Portal Query : Defender For Ednpoint

Jatinder Kumar 1 Reputation point
2022-01-25T17:04:51.67+00:00

Dear Team
I am confused between the three portals, their difference, and use, i am trying to understand defender for endpoint as a product but i am confused on the protals

  1. securitycenter.microsoft.com ==> Old portal for endpoint management .. we can configure portal redirection and it will send all new queries to security.microsoft.com .. so is security.microsoft.com has all features migrated from securitycenter or is there still something left for which we may have to go back to the security center and if once we have configured portal redirection i think the only way to go back to security center is to disable the portal redirection from Powershell and then start the portal .. or am i wrong in this. and what is the exact use of this portal.. for a defender for endpoint or something else
  2. security.microsoft.com ==> New portal but i do not know how its different from security center... do you by any chance have some link or comparison for this.
  3. endpoint.microsoft.com ==> [Endpoint security - Microsoft Endpoint Manager admin center] So here i get confused about how its different .. as this portal also talks about endpoint security and has all features link Antivirus/ Disk Encryption/ EDR/ Attack surface reduction etc which is mentioned on this portal as defender features: https://learn.microsoft.com/en-us/microsoft-365/security/defender-endpoint/microsoft-defender-endpoint?view=o365-worldwide

Can someone please help me with this

Microsoft Defender for Cloud
Microsoft Defender for Cloud
An Azure service that provides threat protection for workloads running in Azure, on-premises, and in other clouds. Previously known as Azure Security Center and Azure Defender.
1,181 questions
Microsoft Intune
Microsoft Intune
A Microsoft cloud-based management solution that offers mobile device management, mobile application management, and PC management capabilities.
4,271 questions
0 comments No comments
{count} votes

3 answers

Sort by: Most helpful
  1. Rahul Jindal [MVP] 9,126 Reputation points MVP
    2022-01-25T20:01:42.95+00:00

    Endpoint.microsoft.com is the MEM portal aka Intune. It is an MDM and MAM solution to manage end user devices. You can enable Defender for endpoint in Intune to connect into Defender Portal security.microsoft.com (new link) to sync endpoint data.

    Within Endpoint.microsoft.com, there is an option called endpoint security. You will find AV, ASR, EDR, Disk encryption related device security profiles here that can be pushed down as policies to Windows 10 & later devices that are managed by Intune.

    I hope this clears some of your doubts.

    1 person found this answer helpful.
    0 comments No comments

  2. Rahul Jindal [MVP] 9,126 Reputation points MVP
    2022-01-25T22:48:23.95+00:00

    Security.microsoft Portal is a one stop shop for Defender. You configure Defender for Identity, 365 apps, endpoint, cloud apps. Each of these cloud services have their own management portals as well. Endpoint.microsoft being one of them. You can sync data from all of them into security.microsoft Defender portal to monitor for threats, security posture of your organization and take action on recommendations.

    1 person found this answer helpful.

  3. Jatinder Kumar 1 Reputation point
    2022-01-25T20:04:04.797+00:00

    not really rahul .. what i am trying to understand is the functionality of security center and security.microsoft.com compared to enpoint.microsoft where we have endpoint security .. as you said it has AV/ ASR/ EDR etc .. then what security center portal and security.microsoft is doing ..

    0 comments No comments