Microsoft 365 Device Onboarding to Defender for Endpoint | Configuration Guide

Configuring Microsoft Defender for Endpoint on Windows 10 Devices in Intune

Prev Question Next Question

Question

You have a Microsoft 365 subscription and Microsoft 365 E5 licenses assigned to your users.

Your windows 10 devices are managed in Intune.

You want to onboard your devices to Microsoft Defender for Endpoint.

What must you configure first?

Answers

Explanations

Click on the arrows to vote for the correct answer

A. B. C. D.

Correct Answer: A

Before you can start onboarding your windows 10 devices to Microsoft Defender for Endpoint you must enable a connection between Intune and Defender for Endpoint.

This is configured in the Microsoft Endpoint Manager admin center - Endpoint Security - Microsoft Defender for Endpoint - Open the Microsoft Defender Security Center.

Microsoft Endpoint Manager admin center « A Home Dashboard = Allsenvices 4 Favonrres Ci vevices EE Apps Reports & users 22 Groups & Tenant administration XK Troubleshooting + support Home > Endpoint security o Endpoint security | Microsoft Defender for Endpoint & Search (Ctri+/) « Overview @ overview BR All devices Security baselines ®& Security tasks Manage © antivirus Disk encryption Firewall Endpoint detection and response ‘Account protection Device compliance Conditional access e ® @ Attack surface reduction 9 & i) Setup © Microsoft Defender for Endpoint Help and support © Refresh Connection status Last synchronized @ © Unavailable ~ Use Microsoft Defender for Endpoint to gain visibility into your organization's security posture and get recon Connecting Microsoft intune and Microsoft Defender for Endpoint allows you to use Microsoft Defender for Directory conditional access enforcement. Learn more about Microsoft Defender for Endpoint Learn more about connecting Microsoft Defender for Endpoint to Intune Configuring Microsoft Defender for Endpoint 1. Setup a connection to Intune via the Microsoft Defender Security Center: Connect Microsoft Defender for E 2, After a connection is established, click “Refresh" at the top of this section to hide this guide and enable the 3. Configure the settings below. Connector Settings (Open the Microsoft Defender Security Center

Within the Microsoft Defender Security Center, navigate to Setting - Advanced Features and set “Microsoft Intune Connection” to On:

Microsoft Intune connection Connects to Microsoft Intune to enable sharing of device information and enhanced policy enforcement. Intune provides additional information about managed devices for secure score. It can use risk information to enforce conditional access and other security policies.

Option B is incorrect.

You already have Microsoft 365 E5 licenses, which include a Microsoft Defender for Endpoint license.

Option C is incorrect.

Creating a device group in Azure AD is not correct, you must establish a connection between Intune and Microsoft Defender for Endpoint.

Option D is incorrect.

Installing the MMA agent is a prerequisite for collecting data on your devices.

To know more about onboarding devices to Defender of Endpoint, please refer to the link below:

To onboard your Windows 10 devices to Microsoft Defender for Endpoint, you must first configure the service-to-service connection between Intune and Microsoft Defender for Endpoint. Therefore, the correct answer is A.

Here's a detailed explanation for each answer option:

A. Enable service-to-service connection between Intune and Microsoft Defender for Endpoint: This is the correct answer. To onboard devices to Microsoft Defender for Endpoint, you need to establish a connection between Intune and Defender for Endpoint. You can do this by configuring the Microsoft Defender for Endpoint connector in Intune. This connector enables Intune to manage and monitor Defender for Endpoint on your Windows 10 devices.

B. Buy Microsoft Defender for Endpoint licenses for your users: This answer is incorrect. Microsoft 365 E5 licenses already include Microsoft Defender for Endpoint, so you do not need to buy additional licenses.

C. A dynamically assigned Device group in Azure: This answer is incorrect. A dynamically assigned device group in Azure is not a requirement for onboarding devices to Microsoft Defender for Endpoint. However, you can use device groups to organize and manage your devices in Intune.

D. Install the Microsoft Monitoring Agent on your devices: This answer is partially correct. The Microsoft Monitoring Agent is required to collect data from your Windows 10 devices and send it to Microsoft Defender for Endpoint. However, before you can install the agent, you must first configure the service-to-service connection between Intune and Defender for Endpoint.

Prev Question Next Question