วีดีโอ

How do you add devices to a group?

man great explanation thanks!

Great walkthrough - Maybe it is also worth mentioning that for onboarding MacOS to MDE incl. Purview (Endpoint dip) would require a few deployments of config profiles to configure the accessibility, FDA, and background service permissions to Defender for Endpoint in order to for example enable the DLP sensor.

Awesome Video. I have a Question. What is the difference beetwen Microsoft Defender For Endpoint and Microsoft Defender For Business? And Which one is the best?

What license tier are you using to demo this? we have Azure AD Premium P1 and I don't see many of these features. :(

When we created Device Group, looks like it also create Ungrouped Device (default) on Rank - Last at 11:15. Does this ungrouped means not on Automatic remediation group? Could you please tell me what actually it is?

If sophos antivirus is installed still we can use onboard logic and how to perform with sccm 2) how to deploy windows 10 defender parches or definition via SCCM it is called EDR and endpoint protection role has to be installed to deploy windows 10 defender parches or definition via SCCM

Hello, just got a Defender for Endpoint P2 licence for my lab, however I cannot see "Endpoints" in the settings of the Microsoft 365 Center, does it take long time to appear after I populated the licence to a user ?

When I'm in the endpoint settings I dont get the Permissions section so I can't see/access device groups. Any suggestions to gain access to this section? Or has this section possibly been moved since this video was made?

Hi there, first of all great video. Helps me with connecting the MDE and MEM. Now i already enrolled a device in MEM but in MDE it does not show up in MDE. Do you have any idea why is that?

Hello, I have a problem with Intune defender, it detects the virus but it doesn't remove it even though the threat is serious and I have configured the Policy correctly, can you help me please? I've been looking for more than one but I can't find anything.

Hey man, Appreciate the content and also have some questions to asked such as can we update the winows os 11 and microsoft office and zoom for windows and mac through request remediation. Also, it will automatically update, or users have to do it manually and block rule will be suitable for this.

Thank you, i've been stuck in the Microsoft documentation that keeps sending you in a loop of links that end up in the same place, whoever does those documentations at Microsoft should just learn to get to the damn point.

I need advise to get in to cybersecurity. I have no IT background should I focus on 365 defender to get a job with Microsoft or other company that uses this software?

love this so much

Thank you brother. It helped me a lot

Thank you for this video. Integration of MDE with SIEM. MDE Proxy configuration. Firewall and Antivirus configuration through MDE and migration from 3rd party to MDE

Great Video. How do we prevent malware from disabling windows defender. Sideloading malware dll. Temper protection was enabled on Advance settings MDE

Another great video highlighting these features. Thank you very much

This was a really great video. It was genuinely really helpful. Also the end was really funny. I'm glad you kept it.

This was a really great tutorial. Thank you very much. I'd love your take on Attack Surface Reduction. I don't love the brief overview videos I've seen before. I'd like your more in depth walk-through. You do a great job.

Do you have anything on Defender for Server - new as of Sept 2022?

This is a great video. Thank you for taking the time to put them together.

Thanks a lot for sharing your knowledge - very appreciated! I am looking forward to see the best practice video. =)

Thank you very much! The best most clear video I have seen on setting this up.

Hi, Awesome Video. Question- Do you use the configuration profiles to set ASR rules or can you use endpoint security? Which one will pull through to the security portal if in audit mode? ASR rules set from within Endpoint security - or if ASR rules are set to audit in a configuration profile? and if they are handled differently, which would you recommend? Thanks in advance!

Thanks so much. This really helped understand how Defender TVM actually works. Really enlightening.

This video will help me in my new role. I will watch it over and over again. Also, could you share with me the link for Threat hunting trainings? Thanks a lot

I’m a couple of weeks from piloting this before a 2000 seat deployment so this video has been really useful. Off to watch your others

Great explanation and video. So the SfB also applies to Teams? What is your experience with enabling PUA, is it something you recommend and not disturbing production (non MS apps)? The device discovery is enabled default but this also discovers users home devices when the user is working on the laptop at home, so it will fill up your DFE devices list so food for thought. What is your advice for old/deleted/lost or reimaged devices in DFE that are not properly offboarded or offboarded but still in DFE die to retention? Do you create a tag and device group to filter out those? And a stupid license question Say you got DFE P1 and you Enable AIR and EDR (not part of DFE P1) will both AIR and EDR work but your are not license compliant or are these features blocked from working ?

Great stuff and thanks for sharing!! I am eagerly waiting for the next video in the series.

Thanks the explaining in detail. What license the users have to be for end point management to work ? Or just get defender license and assigning just it to the admin profile will do the needful ?

Great video, maybe a tutorial about threat hunting in Microsoft Defender for Endpoint

You solved my problems. TANK'S.

Hi, This works with E3 license?

Awesome video! We are in the process of moving off Trend Micro and plan to move over to using this for our AV and security software. Do you have any suggestions on where I can also find information on how other's may have migrated off another security product onto MDE?

Thank you

Great stuff and information. I missed that new feature 'mitigation (beta)' that's pretty cool but i'm curious how well this works and mainly because if you block Chrome 3.1 for example can user still use Chrome 3.1.1 and Will it not affect Edge (based on Chrome) ? Are you going to do a video about best-practices when implementing DFE? I mean which policies and settings to enable for win10/11 but also for Servers when using DFE for server ?

I appreciate this refined tutorial on how to improve my security posture. You’ve made this seemingly difficult task more approachable.

This information is really helping me out!! I came across your channel by chance, and now you’re my go to for everything security related!!!!

Great video Zack, Really appricated!

Hi, thank you for the video! Question: What is the difference between this Configuration Policy you created and the EDR onboarding policy you can create with the setting "Auto from Connector"? Another Question: If I onboard devices from Intune to MDE, are the devices fully integrated to Microsoft Defender for Endpoint? Can I manage the Security just from Defender for Endpoint if I want to? When should / can I use the Security Settings in Intune and when should / can I use the settings in the Defender for Endpoint? What exactly is the difference in capabilities between an Intune managed device onboarded to MDE and a device directly onboarded to MDE? I am quite confused why you can manage the security settings on both ends..

Thanks Zack, top video, well presented walk through and guide thru MDE, great tips.

Thanks, really well laid out step by step guide, thanks!

Does this work exactly this way with hybrid joined devices?