Share via

Windows Defender update/upgrade?

Duchemin, Dominique 2,006 Reputation points
2022-08-13T00:43:37.24+00:00

Hello,

230917-2022-08-12-21-59-47-memcm-08122022.png
I have servers where Windows Defender / System Center Endpoint Protection were installed manually.

  • SCEP is version 4.10.209.0
  • Custom Policy created manually on the Client itself.

two issues:

  1. I would like to get these clients managed by our Configuration Manager Console. What are the steps to get them in?? The CM Client is running on these machines, this is the SCEP connection which is not seen!!
    I don't want to deploy the SCEP Agent again as the one in System Center is version 4.7.214.0 which is below the current version on the client. How does the SCEP client got upgraded?
  2. The malware policy has been deployed to a collection containing the machines, but I did not get an updated exclusions list on the client, it remains with the manual exclusion created before. How to overwrite the custom local policy by the one in CM?

Thanks,
Dom

Windows Server
Windows Server
A family of Microsoft server operating systems that support enterprise-level management, data storage, applications, and communications.
12,635 questions
Windows 10 Security
Windows 10 Security
Windows 10: A Microsoft operating system that runs on personal computers and tablets.Security: The precautions taken to guard against crime, attack, sabotage, espionage, or another threat.
2,840 questions
Microsoft Configuration Manager
0 comments

3 answers

Sort by: Most helpful
Most helpful Newest Oldest
  1. Rachel Gomez 166 Reputation points
    2022-08-13T05:32:38.477+00:00

    Update Microsoft Defender Using PowerShell

    It is also possible to update Microsoft Defender using Windows PowerShell:

    Launch Windows PowerShell through the Start menu as an administrator.
    Enter the below command and press Enter. Update-MpSignature
    If new updates for Microsoft Defender are available, they will automatically be installed on your system.

    Regards,
    Rachel Gomez

    1 person found this answer helpful.
  2. jai singla 11 Reputation points
    2022-08-13T05:40:04.79+00:00

    To install Windows Defender manually using Windows PowerShell, press 'Win Key + Q' and type 'Windows PowerShell'. Right-click on it and choose to 'Run as administrator'.
    When prompted for the credentials, provide them.
    First type 'cd..' and press the 'Enter' key. Then type 'cd..' again and press the 'Enter' key.
    Type this command and press the 'Enter' key to update definitions.
    PS C:\> Update-MpSignature

    If you wish to update the definitions source, you should alter the command given above.
    PS C:\> Update-MpSignature -UpdateSource MicrosoftUpdateServer

    Note: The update sources which can be used are InternalDefinitionUpdateServer and Microsoft Malware Protection Center (MMPC).

    1 person found this answer helpful.
  3. Duchemin, Dominique 2,006 Reputation points
    2022-08-16T01:17:29.033+00:00

    Hello,

    Update-MpSignature -UpdateSource mmpc
    Update-MpSignature

    These two commands works and update the Windows Defender Definitions.

    But what about

    1. the SCEP Agent which is still 4.7.214.0 on the Console Configuration manager when the 4.10.209.0 is available?
    2. The malware policy has been deployed to a collection containing the machines, but I did not get an updated exclusions list on the client, it remains with the manual exclusion created before. How to overwrite the custom local policy by the one in CM?
      What are the log to review?

    EndpointProtectionAgent.log was checked but nothing about the policy!!!
    EPCtrlMgr.log reviewed
    EPMgr.log reviewed
    EPSetup.log reviewed

    Where is the policy name listed and seen to be deployed then to be applied?

    Thanks,
    Dom

    Thanks,
    Dom

    0 comments