Device health reports in Microsoft Defender for Endpoint

Applies to:

Want to experience Microsoft Defender for Endpoint? Sign up for a free trial.

The Device Health report provides information about the devices in your organization. The report includes trending information showing the sensor health state, antivirus status, OS platforms, Windows 10 versions, and Microsoft Defender Antivirus update versions.


For Windows Server 2012 R2 and Windows Server 2016 to appear in device health reports, these devices must be onboarded using the modern unified solution package. For more information, see New functionality in the modern unified solution for Windows Server 2012 R2 and 2016.

In the Microsoft 365 Security dashboard navigation panel, select Reports, and then open Device health and compliance. The Device health and compliance dashboard is structured in two tabs:

Report access permissions

To access the Device health and antivirus compliance report in the Microsoft 365 Security dashboard, the following permissions are required:

Permission name Permission type
View Data Threat and vulnerability management (TVM)

To Assign these permissions:

  1. Sign in to Microsoft 365 Defender using account with Security administrator or Global administrator role assigned.
  2. In the navigation pane, select Settings > Endpoints > Roles (under Permissions).
  3. Select the role you'd like to edit.
  4. Select Edit.
  5. In Edit role, on the General tab, in Role name, type a name for the role.
  6. In Description type a brief summary of the role.
  7. In Permissions, select View Data, and under View Data select Threat and vulnerability management (TVM).

See also