210 questions with Microsoft Defender for Identity-related tags

Sort by: Updated
0 answers

How to remove personal device monitoring from Microsoft Defender

Hi Everyone, I need some help with removing personal device from monitoring in Microsoft Defender. I have created a tag, but unsure on applying it. There are few corporate devices which is not onboarded but bought and are in apple business manager which…

Microsoft Defender for Identity
Microsoft Defender for Identity
A Microsoft service that helps protect enterprise hybrid environments from multiple types of advanced, targeted cyberattacks and insider threats.
210 questions
Microsoft Defender for Cloud Apps
Microsoft Defender for Cloud Apps
A Microsoft cloud access security broker that enables customers to control the access and use of software as a service apps in their organization.
149 questions
asked 2024-10-24T00:28:32.1966667+00:00
Divya Kushal 5 Reputation points
commented 2024-11-08T11:21:51.3966667+00:00
Prathista Ilango 0 Reputation points Microsoft Employee
2 answers

Actions Required After Verifying False Positives in Windows Defender

A customer support inquiry was received regarding our game executable (.exe) being detected as Trojan/Wacatac.B!ml. Several posts on our game site’s community have reported similar issues. The file in question is a program built and distributed by our…

Microsoft Defender for Identity
Microsoft Defender for Identity
A Microsoft service that helps protect enterprise hybrid environments from multiple types of advanced, targeted cyberattacks and insider threats.
210 questions
asked 2024-10-08T05:38:48.8133333+00:00
김 청 0 Reputation points
answered 2024-11-07T09:43:02.8633333+00:00
Prathista Ilango 0 Reputation points Microsoft Employee
0 answers

Attack Simulation Training - Training Issue

Hi there, Re: Attack Simulation Training in Microsoft Defender We have deployed phishing campaigns and some users have been compromised. Some of these users are reporting that they have completed the training modules they've been assigned in this…

Microsoft Defender for Cloud
Microsoft Defender for Cloud
An Azure service that provides threat protection for workloads running in Azure, on-premises, and in other clouds. Previously known as Azure Security Center and Azure Defender.
1,412 questions
Microsoft Defender for Identity
Microsoft Defender for Identity
A Microsoft service that helps protect enterprise hybrid environments from multiple types of advanced, targeted cyberattacks and insider threats.
210 questions
Microsoft Defender for Cloud Apps
Microsoft Defender for Cloud Apps
A Microsoft cloud access security broker that enables customers to control the access and use of software as a service apps in their organization.
149 questions
asked 2024-10-02T12:41:09.7066667+00:00
PARR Shaun 35 Reputation points
commented 2024-11-06T20:16:58.5033333+00:00
Sheila 21 Reputation points
0 answers

The Defender for Identity sensor(s) listed are failing to resolve IP addresses to device names

Good morning, I received this message from Azure alerts The Defender for Identity sensor(s) listed are failing to resolve IP addresses to device names using the configured protocols (4 protocols), with a success rate of less than 10%. This could impact…

Microsoft Defender for Identity
Microsoft Defender for Identity
A Microsoft service that helps protect enterprise hybrid environments from multiple types of advanced, targeted cyberattacks and insider threats.
210 questions
asked 2024-01-16T14:03:28.22+00:00
Alessandro Cassano 0 Reputation points
commented 2024-11-05T10:52:33.13+00:00
Weikie 0 Reputation points
2 answers

How to fully Uninstall/Clean-up Microsoft Defender Endpoint

Hello, We are having issues trying to use a migration tool to move our devices to another Microsoft tenant. It seems to be struggling gaining access and deleting a regkey that is link to a service for MDE. The tool is running and using the system…

Microsoft Defender for Cloud
Microsoft Defender for Cloud
An Azure service that provides threat protection for workloads running in Azure, on-premises, and in other clouds. Previously known as Azure Security Center and Azure Defender.
1,412 questions
Microsoft Intune
Microsoft Intune
A Microsoft cloud-based management solution that offers mobile device management, mobile application management, and PC management capabilities.
5,201 questions
Microsoft Defender for Identity
Microsoft Defender for Identity
A Microsoft service that helps protect enterprise hybrid environments from multiple types of advanced, targeted cyberattacks and insider threats.
210 questions
Microsoft Defender for Endpoint Training
Microsoft Defender for Endpoint Training
Microsoft Defender for Endpoint: A Microsoft unified security platform for preventative protection, postbreach detection, and automated investigation and response. Previously known as Microsoft Defender Advanced Threat Protection.Training: Instruction to develop new skills.
47 questions
asked 2024-06-27T13:23:57.6933333+00:00
Dan Beeney 0 Reputation points
edited the question 2024-11-01T11:16:59.36+00:00
simo-k 635 Reputation points
1 answer One of the answers was accepted by the question author.

Microsoft business Premium Not Support XDR solution ?

I See Microsoft Defender XDR prerequisites Not have Business Premium i don't know support ? Even if it has email protection, identity Endpoint or the need to change plans. This link :…

Microsoft 365
Microsoft 365
Formerly Office 365, is a line of subscription services offered by Microsoft which adds to and includes the Microsoft Office product line.
5,125 questions
Microsoft Intune
Microsoft Intune
A Microsoft cloud-based management solution that offers mobile device management, mobile application management, and PC management capabilities.
5,201 questions
Microsoft Defender for Identity
Microsoft Defender for Identity
A Microsoft service that helps protect enterprise hybrid environments from multiple types of advanced, targeted cyberattacks and insider threats.
210 questions
Microsoft Entra ID
Microsoft Entra ID
A Microsoft Entra identity service that provides identity management and access control capabilities. Replaces Azure Active Directory.
22,114 questions
asked 2024-03-17T11:35:13.5533333+00:00
TECHIT SRIWICHAI 185 Reputation points
commented 2024-11-01T10:19:30.64+00:00
TECHIT SRIWICHAI 185 Reputation points
1 answer

회사 또는 학교 계정 관련해서 로그인이 안돼요.

지금 계정은 개인 계정이고, 같은 계정으로 회사 또는 학교 계정이 있는데, 로그인 하려고 하면 microsoft authenticator 앱을 이용해서 로그인해야 되는데, 이 앱으로 인증 코드를 받으려고 해도 오류가 발생했다는 문구만 뜨고 받을 수 없습니다. 그래서, 인증 앱을 이용하지 않고 로그인할 수 있는 방법 있나요?

Microsoft Authenticator
Microsoft Authenticator
A Microsoft app for iOS and Android devices that enables authentication with two-factor verification, phone sign-in, and code generation.
7,137 questions
Microsoft Intune Security
Microsoft Intune Security
Microsoft Intune: A Microsoft cloud-based management solution that offers mobile device management, mobile application management, and PC management capabilities.Security: The precautions taken to guard against crime, attack, sabotage, espionage, or another threat.
434 questions
Microsoft Q&A
Microsoft Q&A
Use this tag to share suggestions, feature requests, and bugs with the Microsoft Q&A team. The Microsoft Q&A team will evaluate your feedback on a regular basis and provide updates along the way.
821 questions
Microsoft Defender for Identity
Microsoft Defender for Identity
A Microsoft service that helps protect enterprise hybrid environments from multiple types of advanced, targeted cyberattacks and insider threats.
210 questions
Microsoft Entra ID
Microsoft Entra ID
A Microsoft Entra identity service that provides identity management and access control capabilities. Replaces Azure Active Directory.
22,114 questions
asked 2024-07-18T06:02:40.6033333+00:00
성민 이 0 Reputation points
commented 2024-10-30T23:55:05.2733333+00:00
James Hamil 25,396 Reputation points Microsoft Employee
0 answers

Defender Attack Simulation is sending duplicate training notifications

The attack simulation in defender is sending out the duplicate training notifications, when a user is compromised, immediately after the first. Is there something in the set up that I'm missing?

Microsoft Defender for Identity
Microsoft Defender for Identity
A Microsoft service that helps protect enterprise hybrid environments from multiple types of advanced, targeted cyberattacks and insider threats.
210 questions
asked 2024-09-16T17:51:19.2333333+00:00
Andrea Thiel 0 Reputation points
edited the question 2024-10-29T15:30:37.74+00:00
simo-k 635 Reputation points
0 answers

Defender for Identity - gMSA error

Hi All, Need your kind advice We are trying to configure Defender for Identity using gMSA account since its currently configured using service account and sensor working fine. When we change to gMSA, the sensor connection fails and get below error. All…

Windows Server Security
Windows Server Security
Windows Server: A family of Microsoft server operating systems that support enterprise-level management, data storage, applications, and communications.Security: The precautions taken to guard against crime, attack, sabotage, espionage, or another threat.
1,852 questions
Microsoft Defender for Identity
Microsoft Defender for Identity
A Microsoft service that helps protect enterprise hybrid environments from multiple types of advanced, targeted cyberattacks and insider threats.
210 questions
asked 2024-10-02T11:58:58.2733333+00:00
karthik palani 1,036 Reputation points
commented 2024-10-24T12:57:16.7466667+00:00
Gautam 0 Reputation points Microsoft Employee
1 answer

Accessibility of Microsoft Applications

Hi Community, I have been facing an issue with the accessibility settings on my mobile device for some of the microsoft apps like authenticator, defender, link to windows and launcher. When I turn the access on for them after some time it is turned back…

Microsoft Authenticator
Microsoft Authenticator
A Microsoft app for iOS and Android devices that enables authentication with two-factor verification, phone sign-in, and code generation.
7,137 questions
Microsoft Defender for Identity
Microsoft Defender for Identity
A Microsoft service that helps protect enterprise hybrid environments from multiple types of advanced, targeted cyberattacks and insider threats.
210 questions
Sysinternals
Sysinternals
Advanced system utilities to manage, troubleshoot, and diagnose Windows and Linux systems and applications.
1,169 questions
asked 2024-09-06T14:22:27.5433333+00:00
sid 45 Reputation points
answered 2024-10-23T09:08:16.5933333+00:00
K-Mohammed 235 Reputation points Microsoft Employee
0 answers

MS Defender - How to manage Tenant Allow/Block Lists with graph api

Hi, I'm trying to create an integration to block certain URLs on Microsoft Defender with the Graph API. After looking into the documentation, I found this endpoint:…

Microsoft Graph
Microsoft Graph
A Microsoft programmability model that exposes REST APIs and client libraries to access data on Microsoft 365 services.
12,273 questions
Microsoft Defender for Cloud
Microsoft Defender for Cloud
An Azure service that provides threat protection for workloads running in Azure, on-premises, and in other clouds. Previously known as Azure Security Center and Azure Defender.
1,412 questions
Microsoft Defender for Identity
Microsoft Defender for Identity
A Microsoft service that helps protect enterprise hybrid environments from multiple types of advanced, targeted cyberattacks and insider threats.
210 questions
asked 2024-07-10T08:21:08.0666667+00:00
Omer Dital 15 Reputation points
commented 2024-10-23T08:17:27.22+00:00
Pauline Mbabu 480 Reputation points Microsoft Employee
1 answer

Permissions and roles

for a user I need the role and permissions so I can read, edit, and create email threat policies for spam and phishing. are the only roles for this higher privileged ones? is there a way to adjust those permissions to lower reach?

Exchange Server Management
Exchange Server Management
Exchange Server: A family of Microsoft client/server messaging and collaboration software.Management: The act or process of organizing, handling, directing or controlling something.
7,669 questions
Microsoft Intune
Microsoft Intune
A Microsoft cloud-based management solution that offers mobile device management, mobile application management, and PC management capabilities.
5,201 questions
Microsoft Defender for Identity
Microsoft Defender for Identity
A Microsoft service that helps protect enterprise hybrid environments from multiple types of advanced, targeted cyberattacks and insider threats.
210 questions
Microsoft Defender for Cloud Apps
Microsoft Defender for Cloud Apps
A Microsoft cloud access security broker that enables customers to control the access and use of software as a service apps in their organization.
149 questions
Microsoft Entra ID
Microsoft Entra ID
A Microsoft Entra identity service that provides identity management and access control capabilities. Replaces Azure Active Directory.
22,114 questions
asked 2024-10-08T20:56:48.71+00:00
Son man 20 Reputation points
commented 2024-10-21T09:45:30.76+00:00
Xintao Qiao-MSFT 3,995 Reputation points Microsoft Vendor
0 answers

the privacy protection on microsoft defender on my windows 11 laptop will not stay on. The vpn will not conncect

I try to turn on the identity protection and it doesn't work. I go into settings and the vpn isn't connected. I try to connect it and it fails. I am instructed to wait a few minutes and try again. I have also repaired and reset the app and the…

Microsoft Defender for Identity
Microsoft Defender for Identity
A Microsoft service that helps protect enterprise hybrid environments from multiple types of advanced, targeted cyberattacks and insider threats.
210 questions
asked 2024-10-19T09:40:58.5133333+00:00
Coral Zook 0 Reputation points
1 answer

How i can whit list or change defender rules ,when malicious files are detected in SharePoint Online, OneDrive, or Microsoft Teams and backup failed by Veam as their is malware in file

How i can whit list or change defender rules ,when malicious files are detected in SharePoint Online, OneDrive, or Microsoft Teams and backup failed by Veaam as their is malware in file how we can make them whit list as these are legitimate files as…

Microsoft Defender for Identity
Microsoft Defender for Identity
A Microsoft service that helps protect enterprise hybrid environments from multiple types of advanced, targeted cyberattacks and insider threats.
210 questions
asked 2024-09-03T13:05:00.0733333+00:00
Muhammad Zeeshan 100 Reputation points
answered 2024-10-17T11:43:43.6+00:00
Gautam 0 Reputation points Microsoft Employee
1 answer One of the answers was accepted by the question author.

Question about device and security management in multi-tenant (sub-tenant) configuration

My company is growing and has created several LLCs for various product lines. The business intent is to spin off these companies into subsidiaries. It remains to be seen if they will be a "wholly owned" or "affiliate" type…

SharePoint
SharePoint
A group of Microsoft Products and technologies used for sharing and managing content, knowledge, and applications.
10,827 questions
Microsoft Exchange Online Management
Microsoft Exchange Online Management
Microsoft Exchange Online: A Microsoft email and calendaring hosted service.Management: The act or process of organizing, handling, directing or controlling something.
4,578 questions
Microsoft Intune
Microsoft Intune
A Microsoft cloud-based management solution that offers mobile device management, mobile application management, and PC management capabilities.
5,201 questions
Microsoft Defender for Identity
Microsoft Defender for Identity
A Microsoft service that helps protect enterprise hybrid environments from multiple types of advanced, targeted cyberattacks and insider threats.
210 questions
Microsoft Entra ID
Microsoft Entra ID
A Microsoft Entra identity service that provides identity management and access control capabilities. Replaces Azure Active Directory.
22,114 questions
asked 2024-10-09T15:04:23.94+00:00
Shawn Goodwin 176 Reputation points
edited the question 2024-10-15T01:14:28.2466667+00:00
Ling Zhou_MSFT 18,100 Reputation points Microsoft Vendor
1 answer

What permission do I need to access Microsoft Defender - Incidents?

I'm currently accessing a incident on our environment but I can't access it. It gives my this error message. "You can’t access this section. Sorry, you can’t access this section. Check with your administrator for the role-based access permissions…

Microsoft 365
Microsoft 365
Formerly Office 365, is a line of subscription services offered by Microsoft which adds to and includes the Microsoft Office product line.
5,125 questions
Microsoft Defender for Cloud
Microsoft Defender for Cloud
An Azure service that provides threat protection for workloads running in Azure, on-premises, and in other clouds. Previously known as Azure Security Center and Azure Defender.
1,412 questions
Microsoft Defender for Identity
Microsoft Defender for Identity
A Microsoft service that helps protect enterprise hybrid environments from multiple types of advanced, targeted cyberattacks and insider threats.
210 questions
asked 2024-03-12T13:12:45.6966667+00:00
GeneR 0 Reputation points
commented 2024-10-14T18:33:17.5266667+00:00
Sarah Pierce 0 Reputation points
0 answers

Microsoft Defender not reacting on suspisious URL

Hello, I have encountered a rather unpleasant situation with Microsoft Defender. We have received an incident regarding Connection to adversary-in-the-middle (AiTM) phishing site on one endpoint. The User involved has confirmed, that he had accidentally…

Microsoft Defender for Identity
Microsoft Defender for Identity
A Microsoft service that helps protect enterprise hybrid environments from multiple types of advanced, targeted cyberattacks and insider threats.
210 questions
asked 2024-10-09T15:18:05.7766667+00:00
Wojciech Rozanski 70 Reputation points
1 answer

Role & Permissions

What are the correct roles or permissions to let a user read and edit the email threat policies in Microsoft defender portal? From what I can find it would be Security Administrator. Is there a way to lower this role so it is not as privileged, if no…

Microsoft Defender for Identity
Microsoft Defender for Identity
A Microsoft service that helps protect enterprise hybrid environments from multiple types of advanced, targeted cyberattacks and insider threats.
210 questions
Microsoft Entra ID
Microsoft Entra ID
A Microsoft Entra identity service that provides identity management and access control capabilities. Replaces Azure Active Directory.
22,114 questions
Microsoft Defender for Endpoint Training
Microsoft Defender for Endpoint Training
Microsoft Defender for Endpoint: A Microsoft unified security platform for preventative protection, postbreach detection, and automated investigation and response. Previously known as Microsoft Defender Advanced Threat Protection.Training: Instruction to develop new skills.
47 questions
asked 2024-10-08T20:50:58.76+00:00
Son man 20 Reputation points
answered 2024-10-09T06:45:52.9766667+00:00
Vasil Michev 108.1K Reputation points MVP
2 answers

Audit and monitor removable devices from intune

Hello Team, I'm configuring an ASR rule to audit removable devices as the following: I need to know how to get these audits, I didn't find anything related to this policy in the surface attack reduction reports. Thanks, Alaa ELrayes

Microsoft Intune
Microsoft Intune
A Microsoft cloud-based management solution that offers mobile device management, mobile application management, and PC management capabilities.
5,201 questions
Microsoft Defender for Identity
Microsoft Defender for Identity
A Microsoft service that helps protect enterprise hybrid environments from multiple types of advanced, targeted cyberattacks and insider threats.
210 questions
asked 2024-09-24T08:07:27.9733333+00:00
A.Elrayes 186 Reputation points
commented 2024-10-08T06:08:11.62+00:00
ZhoumingDuan-MSFT 13,735 Reputation points Microsoft Vendor
1 answer

Is it wise to have three separate Azure tenants for Test, Prod, and Pre-Prod + Domain name security concern?

Hello everyone, Our IT department is pushing to set up three separate Azure tenants for Test, Production (Prod), and Pre-Prod environments. I’d like to get your thoughts on whether this is truly necessary, especially considering security, management…

Microsoft Defender for Identity
Microsoft Defender for Identity
A Microsoft service that helps protect enterprise hybrid environments from multiple types of advanced, targeted cyberattacks and insider threats.
210 questions
Microsoft Entra
Microsoft Entra ID
Microsoft Entra ID
A Microsoft Entra identity service that provides identity management and access control capabilities. Replaces Azure Active Directory.
22,114 questions
asked 2024-10-03T17:56:39.0266667+00:00
Ilman Hamzatov 0 Reputation points
answered 2024-10-07T18:02:36.9833333+00:00
Goutam Pratti 340 Reputation points Microsoft Vendor