This browser is no longer supported.
Upgrade to Microsoft Edge to take advantage of the latest features, security updates, and technical support.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(310.4, 60%, 40%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EW%3C/text%3E%3C/svg%3E)
Hello,
I'm currently testing Defender as our AV solution to replace a 3rd party one. I have the connection to Intune setup and I've onboarded my test devices.
I've also created an AV policy including a daily full scan at 10am.
It's now almost 5pm, in the Defender portal my device doesn't show that it's run a full scan today (force by the policy). If I look in my local security center, I can see the scan did run.
Is there a delay in the communications between the client and the portal? Other settings (like adding our support team's details to the local security center) synced quickly.
I'm just concerned that this will be an unreliable solution if scan data isn't reflected in the portal promptly.
update I'm actually posting this a day later (13th) and my machine hasnt ran a full scan at 10 like it should.
thank you
A cloud-native solution that protects workloads across hybrid and multi-cloud environments with threat detection and security recommendations
I will add that the policy is targeting a Group that the devices are a member of.
@Wilson29184
I just wanted to check in and see if you had any other questions or if you were able to resolve this issue?
Where are you looking in the MDE portal? I recommend filtering the device timeline for Antivirus events.
MDAV runs real-time scans. Scheduled scans are less important. The general recommendation is to run quick scans weekly.
Hi Andrew,
Im looking on the overview page for the device.
That looks good to me. What am I missing?
the scheduled full daily scan hasnt been recorded today.
so im concerned policy changes are getting through (if this isnt)
You might double check the AV policy config in MEM to verify the schedule setup. Hard to say more with limited info. You might try the following steps, Check the sense event logs.
@Wilson29184
I just wanted to check in and see if you had any other questions or if you were able to resolve this issue?
If you have any other questions, please let me know.
Thank you for your time and patience throughout this issue.
----------
Please remember to "Accept Answer" if any answer/reply helped, so that others in the community facing similar issues can easily find the solution.