Edit

Troubleshoot license issues for Microsoft Defender for Endpoint on macOS

  • Article

Applies to:

Want to experience Microsoft Defender for Endpoint? Sign up for a free trial.

No license found

When Microsoft Defender for Endpoint on macOS is being deployed, an error message with an x on top of the Microsoft Defender for Endpoint on macOS shield appears.

Select the x symbol.

Screenshot that shows the menu bar containing the x symbol on the Microsoft Defender for Endpoint on macOS shield.

Message

When you select the x symbol, you'll see options as shown in the following screenshot:

Screenshot that shows the option that get listed on selecting the x symbol.

When you select Action needed, you'll get the error message as shown in the following screenshot:

Screenshot of the page displaying the No license found message and its description.

You'll encounter this message in a different way: If you're using the terminal to enter mdatp health without the double quotes, the message as shown in the following screenshot is displayed:

Screenshot of the product page on which the No license found warning message is displayed.

Cause

  1. You've deployed and/or installed the Microsoft Defender for Endpoint on macOS package Download installation packages, but might not have run the configuration script Download the onboarding package that contains the license settings. For information on troubleshooting in this scenario, see For not running the configuration script.

  2. You can also encounter this error message when the Microsoft Defender for Endpoint on macOS agent isn't up to date. For information on troubleshooting in this scenario, see For Microsoft Defender for Endpoint on macOS not being up to date.

  3. You can also encounter this error message if you haven't assigned a license to the user. For information on troubleshooting in this scenario, see For not assigning a license to the user.

Solutions

For not running the configuration script

This section describes the troubleshooting measures when the error/warning message is caused by non-execution of the configuration script that contains the license settings after you have deployed and/or installed the Microsoft Defender for Endpoint on macOS package.

Depending on the deployment management tool used, follow the tool-specific instructions to onboard the package (register the license) as described in the following table:

Management License deployment instructions (Onboarding instructions)
Intune Download the onboarding package
JamF Step 1: Get the Microsoft Defender for Endpoint onboarding package
Other MDM License settings
Manual installation Download installation and onboarding packages; and Client configuration

Note

If the onboarding package runs correctly, the licensing information will be located in /Library/Application Support/Microsoft/Defender/com.microsoft.wdav.atp.plist.

For Microsoft Defender for Endpoint on macOS not being up to date

For scenarios where Microsoft Defender for Endpoint on macOS isn't up to date, you'll need to update the agent.

For not assigning a license to the user

  1. In the Microsoft Defender portal (security.microsoft.com):

    1. Select Settings. The Settings screen appears.

    2. Select Endpoints.

      Screenshot of the Settings screen on which the Endpoints option is listed.

      The Endpoints screen appears.

      Screenshot of the Endpoints page.

    3. Select Licenses.

      Screenshot of the Endpoints page from which the Licenses options can be selected.

    4. Select View and purchase licenses in the Microsoft 365 admin center. The following screen in the Microsoft 365 admin center portal appears:

      Screenshot of the Microsoft 365 admin center portal page from which licenses can be purchased and assigned.

    5. Check the checkbox of the license you want to purchase from Microsoft, and select it. The screen displaying detail of the chosen license appears:

    Screenshot of the product page from which you can select the option of assigning the purchased license.

    1. Select the Assign licenses link.

    Screenshot of the product page from which you can select the Assign licenses link.

    The following screen appears:

    Screenshot of the page containing the + Assign licenses option.

    1. Select + Assign licenses.

    2. Enter the name or email address of the person to whom you want to assign this license.

      The following screen appears, displaying the details of the chosen license assignee and a list of options.

      Screenshot of the page displaying the assignee's details and a list of options.

    3. Check the checkboxes for Microsoft 365 Advanced Auditing, Microsoft 365 Defender, and Microsoft Defender for Endpoint.

    4. Select Save.

On implementing these solution-options (either of them), if the licensing issues have been resolved, and then you run mdatp health, you should see the following results:

Screenshot of the page containing the results displayed after running mdatp health.

Sign in with your Microsoft account

Screenshot of the page from which the users have to sign in with their Microsoft account's credentials to get started.

Message

Sign in with your Microsoft account to get started.

Create new account or Switch to enterprise app.

Cause

You've downloaded and installed Microsoft Defender for individuals on macOS on top of previously installed Microsoft Defender for Endpoint.

Solution

Select Switch to enterprise app to switch to Enterprise experience.

You can also suppress switching to experience for Individuals on MDM-enrolled machines by including userInterface/consumerExperience in the Defender's settings:

<key>userInterface</key>
<dict>
    <key>consumerExperience</key>
    <string>disabled</string>
</dict>

Recommended content

Tip

Do you want to learn more? Engage with the Microsoft Security community in our Tech Community: Microsoft Defender for Endpoint Tech Community.