cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
SOLVED

Compliance check for EDR solution

RahamimL
Iron Contributor

‎Jun 17 2021 05:17 AM

‎Jun 17 2021 05:17 AM

Compliance check for EDR solution

Hi everyone,

 

We want to be able to disconnect a user from the corporate WI-FI if our EDR solution is off for some reason.

We have both Azure joined and hybrid laptops and what we did with our domain joined is run a script from a server in our LAN against the computer to check whether or not the process is running.

Since we can't use the same with Azure joined we are searching a simple solution to just check that the EDR AV is enabled. And if not, disconnect from the network by using a script.

Is there a way to do the same thing with Intune? We want to make sure that if the computer isn't compliant it will be disconnected from the corporate WIFI.

 

Thanks, Rahamim.

2,682 Views
0 Likes
5 Replies
Reply
5 Replies
Nathan Blasac

‎Jun 17 2021 06:58 AM

‎Jun 17 2021 06:58 AM

Re: Compliance check for EDR solution

Are you using Defender for Endpoint as your EDR? Or a third party out of curiosity?
0 Likes
Reply
RahamimL

‎Jun 17 2021 07:01 AM

‎Jun 17 2021 07:01 AM

Re: Compliance check for EDR solution

Third Party
0 Likes
Reply
best response confirmed by RahamimL (Iron Contributor)
Nathan Blasac

‎Jun 17 2021 07:22 AM

‎Jun 17 2021 07:22 AM

Solution

Re: Compliance check for EDR solution

You could potentially leverage the same script. The issue with deploying PowerShell Scripts from Intune is it's a one and done deployment. The script is not running repeatedly. Are you running that script on a schedule?
0 Likes
Reply
RahamimL

‎Jun 23 2021 04:02 AM

‎Jun 23 2021 04:02 AM

Re: Compliance check for EDR solution

Thanks, What we will use is this script as a win32 app with azure log analytics to get an alert when the app fails. this will help us, for now, to check the EDR client. If for some reason the client stops, we will get an alert via email.
0 Likes
Reply
Nathan Blasac

‎Jun 23 2021 07:15 AM

‎Jun 23 2021 07:15 AM

Re: Compliance check for EDR solution

Sounds like a plan. Cheers
0 Likes
Reply
1 best response

Accepted Solutions
best response confirmed by RahamimL (Iron Contributor)
Nathan Blasac

‎Jun 17 2021 07:22 AM

‎Jun 17 2021 07:22 AM

Solution

Re: Compliance check for EDR solution

You could potentially leverage the same script. The issue with deploying PowerShell Scripts from Intune is it's a one and done deployment. The script is not running repeatedly. Are you running that script on a schedule?

View solution in original post

0 Likes
Reply