How to remove unknown devices in Microsoft Defender 365?

N-M 191 Reputation points
2022-09-06T15:52:55.377+00:00

Hello,
I connected Microsoft Defender 365 to Endpoint recently.
After 3 weeks, I face too many devices that are not in Endpoint anymore. Maybe there were before. These devices have different statuses. MEM doesn't manage them. Some of them are active, and others not.
I would like to remove these devices. I cannot run the script on them because I don't have access to them or know where they are or whose devices are.
Moreover, these devices are not onboarded. Their onboarding statuses for these devices are "can be onboarded."
It would be great if you could give me some solution to this problem.

238322-untitled.jpg

Windows for business Windows Client for IT Pros Devices and deployment Configure application groups
Microsoft Security Intune Configuration Manager Other
{count} votes

Accepted answer
  1. Andrew Blumhardt 10,051 Reputation points Microsoft Employee
    2022-09-07T03:15:05.823+00:00

    This data is collected by device discovery. You can add exclusions. Once a device is recognized you need to wait 14 days for them to drop from the view once excluded or disconnected.

    https://learn.microsoft.com/en-us/microsoft-365/security/defender-endpoint/configure-device-discovery

    1 person found this answer helpful.
    0 comments No comments

0 additional answers

Sort by: Most helpful

Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.