONG%3E%3CSPAN%3ELicense%3C%2FSPAN%3E%3C%2FSTRONG%3E%3C%2FP%3E%0A%3C%2FTD%3E%0A%3CTD%20width%3D%22124%22%3E%3CP%3E%3CSTRONG%3E%3CSPAN%3EDeployment%3C%2FSPAN%3E%3C%2FSTRONG%3E%3C%2FP%3E%0A%3C%2FTD%3E%0A%3CTD%20width%3D%22142%22%3E%3CP%3E%3CSTRONG%3E%3CSPAN%3EConfiguration%3C%2FSPAN%3E%3C%2FSTRONG%3E%3C%2FP%3E%0A%3C%2FTD%3E%0A%3CTD%20width%3D%22122%22%3E%3CP%3E%3CSTRONG%3E%3CSPAN%3EReporting%3C%2FSPAN%3E%3C%2FSTRONG%3E%3C%2FP%3E%0A%3C%2FTD%3E%0A%3C%2FTR%3E%0A%3CTR%3E%0A%3CTD%20width%3D%22131%22%3E%3CP%3E%3CSPAN%3EWindows%2010%3C%2FSPAN%3E%3C%2FP%3E%0A%3C%2FTD%3E%0A%3CTD%20width%3D%22116%22%3E%3CP%3E%3CSPAN%3EWindows%20E5%20or%20Microsoft%20365%20Enterprise%20E5%3C%2FSPAN%3E%3C%2FP%3E%0A%3C%2FTD%3E%0A%3CTD%20width%3D%22124%22%3E%3CP%3E%3CSPAN%3EWindows%20Defender%20ATP%20is%20built-in%20to%20the%20operating%20system%3C%2FSPAN%3E%3C%2FP%3E%0A%3C%2FTD%3E%0A%3CTD%20width%3D%22142%22%3E%3CP%3E%3CSPAN%3ELocal%20script%2C%20Group%20Policies%2C%20System%20Center%20Configuration%20Manager%2C%20or%20Microsoft%20Intune%3C%2FSPAN%3E%3C%2FP%3E%0A%3C%2FTD%3E%0A%3CTD%20width%3D%22122%22%3E%3CP%3E%3CSPAN%3EWindows%20Defender%20Security%20Center%3C%2FSPAN%3E%3C%2FP%3E%0A%3C%2FTD%3E%0A%3C%2FTR%3E%0A%3CTR%3E%0A%3CTD%20width%3D%22131%22%3E%3CP%3E%3CSPAN%3EWindows%208.1%20and%20Windows%207%3C%2FSPAN%3E%3C%2FP%3E%0A%3C%2FTD%3E%0A%3CTD%20width%3D%22116%22%3E%3CP%3E%3CSPAN%3EWindows%20E5%20or%20Microsoft%20365%20Enterprise%20E5%3C%2FSPAN%3E%3C%2FP%3E%0A%3C%2FTD%3E%0A%3CTD%20width%3D%22124%22%3E%3CP%3E%3CSPAN%3EWindows%20Defender%20ATP%20on%20legacy%20operating%20system%20requires%20installation%20of%20an%20agent%3C%2FSPAN%3E%3C%2FP%3E%0A%3C%2FTD%3E%0A%3CTD%20width%3D%22142%22%3E%3CP%3E%3CSPAN%3EAgent%20deployment%20can%20be%20through%20any%20preferred%20deployment%20method%20such%20as%20System%20Center%20Configuration%20Manager%3C%2FSPAN%3E%3C%2FP%3E%0A%3C%2FTD%3E%0A%3CTD%20width%3D%22122%22%3E%3CP%3E%3CSPAN%3EWindows%20Defender%20Security%20Center%3C%2FSPAN%3E%3C%2FP%3E%0A%3C%2FTD%3E%0A%3C%2FTR%3E%0A%3CTR%3E%0A%3CTD%20width%3D%22131%22%3E%3CP%3E%3CSPAN%3EWindows%20Server%201803%2C%20Windows%20Server%202019%3C%2FSPAN%3E%3C%2FP%3E%0A%3C%2FTD%3E%0A%3CTD%20width%3D%22116%22%3E%3CP%3E%3CSPAN%3EAzure%20Security%20Center%20Pay-As-You-Go%3C%2FSPAN%3E%3C%2FP%3E%0A%3C%2FTD%3E%0A%3CTD%20width%3D%22124%22%3E%3CP%3E%3CSPAN%3EWindows%20Defender%20ATP%20is%20built-in%20to%20the%20operating%20system%3C%2FSPAN%3E%3C%2FP%3E%0A%3C%2FTD%3E%0A%3CTD%20width%3D%22142%22%3E%3CP%3E%3CSPAN%3ELocal%20script%2C%20group%20policies%20and%2C%20if%20licensed%2C%20through%20System%20Center%20Configuration%20Manager%3C%2FSPAN%3E%3C%2FP%3E%0A%3C%2FTD%3E%0A%3CTD%20width%3D%22122%22%3E%3CP%3E%3CSPAN%3EWindows%20Defender%20Security%20Center%3C%2FSPAN%3E%3C%2FP%3E%0A%3C%2FTD%3E%0A%3C%2FTR%3E%0A%3CTR%3E%0A%3CTD%20width%3D%22131%22%3E%3CP%3E%3CSPAN%3EWindows%20Server%202016%2C%20Windows%20Server%202012%20R2%3C%2FSPAN%3E%3C%2FP%3E%0A%3C%2FTD%3E%0A%3CTD%20width%3D%22116%22%3E%3CP%3E%3CSPAN%3EAzure%20Security%20Center%20Pay-As-You-Go%3C%2FSPAN%3E%3C%2FP%3E%0A%3C%2FTD%3E%0A%3CTD%20width%3D%22124%22%3E%3CP%3E%3CSPAN%3EWindows%20Defender%20ATP%20on%20legacy%20operating%20system%20requires%20installation%20of%20an%20agent%3C%2FSPAN%3E%3C%2FP%3E%0A%3C%2FTD%3E%0A%3CTD%20width%3D%22142%22%3E%3CP%3E%3CSPAN%3EAgent%20deployment%20can%20be%20through%20any%20preferred%20deployment%20method%20such%20as%20System%20Center%20Configuration%20Manager%3C%2FSPAN%3E%3C%2FP%3E%0A%3C%2FTD%3E%0A%3CTD%20width%3D%22122%22%3E%3CP%3E%3CSPAN%3EWindows%20Defender%20Security%20Center%20and%20Azure%20Security%20Center%3C%2FSPAN%3E%3C%2FP%3E%0A%3C%2FTD%3E%0A%3C%2FTR%3E%0A%3C%2FTBODY%3E%0A%3C%2FTABLE%3E%0A%3CP%3E%26nbsp%3B%3C%2FP%3E%0A%3CP%3E%3CSPAN%3ESupport%20for%20Windows%20Server%202019%20and%20Windows%20Server%201803%20is%20currently%20in%20public%20preview%20for%20Windows%20Defender%20ATP.%3C%2FSPAN%3E%3C%2FP%3E%0A%3CP%3E%3CSPAN%3E%26nbsp%3B%3C%2FSPAN%3E%3C%2FP%3E%0A%3CP%3E%3CSTRONG%3E%3CSPAN%3ESupporting%20Documentation%3A%20%3C%2FSPAN%3E%3C%2FSTRONG%3E%3C%2FP%3E%0A%3CUL%3E%0A%3CLI%3E%3CSPAN%3E%3CA%20href%3D%22https%3A%2F%2Fdocs.microsoft.com%2Fen-us%2Fwindows%2Fsecurity%2Fthreat-protection%2Fwindows-defender-atp%2Flicensing-windows-defender-advanced-threat-protection%22%20target%3D%22_blank%22%20rel%3D%22noopener%20noreferrer%22%3EValidate%20licensing%20provisioning%20and%20complete%20set%20up%20for%20Windows%20Defender%20ATP%3C%2FA%3E%3C%2FSPAN%3E%3C%2FLI%3E%0A%3CLI%3E%3CSPAN%3E%3CA%20href%3D%22https%3A%2F%2Fdocs.microsoft.com%2Fen-us%2Fwindows%2Fsecurity%2Fthreat-protection%2Fwindows-defender-atp%2Fonboard-configure-windows-defender-advanced-threat-protection%22%20target%3D%22_blank%22%20rel%3D%22noopener%20noreferrer%22%3EOnboard%20machines%20to%20the%20Windows%20Defender%20ATP%20service%3C%2FA%3E%3C%2FSPAN%3E%3C%2FLI%3E%0A%3CLI%3E%3CSPAN%3E%3CA%20href%3D%22https%3A%2F%2Fdocs.microsoft.com%2Fen-us%2Fwindows%2Fsecurity%2Fthreat-protection%2Fwindows-defender-atp%2Fconfigure-server-endpoints-windows-defender-advanced-threat-protection%22%20target%3D%22_blank%22%20rel%3D%22noopener%20noreferrer%22%3EOnboard%20servers%20to%20the%20Windows%20Defender%20ATP%20service%3C%2FA%3E%3C%2FSPAN%3E%3C%2FLI%3E%0A%3CLI%3E%3CSPAN%3E%3CA%20href%3D%22https%3A%2F%2Fdocs.microsoft.com%2Fen-us%2Fazure%2Fsecurity-center%2Fsecurity-center-wdatp%22%20target%3D%22_blank%22%20rel%3D%22noopener%20noreferrer%22%3EWindows%20Defender%20Advanced%20Threat%20Protection%20(ATP)%20with%20Azure%20Security%20Center%3C%2FA%3E%3C%2FSPAN%3E%3C%2FLI%3E%0A%3CLI%3E%3CSPAN%3E%3CA%20href%3D%22https%3A%2F%2Fdocs.microsoft.com%2Fsccm%2Fcore%2Fplan-design%2Fconfigs%2Fsupported-operating-systems-for-clients-and-devices%22%20target%3D%22_blank%22%20rel%3D%22noopener%20noreferrer%22%3ESupported%20OS%20versions%20for%20clients%20and%20devices%20for%20Configuration%20Manager%3C%2FA%3E%3C%2FSPAN%3E%3C%2FLI%3E%0A%3C%2FUL%3E%0A%3CP%3E%3CSPAN%3E%26nbsp%3B%3C%2FSPAN%3E%3C%2FP%3E%0A%3CP%3E%3CSTRONG%3EWindows%20Defender%20ATP%20unified%20endpoint%20security%20platform%3C%2FSTRONG%3E%3C%2FP%3E%0A%3CP%3E%3CSPAN%3EWindows%20Defender%20ATP%20is%20a%20unified%20platform%20that%20helps%20keep%20your%20business%20data%20and%20users%20safe%20from%20advanced%20attacks.%20And%20with%20expanded%20support%20for%20Windows%20Server%2C%20previous%20versions%20of%20Windows%2C%20and%20additional%20client%20hardware%2C%20you%20can%20protect%20a%20wider%20array%20of%20devices%2C%20servers%2C%20and%20endpoints.%20Your%20feedback%20is%20important%20to%20us%20as%20we%20continue%20to%20make%20improvements%20to%20Windows%20Defender%20ATP.%3C%2FSPAN%3E%3C%2FP%3E%0A%3CP%3E%26nbsp%3B%3C%2FP%3E%0A%3CP%3E%3CSPAN%3E%3CSPAN%20class%3D%22lia-inline-image-display-wrapper%20lia-image-align-inline%22%20image-alt%3D%22WDATP.png%22%20style%3D%22width%3A%20937px%3B%22%3E%3CIMG%20src%3D%22https%3A%2F%2Ftechcommunity.microsoft.com%2Ft5%2Fimage%2Fserverpage%2Fimage-id%2F55539i467D9A8C7674CE11%2Fimage-size%2Flarge%3Fv%3Dv2%26amp%3Bpx%3D999%22%20role%3D%22button%22%20title%3D%22WDATP.png%22%20alt%3D%22WDATP.png%22%20%2F%3E%3C%2FSPAN%3E%3C%2FSPAN%3E%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-LABS%20id%3D%22lingo-labs-267114%22%20slang%3D%22en-US%22%3E%3CLINGO-LABEL%3EBackward%20support%3C%2FLINGO-LABEL%3E%3C%2FLINGO-LABS%3E%3CLINGO-SUB%20id%3D%22lingo-sub-2770192%22%20slang%3D%22en-US%22%3ERe%3A%20Protecting%20Windows%20Server%20with%20Windows%20Defender%20ATP%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-2770192%22%20slang%3D%22en-US%22%3E%3CP%3EThe%20instructions%20for%20setting%20up%20onboarding%20for%20a%20server%20are%20poor%20in%20Microsoft%20Docs.%20To%20setup%20the%20Log%20Analytics%20for%20MDE%20you%20are%20given%20a%20link%20to%20the%20generic%20Log%20Analytics%20workspace%20instructions.%20At%20no%20point%20does%20it%20point%20you%20to%20the%20Defender%20portal%20to%20pick%20up%20the%20Workspace%20ID%20and%20key.%26nbsp%3B%20%26nbsp%3B%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-SUB%20id%3D%22lingo-sub-2783641%22%20slang%3D%22en-US%22%3ERe%3A%20Protecting%20Windows%20Server%20with%20Windows%20Defender%20ATP%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-2783641%22%20slang%3D%22en-US%22%3E%3CP%3E%3CA%20href%3D%22https%3A%2F%2Ftechcommunity.microsoft.com%2Ft5%2Fuser%2Fviewprofilepage%2Fuser-id%2F69202%22%20target%3D%22_blank%22%3E%40Milad%20Aslaner%3C%2FA%3E%26nbsp%3B%3CA%20href%3D%22https%3A%2F%2Ftechcommunity.microsoft.com%2Ft5%2Fuser%2Fviewprofilepage%2Fuser-id%2F74946%22%20target%3D%22_blank%22%3E%40Terry%20Hugill%3C%2FA%3E%26nbsp%3Bonboarding%20has%20become%20easier%20using%20Windows%20Admin%20Center.%20It%20is%20still%20quite%20confusing%20and%20I%20hope%20that%20the%2015%20%24%20per%20server%20will%20be%20something%20that%20can%20be%20reduced%20by%20Azure%20Reservations%2C%20especially%20for%20non-profit%20there%20are%20no%20rebates%20and%20the%20costs%20are%20too%20high%20(even%20if%20they%20are%20legitimate%20in%20terms%20of%20security%20level).%20Budgets%20are%20budgets.%3C%2FP%3E%3CP%3EAny%20news%20on%20the%20new%20license%20that%20have%20been%20discussed%20here%3F%26nbsp%3B%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-SUB%20id%3D%22lingo-sub-2845886%22%20slang%3D%22en-US%22%3ERe%3A%20Protecting%20Windows%20Server%20with%20Windows%20Defender%20ATP%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-2845886%22%20slang%3D%22en-US%22%3E%3CP%3EPlease%20see%20this%20article%20for%20details%20of%20the%20new%20Defender%20agent%20for%20server%20that%20combines%20both%20EPP%20and%20EDR%20into%20a%20single%20agent%20for%20Server%202012R2%20and%20above%3A%3C%2FP%3E%0A%3CP%3E%3CA%20href%3D%22https%3A%2F%2Ftechcommunity.microsoft.com%2Ft5%2Fmicrosoft-defender-for-endpoint%2Fdefending-windows-server-2012-r2-and-2016%2Fba-p%2F2783292%22%20target%3D%22_blank%22%3EMicrosoft%20Defender%20for%20Endpoint%3A%20Defending%20Windows%20Server%202012%20R2%20and%202016%3C%2FA%3E%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-SUB%20id%3D%22lingo-sub-2845959%22%20slang%3D%22en-US%22%3ERe%3A%20Protecting%20Windows%20Server%20with%20Windows%20Defender%20ATP%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-2845959%22%20slang%3D%22en-US%22%3E%3CP%3EThank%20you%20for%20the%20heads-up%26nbsp%3B%3CA%20href%3D%22https%3A%2F%2Ftechcommunity.microsoft.com%2Ft5%2Fuser%2Fviewprofilepage%2Fuser-id%2F46360%22%20target%3D%22_blank%22%3E%40Steve%20Newby%3C%2FA%3E%26nbsp%3Bvery%20helpful!%20The%20article%20should%20be%20updated%20to%20include%20Server%202022%20and%20AzureStackHCI%2021H2.%3C%2FP%3E%3CP%3E%3CA%20href%3D%22https%3A%2F%2Ftechcommunity.microsoft.com%2Ft5%2Fuser%2Fviewprofilepage%2Fuser-id%2F49633%22%20target%3D%22_blank%22%3E%40PaulHb%3C%2FA%3E%26nbsp%3Bis%20this%20planned%3F%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-SUB%20id%3D%22lingo-sub-2881418%22%20slang%3D%22en-US%22%3ERe%3A%20Protecting%20Windows%20Server%20with%20Windows%20Defender%20ATP%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-2881418%22%20slang%3D%22en-US%22%3E%3CP%3EGood%20day%26nbsp%3B%3CA%20href%3D%22https%3A%2F%2Ftechcommunity.microsoft.com%2Ft5%2Fuser%2Fviewprofilepage%2Fuser-id%2F69202%22%20target%3D%22_blank%22%3E%40Milad%20Aslaner%3C%2FA%3E%26nbsp%3B%3CA%20href%3D%22https%3A%2F%2Ftechcommunity.microsoft.com%2Ft5%2Fuser%2Fviewprofilepage%2Fuser-id%2F46360%22%20target%3D%22_blank%22%3E%40Steve%20Newby%3C%2FA%3E%26nbsp%3B%3CA%20href%3D%22https%3A%2F%2Ftechcommunity.microsoft.com%2Ft5%2Fuser%2Fviewprofilepage%2Fuser-id%2F49633%22%20target%3D%22_blank%22%3E%40PaulHb%3C%2FA%3E%26nbsp%3B%2C%20recently%20this%20information%20has%20been%20published%26nbsp%3B%3CBR%20%2F%3E%3CA%20href%3D%22https%3A%2F%2Fblogs.microsoft.com%2Fon-the-issues%2F2021%2F10%2F21%2Fcyber-defenses-security-program-nonprofits%2F%22%20target%3D%22_blank%22%20rel%3D%22noopener%20noreferrer%22%3EStrengthening%20cyber%20defenses%20for%20nonprofits%20-%20Microsoft%20On%20the%20Issues%3C%2FA%3E%3C%2FP%3E%3CP%3Ewhich%20I%20like%20as%20we%20have%20some%20non-profit%20customers%2C%20are%20there%20any%20news%20about%20discounts%20or%20reserved%20instances%20%3CSTRONG%3Efor%20on-premises%3C%2FSTRONG%3E%20Windows%20Server%20Azure%20ADR%20at%20reduced%20costs%3F%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-SUB%20id%3D%22lingo-sub-3070062%22%20slang%3D%22en-US%22%3ERe%3A%20Protecting%20Windows%20Server%20with%20Windows%20Defender%20ATP%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-3070062%22%20slang%3D%22en-US%22%3E%3CP%3EHello%20%40all%2C%3C%2FP%3E%3CP%3Ethe%20newest%20way%20to%20support%20Windows%20Server%20with%20MS%20Defender%20for%20Endpoint%20Antivirus%20policies%20is%20to%20bring%20your%20servers%20into%20%3CU%3EIntune%3C%2FU%3E%20(Microsoft%20Endpoint%20Manager%20admin%20center%20--%26gt%3B%20%3CA%20href%3D%22https%3A%2F%2Fendpoint.microsoft.com%22%20target%3D%22_blank%22%20rel%3D%22noopener%20noreferrer%22%3Ehttps%3A%2F%2Fendpoint.microsoft.com%3C%2FA%3E).%3C%2FP%3E%3CP%3EThat%20is%20possible%20with%20a%20new%20preview%20feature%20which%20is%20visible%20into%20the%20Microsoft%20365%20Defender%20portal%20(%3CA%20href%3D%22https%3A%2F%2Fsecurity.microsoft.com%22%20target%3D%22_blank%22%20rel%3D%22noopener%20noreferrer%22%3Ehttps%3A%2F%2Fsecurity.microsoft.com%3C%2FA%3E)%20under%20Settings%20--%26gt%3B%20Endpoints%20--%26gt%3B%20%3CSTRONG%3EConfiguration%20management%26nbsp%3B%20--%26gt%3B%20Enforcement%20scope.%3C%2FSTRONG%3E%3C%2FP%3E%3CP%3E%3CSPAN%20class%3D%22lia-inline-image-display-wrapper%20lia-image-align-inline%22%20image-alt%3D%22MaxMS_0-1643029560449.png%22%20style%3D%22width%3A%20400px%3B%22%3E%3CIMG%20src%3D%22https%3A%2F%2Ftechcommunity.microsoft.com%2Ft5%2Fimage%2Fserverpage%2Fimage-id%2F341826i34AE1B2FD319A93C%2Fimage-size%2Fmedium%3Fv%3Dv2%26amp%3Bpx%3D400%22%20role%3D%22button%22%20title%3D%22MaxMS_0-1643029560449.png%22%20alt%3D%22MaxMS_0-1643029560449.png%22%20%2F%3E%3C%2FSPAN%3E%3C%2FP%3E%3CP%3EFrom%20there%20you%20can%20switch%20on%20your%20OS%20platform%20which%20you%20want%20enroll%20to%20Microsoft%20Endpoint%20Manger%20(Intune).%3C%2FP%3E%3CP%3E%3CSPAN%20class%3D%22lia-inline-image-display-wrapper%20lia-image-align-inline%22%20image-alt%3D%22MaxMS_2-1643029784403.png%22%20style%3D%22width%3A%20400px%3B%22%3E%3CIMG%20src%3D%22https%3A%2F%2Ftechcommunity.microsoft.com%2Ft5%2Fimage%2Fserverpage%2Fimage-id%2F341829iC0E8BAEE500D622E%2Fimage-size%2Fmedium%3Fv%3Dv2%26amp%3Bpx%3D400%22%20role%3D%22button%22%20title%3D%22MaxMS_2-1643029784403.png%22%20alt%3D%22MaxMS_2-1643029784403.png%22%20%2F%3E%3C%2FSPAN%3E%3C%2FP%3E%3CP%3EIf%20you%20don%C2%B4t%20see%20that%20feature%20you%20have%20to%20turn%20on%20the%20preview%20feature%20under%20Settings%20--%26gt%3B%20Endpoints%20--%26gt%3B%20Advanced%20features%20--%26gt%3B%20(scroll%20down%20and%20turn%20on)%20Preview%20features.%3C%2FP%3E%3CP%3E%3CSPAN%20class%3D%22lia-inline-image-display-wrapper%20lia-image-align-inline%22%20image-alt%3D%22MaxMS_1-1643029626488.png%22%20style%3D%22width%3A%20400px%3B%22%3E%3CIMG%20src%3D%22https%3A%2F%2Ftechcommunity.microsoft.com%2Ft5%2Fimage%2Fserverpage%2Fimage-id%2F341827iF2245713CA6AB8A2%2Fimage-size%2Fmedium%3Fv%3Dv2%26amp%3Bpx%3D400%22%20role%3D%22button%22%20title%3D%22MaxMS_1-1643029626488.png%22%20alt%3D%22MaxMS_1-1643029626488.png%22%20%2F%3E%3C%2FSPAN%3E%3C%2FP%3E%3CP%3EThat%20means%2C%20as%20soon%20as%20you%20have%20onboarded%20your%20Windows%20Server%20to%20the%20Microsoft%20365%20Defender%20portal%20and%20mark%20it%20with%20an%20special%20tag%20like%20%3CSTRONG%3E%22MDE-Management%22%3C%2FSTRONG%3E%20it%20will%20appear%20after%20about%2030%20to%2060min%20into%20Intune%20and%20you%20can%20manage%20your%20Server%20from%20there%20with%20Defender%20for%20Endpoint%20policies.%3C%2FP%3E%3CP%3EI%20guess%20you%20need%20for%20that%20at%20least%20a%20Intune%20license%20on%20your%20user%20and%20one%20of%20the%20MS%20Defender%20for%20Endpoint%20Plans%20or%20licenses%20which%20includes%20an%20MS%20Defender%20for%20Endpoint%20Plan.%20(not%20tested%20if%20MS%20Defender%20for%20Endpoint%20Plan%201%20is%20enough%20for%20this).%20I%20have%20tested%20the%20onboarding%20to%20Intune%20via%20MS%20Defender%20portal%20and%20the%20new%20preview%20feature%20with%20Windows%20Server%202016%20and%202019.%3C%2FP%3E%3C%2FLINGO-BODY%3E
Co-Authors
Version history
Last update:
‎Jun 09 2021 02:45 PM
Updated by: