Step 4. Protect devices

To help protect devices (endpoints) against the initial access part of a ransomware attack:

Windows 11 or 10 devices

To help protect against the lateral movement part of an attack from a Windows 11 or 10 device:

To reduce the impact of the attack:

To help protect against an attacker evading your security defenses:

To help protect against an attacker executing code as part of an attack:

Impact on users and change management

As you implement these protections, perform change management for the following:

Resulting configuration

Here's the ransomware protection for your tenant for steps 1-4.

Ransomware protection for your Microsoft 365 tenant after Step 4

Next step

Step 5 for ransomware protection with Microsoft 365

Continue with Step 5 to protect information in your Microsoft 365 tenant.