SOLVED

How to change the tenant of Microsoft Defender for Endpoint

%3CLINGO-SUB%20id%3D%22lingo-sub-2451651%22%20slang%3D%22ja-JP%22%3EHow%20to%20change%20the%20tenant%20of%20Microsoft%20Defender%20for%20Endpoint%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-2451651%22%20slang%3D%22ja-JP%22%3E%3CP%3EHi%2C%3C%2FP%3E%3CP%3EI%20have%202%20accounts%2C%20aaa.onmicrosoft.com%20and%20bbb.onmicrosoft.com%2C%20and%20some%20Windows%20PCs%20already%20installed%20MS%20Defender%20for%20Endpoint%20and%20can%20see%20the%20device%20name%20on%20the%20management%20console%20with%20aaa.onmicrosoft.com%20account.%3C%2FP%3E%3CP%3EI%20would%20like%20to%20change%20the%20account%20to%20bbb.onmicrosoft.com%20but%20I%20can't%20do%20it%20at%20this%20time.%3C%2FP%3E%3CP%3EI%20installed%20MS%20Defender%20for%20Endpoint%20by%20using%20the%20local%20script%20as%20an%20onboarding%20from%20aaa.onmicrosoft.com%20and%20re-installed%20MS%20Defender%20for%20Endpoint%20again%20by%20using%20the%20local%20script%20from%20bbb.onmicrosoft.com.%3C%2FP%3E%3CP%3EAfter%20re-installing%2C%20the%20PCs%20are%20still%20seen%20on%20the%20management%20console%20with%20the%20aaa.onmicrosoft.com%20account.%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3EWhat%20should%20I%20do%20about%20this%3F%20Should%20I%20uninstall%20it%20by%20using%20off-boarding%20process%20before%20re-install%3F%3C%2FP%3E%3CP%3EBest%20regards%2C%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-LABS%20id%3D%22lingo-labs-2451651%22%20slang%3D%22ja-JP%22%3E%3CLINGO-LABEL%3EDefender%20for%20Endpoint%3C%2FLINGO-LABEL%3E%3C%2FLINGO-LABS%3E
New Contributor

Hi, 

I have 2 accounts, aaa.onmicrosoft.com and bbb.onmicrosoft.com, and some Windows PCs already installed MS Defender for Endpoint and can see the device name on the management console with aaa.onmicrosoft.com account.

I would like to change the account to bbb.onmicrosoft.com but I can't do it at this time.

I installed MS Defender for Endpoint by using the local script as an onboarding from aaa.onmicrosoft.com and re-installed MS Defender for Endpoint again by using the local script from bbb.onmicrosoft.com.

After re-installing, the PCs are still seen on the management console with the aaa.onmicrosoft.com account.

 

What should I do about this? Should I uninstall it by using off-boarding process before re-install?

Best regards,

2 Replies
best response confirmed by tarosrcm (New Contributor)
Solution
You need to offboard the devices in the first tenant. Please use the script referenced here, or a GPO or other item. https://docs.microsoft.com/en-us/microsoft-365/security/defender-endpoint/offboard-machines?view=o36...

then you can onboard to the new one.

@cberon Thank you for your proper answer! It is clear to me.