Microsoft for Home & Business Overview of Microsoft 365 Lighthouse Microsoft Defender for Business (preview) troubleshooting Microsoft Defender for Business (preview) – Frequently asked questions and answers Get help and support for Microsoft Defender for Business (preview) Manage your custom rules for firewall policies in Microsoft Defender for Business (preview) Firewall in Microsoft Defender for […]
Running the analyzer through GUI scenario Download the XMDE Client Analyzer tool to the macOS or Linux machine you need to investigate. Note The current SHA256 hash of ‘XMDEClientAnalyzer.zip’ that is downloaded from the above link is: ’34C7F043211575544BB2C9CE30AB0998172066E44CD51E1CA018EDE9C96AB834′. Extract the contents of XMDEClientAnalyzer.zip on the machine. Open a terminal session, change directory to the extracted location and […]
Collecting diagnostic information If you can reproduce a problem, increase the logging level, run the system for some time, and restore the logging level to the default. Increase logging level: BashCopy mdatp log level set –level debug OutputCopy Log level configured successfully Reproduce the problem Run sudo mdatp diagnostic create to back up the Microsoft Defender for […]
Microsoft is committed to providing you with the information and controls you need to make choices about how your data is collected and used when you’re using Microsoft Defender for Endpoint on macOS. This topic describes the privacy controls available within the product, how to manage these controls with policy settings and more details on […]
While you can start a threat scan at any time with Microsoft Defender for Endpoint, your enterprise might benefit from scheduled or timed scans. For example, you can schedule a scan to run at the beginning of every workday or week. Schedule a scan with launchd You can create a scanning schedule using the launchd daemon on a […]
Requirements Device control for macOS has the following prerequisites: Microsoft Defender for Endpoint entitlement (can be trial) Minimum OS version: macOS 11 or higher Minimum product version: 101.34.20 Device control policy To configure device control for macOS, you must create a policy that describes the restrictions you want to put in place within your organization. […]
The potentially unwanted application (PUA) protection feature in Microsoft Defender for Endpoint on macOS can detect and block PUA files on endpoints in your network. These applications are not considered viruses, malware, or other types of threats, but might perform actions on endpoints that adversely affect their performance or use. PUA can also refer to […]
Important This article contains instructions for how to set preferences for Microsoft Defender for Endpoint on macOS in enterprise organizations. To configure Microsoft Defender for Endpoint on macOS using the command-line interface, see Resources. Summary In enterprise organizations, Microsoft Defender for Endpoint on macOS can be managed through a configuration profile that is deployed by using […]
This article provides information on how to define exclusions that apply to on-demand scans, and real-time protection and monitoring. Important The exclusions described in this article don’t apply to other Defender for Endpoint on Mac capabilities, including endpoint detection and response (EDR). Files that you exclude using the methods described in this article can still […]
Microsoft regularly publishes software updates to improve performance, security, and to deliver new features. To update Microsoft Defender for Endpoint on macOS, a program named Microsoft AutoUpdate (MAU) is used. By default, MAU automatically checks for updates daily, but you can change that to weekly, monthly, or manually. If you decide to deploy updates by […]