Share via

Manage inbuilt windows defender for windows 10/11 using sccm

CAM 41 Reputation points
2022-08-02T04:01:18.187+00:00

Hi,

Is it possible for the built-in windows defender on win10 and 11 to be manages by SCCM?
By manage, I mean, I can see what devices are currently onboarded and using the built-in defender...I can run reports and see what devices are not updated, etc.

Or do I need to have defender license to do this?

Windows 10 Security
Windows 10 Security
Windows 10: A Microsoft operating system that runs on personal computers and tablets.Security: The precautions taken to guard against crime, attack, sabotage, espionage, or another threat.
2,797 questions
Microsoft Configuration Manager
0 comments
Accepted answer
  1. AllenLiu-MSFT 41,611 Reputation points Microsoft Vendor
    2022-08-04T06:46:10.44+00:00

    Hi, @CAM

    Thank you for posting in Microsoft Q&A forum.

    What is your confusion? Are you confused on SCCM(system center configuration manager) and MECM(Microsoft endpoint configuration manager)?
    SCCM and MECM are the same thing, it was a part of system center suit, so we called it SCCM. And now it's a part of Microsoft Endpoint Manager, so we call it MECM now.
    And we usually call SCCM as MECM, MEMCM, ConfigMgr, configuration manager, CM... they are all the same thing.

    If the answer is the right solution, please click "Accept Answer" and kindly upvote it. If you have extra questions about this answer, please click "Comment".
    Note: Please follow the steps in our documentation to enable e-mail notifications if you want to receive the related email notification for this thread.

3 additional answers

Sort by: Most helpful
Most helpful Newest Oldest
  1. Ajay Mahajan 6 Reputation points
    2022-08-02T07:00:00.58+00:00

    Hi @CAM ,

    you can do that by configuring the Defender settings in SCCM but if you've Intune or MEM licenses, then I would suggest you should use that as it has greater visibility.

    In the compliance report you can see how many devices has been updated with the policy and how many are pending, and you can certainly force the latest installation of the defender version via SCCM.

    https://learn.microsoft.com/en-us/microsoft-365/security/defender-endpoint/manage-mde-post-migration-configuration-manager?view=o365-worldwide

    https://learn.microsoft.com/en-us/mem/configmgr/protect/deploy-use/endpoint-antimalware-firewall

    Thanks
    Ajay

    1 person found this answer helpful.
    0 comments
  2. Limitless Technology 39,446 Reputation points
    2022-08-02T08:57:55.19+00:00

    Hi there,

    You can Onboard Windows 10 and Windows 11 devices using Configuration Manager and then view the reports.

    You can follow the steps in the below article for detailed description of the steps that you need to follow .
    https://learn.microsoft.com/en-us/microsoft-365/compliance/device-onboarding-sccm?view=o365-worldwide

    I hope this information helps. If you have any questions please let me know and I will be glad to help you out.

    --------------------------------------------------------------------------------------------------------------------------------------

    --If the reply is helpful, please Upvote and Accept it as an answer--

    0 comments
  3. CAM 41 Reputation points
    2022-08-04T00:13:02.097+00:00

    Hi guys,

    Sorry for the confusion, I was talking about the "Microsoft Defender Anti-virus" which is part of Win10 and Win11 OS..

    Anyway, I saw this article:

    https://learn.microsoft.com/en-us/microsoft-365/security/defender-endpoint/configuration-management-reference-microsoft-defender-antivirus?view=o365-worldwide

    I'm a bit confused on "Configuration manager and Microsoft endpoint configuration manager"...

    0 comments