This browser is no longer supported.
Upgrade to Microsoft Edge to take advantage of the latest features, security updates, and technical support.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(304, 38%, 39%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EWC%3C/text%3E%3C/svg%3E)
We have Microsoft Endpoint Manager and are trying to set up Microsoft Defender for Business.
After researching, I realize that we need to set up an automated way to onboard all Intune Enrolled Windows devices first.
Could you advise the proper way to do so?
Besides, are the processes of onboarding devices to Microsoft Defender for Business and to Microsoft Defender for Endpoint the same? If not, could you explain how they are different?
If I onboarded a device for Microsoft Defender for Business, does it mean the device was also onboarded for Microsoft Defender for Endpoint?
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(281.6, 17%, 37%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EGM%3C/text%3E%3C/svg%3E)
@Woody Chiu at RASI Just checking in to see if below information was helpful. If you have any further updates on this issue, please feel free to post back.
Please remember to "Accept Answer" if answer helped, so that others in the community facing similar issues can easily find the solution.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(233.6, 30%, 32%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ECM%3C/text%3E%3C/svg%3E)
@Woody Chiu at RASI, Thanks for posting in Q&A.
Based on my researching, Microsoft Defender for Business and Microsoft Defender for Endpoint are two ndpoint security solutions provided from Microsoft.
Microsoft Defender for Business is an endpoint security solution that was designed especially for small- and medium-sized businesses (up to 300 employees) to protect them from ransomware, malware, phishing, and other threats.
Microsoft Defender for Endpoint is designed for enterprises or businesses with more than 300 employees, and it is included in the Microsoft 365 enterprise plans.
Here is a link list the feature included in the two endpoint security solution for your reference:
To onboard devices to Microsoft Defender for Business or Microsoft Defender for Endpoint, there are many methods. For example, Windows 10 and 11 devices, you can choose Local script, Group policy or Intune. For Endpoint, it also has other method like MECM, VDI script.
To choose Intune to onboard devices to Microsoft Defender for Business, you can follow the steps in the following link:
To onboard devices to Microsoft Defender for Endpoint, here is a link with the detailed steps for your reference:
Meanwhile for your last question, I would say no, the device onboard to Microsoft Defender for Business will not in Microsoft Defender for Endpoint. As they are two security solutions.
Hope the above information can help.
If the answer is helpful, please click "Accept Answer" and kindly upvote it. If you have extra questions about this answer, please click "Comment".
Note: Please follow the steps in our documentation to enable e-mail notifications if you want to receive the related email notification for this thread.
@Woody Chiu at RASI, How's everything going? I am writing to see if the above information can help. If there's anything unclear, feel free to let us know.