Thank you Jonathan, This video has been a massive help, I'd never deployed Defender for Endpoint using InTune before, however watching your video, made it seem really simple and straight forward. I took what I learned and then used that knowledge and rolled it out to one of my clients and it was a success. Keep making these videos, they are both funny at times, and useful. Once again it was great to meet you in London before Chrismas at the Oval for the ConnectWise Event, just outside the toilets lol
Jonathan, thank you, Thank You, THANK YOU!! Of all the videos on M365, yours are the easiest to follow. You have saved my sanity. (Some may question that statement-lol)
love your speed of speaking and movement through your vids. appreciate your expertise and in sharing it so the rest of us can be useful in our jobs too. thank you!!!
Okay, I created a policy from Security Baseline > Microsoft Defender for Endpoint Security Baseline, and then I created my custom policy in Endpoint Security > Antivirus. I assigned both policies to my laptop. What can I expect? Where can I see what's implemented on what?
I love watching your vides! I am confused though on this one. We are upgrading to an e3 license. Are you saying that p1 (which comes with e3) is actually less functionality than the business premium version? That seams counter intuitive. 🤔
Can you apply intune/defender policies to devices registered in defender portal or do I need to hybrid join every server as i need to get servers in defender but don't want to use sccm or group policy. May want to use sccm for deployment but policies controlled from intune/defender..
Defender for Endpoint is a game-changer for endpoint security. Looking forward to seeing your simplified setup process-what's the biggest hurdle you typically see organisations face during installation?
Why EDR policy is showing ducplicate devices, the devices were originally enrolled to Azure AD but not to Intune, now we have enabled auto entrollment and getting devices to Defender (previously on different AV), beacuse the devices are showing duplicate (only in EDR policy) the applied configuration is also duplicating in devices and creating conflicts, any idea how to go about this
My question is if there is any complication on enrolling devices with Intune when they already enrolled with Jumpcloud as AD. I want to enroll the company macOS devices & Windows with Microsoft Defender for Business and we don't have anything enrolled in Azure(Intune). Is there any complication if I enroll them with Intune and Jumpcloud? Or there is a way to integrate Jumcploud with Intune?
hi Jonathan, i have a query that might need your help I have create configuration in file endpoint detection and response that can found 11 device but outside the defender for endpoint is show 0 device in proteced is that doest matter.
Hi Jonathan, As always all your videos are interresting, very informative and helpful However i have a question regarding Microsoft defender for business which comes along the Business premium subscription. If a user login a computer with a business premium licence configure, meaning that the device is protected with all setting with buiness defender, but if another user login on the same computer with a Microsoft basic license subscrition which does not include Microsoft defender for business, My question is the device will still be protected with defender as the device was already configured with the premium licence. Thank you in advance for your help Regards AD
@@ashikdindoyal2475 as long as the device is enrolled in Defender for Endpoint, and there are licenses for Defender in the tenant, it will be protected
Many thanks for creating some nice and short informative videos. I'm just looking at enhancing basic cyber security for a business that lacks any AV software. Can you tell me if Defender handles patch management?
@@bearded365guy Thanks for the information. I am presuming that it just handles Microsoft product updates. Now I'm beginning to understand why in my previous career, my employer with 10 thousand staff did not want to add Chrome as a browser as it would not be patchable by systems on Microsoft.😀
Update for Business is very simplistic, think Microsoft managed updates where updates are forced on Windows Home edition computers. The robust solution is Azure Update Manager.
@@AndyTate-1Chrome is a wild example because it handles updates with a kernel level driver that could subvert security measures (think rootkit). With Edge becoming chromium based there really is no reason to take on the additional security risk.
I set up defender just like you did and it works! I have one concern. If I go to Endpoints in the m365 security Center, I can go to something called the timeline and it shows a chronological list of things that happened on a client with defender active. It just logs so much! It shows whenever the browser opened a webpage/established a connection. That’s almost like tracking our users and we do not want this. Any way to turn that off?
Thank you Jonathan, This video has been a massive help, I'd never deployed Defender for Endpoint using InTune before, however watching your video, made it seem really simple and straight forward. I took what I learned and then used that knowledge and rolled it out to one of my clients and it was a success. Keep making these videos, they are both funny at times, and useful. Once again it was great to meet you in London before Chrismas at the Oval for the ConnectWise Event, just outside the toilets lol
For new learners, the profiles he has created here, need to be assigned to a Group where your desired devices are residing 🙂
Jonathan, thank you, Thank You, THANK YOU!! Of all the videos on M365, yours are the easiest to follow. You have saved my sanity. (Some may question that statement-lol)
love your speed of speaking and movement through your vids. appreciate your expertise and in sharing it so the rest of us can be useful in our jobs too. thank you!!!
Okay, I created a policy from Security Baseline > Microsoft Defender for Endpoint Security Baseline, and then I created my custom policy in Endpoint Security > Antivirus. I assigned both policies to my laptop. What can I expect? Where can I see what's implemented on what?
Same thing I was wondering about! Please did you find the answer to this yet?
Hi Johnathan, thanks for making this video, it really helped me and my coworkers deploy Defeder easily.👍👍
Best , u make complex stuff very straightforward 🙂
I love watching your vides! I am confused though on this one. We are upgrading to an e3 license. Are you saying that p1 (which comes with e3) is actually less functionality than the business premium version? That seams counter intuitive. 🤔
That’s right. But it depends on the size of your business. Premium has a limit to 300 seats.
Can you apply intune/defender policies to devices registered in defender portal or do I need to hybrid join every server as i need to get servers in defender but don't want to use sccm or group policy.
May want to use sccm for deployment but policies controlled from intune/defender..
Defender for Endpoint is a game-changer for endpoint security. Looking forward to seeing your simplified setup process-what's the biggest hurdle you typically see organisations face during installation?
@@proaxiom_cyber Hi, take a look at my two recent videos….. I go more in depth…
Excellent video Jonathan!
Really love the occasional humor you inserted 😂
Subscribed. Keep going!
Why EDR policy is showing ducplicate devices, the devices were originally enrolled to Azure AD but not to Intune, now we have enabled auto entrollment and getting devices to Defender (previously on different AV), beacuse the devices are showing duplicate (only in EDR policy) the applied configuration is also duplicating in devices and creating conflicts, any idea how to go about this
@@HashAlweera I’ve got some more content coming in this area
How does the software look on a PC, does it show in Windows Defender when you have the required license on an azure Azure-joined PC.
Endpoint detection and response profile--Auto from the connector and on boding from the security portal which scenario will be used
is it the user workstation necessary to join the AAD so that the workstation able to detect the license ?
My question is if there is any complication on enrolling devices with Intune when they already enrolled with Jumpcloud as AD.
I want to enroll the company macOS devices & Windows with Microsoft Defender for Business and we don't have anything enrolled in Azure(Intune). Is there any complication if I enroll them with Intune and Jumpcloud? Or there is a way to integrate Jumcploud with Intune?
You made it easy to understand.
Great work..
hi Jonathan, i have a query that might need your help
I have create configuration in file endpoint detection and response that can found 11 device
but outside the defender for endpoint is show 0 device in proteced is that doest matter.
I just love you man. You make my job better and teach me a lot along the way. :)
Hi Jonathan. Is there a simple way to confirm devices are successfully being managed by Defender on the actual devices?
Hi Jonathan,
As always all your videos are interresting, very informative and helpful
However i have a question regarding Microsoft defender for business which comes along the Business premium subscription.
If a user login a computer with a business premium licence configure, meaning that the device is protected with all setting with buiness defender, but if another user login on the same computer with a Microsoft basic license subscrition which does not include Microsoft defender for business,
My question is the device will still be protected with defender as the device was already configured with the premium licence.
Thank you in advance for your help
Regards
AD
@@ashikdindoyal2475 as long as the device is enrolled in Defender for Endpoint, and there are licenses for Defender in the tenant, it will be protected
@@bearded365guy ok thank you very for your help
When I go to Intune and select the auto from connector from the onboarding blob from connector it has a red next to it how do I fix this.
Hi Jonathan. Great video, as usual. Can you create a video on how to keep Defender up to date with latest intelligence updates?
New video on Defender coming very soon!
So, do i need to pay for a separate AV solution (like ESet) if we can use Defender for Endpoint?
@@AndroidAccount-w8k no!
Hi Jon, this video is amazing. Thanks for sharing this. Do you have a video for how to install MDE for servers? Thanks
Many thanks for creating some nice and short informative videos. I'm just looking at enhancing basic cyber security for a business that lacks any AV software. Can you tell me if Defender handles patch management?
No, but you can handle this in Intune
learn.microsoft.com/en-us/mem/intune/protect/windows-update-for-business-configure
Good luck
@@bearded365guy Thanks for the information. I am presuming that it just handles Microsoft product updates.
Now I'm beginning to understand why in my previous career, my employer with 10 thousand staff did not want to add Chrome as a browser as it would not be patchable by systems on Microsoft.😀
Update for Business is very simplistic, think Microsoft managed updates where updates are forced on Windows Home edition computers. The robust solution is Azure Update Manager.
@@AndyTate-1Chrome is a wild example because it handles updates with a kernel level driver that could subvert security measures (think rootkit). With Edge becoming chromium based there really is no reason to take on the additional security risk.
Great and informative video! Could you please add a video about Defender for endpoint for non-persistent VDI desktops ?
Perhaps…..
hello, who need to have premium subscription the admin or all endpoint users ? also should all users be part of same tenant ?
Everyone for licensing terms.
i am unable to install defender agent getting error on all windows 2012R2 servers 2012 R2 - MpAsDesc.dll 310
I set up defender just like you did and it works! I have one concern. If I go to Endpoints in the m365 security Center, I can go to something called the timeline and it shows a chronological list of things that happened on a client with defender active. It just logs so much! It shows whenever the browser opened a webpage/established a connection. That’s almost like tracking our users and we do not want this. Any way to turn that off?
Did you figure out how to disable this?
Thank you for the video, the swooshing sound is driving me insane
From portal page, azure active directory does not exist. Its now called Microsoft Entra ID (I think)
Yes, it’s changed it’s name
Great video. Thanks 🙂
great video, it helped a lot
Good job again!
Thank you!!!!
Thanks
No wonder that textbook isn't helpful, it's Packt!
Dude come on, Microsoft leaves it in the past at Sophos or Bitdefender? You mean McAfee or Norton hahaha
Ew mcafee and norton have been adware for decades now.
Thankyou