Onboard Defender for Endpoint without AD

berketjune2012 376 Reputation points
2023-03-17T14:41:51.2533333+00:00

Hello

Is it possible to onboard a Windows 10 machine to Defender for Endpoint that is not connected to Active Directory and not Azure AD Hybrid joined?

Thanks

Windows for business | Windows Client for IT Pros | Devices and deployment | Configure application groups
Microsoft Security | Microsoft Defender | Microsoft Defender for Cloud
Microsoft Security | Intune | Security
Microsoft Security | Microsoft Defender | Microsoft Defender for Identity
Microsoft Security | Microsoft Defender | Microsoft Defender for Cloud Apps
{count} votes

3 answers

Sort by: Most helpful
  1. Michael-6094 185 Reputation points
    2023-03-18T12:18:41.7033333+00:00

    Hi @berketjune2012 ,

    it is possible to onboard Defender for Endpoint using a local script

    https://learn.microsoft.com/en-us/microsoft-365/security/defender-endpoint/configure-endpoints-script?view=o365-worldwide

    Solutions

    If the answer is helpful, please click "Accept Answer" and kindly upvote it. If you have extra questions about this answer, please click "Comment".

    2 people found this answer helpful.
    0 comments No comments

  2. Michael-6094 185 Reputation points
    2023-03-18T12:15:28.05+00:00

    Hi @berketjune2012 ,

    you can use multiple solutions to connect to Defender for Endpoint. In your case you could use the local script option. I provided more information about this:

    https://learn.microsoft.com/en-us/microsoft-365/security/defender-endpoint/configure-endpoints-script?view=o365-worldwide

    Solutions

    see above information for all available options.

    If the answer is helpful, please click "Accept Answer" and kindly upvote it. If you have extra questions about this answer, please click "Comment".

    0 comments No comments

  3. Andrew Blumhardt 10,051 Reputation points Microsoft Employee
    2023-03-20T01:53:13.5+00:00

    I think you might look into the Enforcement Scope settings. I think this lets you extend Intune policy to unmanaged systems onboarded to MDE.

    https://learn.microsoft.com/en-us/mem/intune/protect/mde-security-integration#configure-your-tenant-to-support-microsoft-defender-for-endpoint-security-configuration-management

    0 comments No comments

Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.