Microsoft Defender for Endpoint | Onboarding Windows Server 2012 R2

Wonderfully explained in depth for given agenda. May I request you to cover some more areas mentioned below per Azure Arc enabled servers as one end to end video:

1. Fresh install and onboarding of Azure arc agent using local using local script and group policy & off boarding if something was already on boarded it from previous tenants.

2. This you already covered - MDE for Server 2012R2.

3. Kms thru local script or Gpo

4. Enabling all Azure Arc dependent native services, e.g. Update mgmt, log analytics (pre-req), Azure monitor etc.

Common -
1. verifying all these installations just like you did for mde.

2. Including URL whitelising for smooth process.

3. Pls include active passive mode in case where other non Microsoft software is being used as AV.

4. SSCM

5. Challenge: when onboarding multiple non native server thru Azure arc, we can use script for multiple servers but it needs Service principal and it is laid as bare text if doing using GPO then poses a security risk even though in own OU. There is MS doc. which is not too clear. Pls share if know a more secure way where we can mask/hide sp secret maybe using it in blob but how would it be read in script is Q.

gocrow

This Defender for Endpoint series has been great, really clear and concise information. Thank you and well done.

FearsomeGibbonofDoom

Brilliant video, very clear and straight forward - Good job.

TastelessVanilla

You did an excellent job with this video. Very clear.

networkn

i am getting error on 2012R2 servers while installing the agent (2012 R2 - MpAsDesc.dll 310
). which KBA is required ?

amitaggarwal-cw

Super videos, Is there a video for Onboarding non-persistent VDI as well

Lazielad

In the process to standardize all devices from MMA legacy to MDE with SCCM client settings. This video really help. Do we have to uninstall the SCEP if it's already installed prior to use the MDE solution ? (Forget it... it must be Uninstall ... md4ws cant be installed if SCEP is still there)

BxN

thankyou for the wonderful presentation, but I have one doubt. How do we manage the server devices in endpoint security, need different AV configuration settings for the server
should we manage via the SCCM

mystudy

How to implement with group policy for multiple 2012 R2 & 2016 servers using 2019 as DC.. Please explain.. 🙏🙏

ro_surya

Hi, when I am installing the installation package it is getting rolled back without giving any error, it just says
"Microsoft defender for endpoint setup wizard ended prematurely because of an error. Your system has not been modified, to install this program at a later time run setup wizard again click the finish button to exit the setup wizard"

storm_rder

I came here hoping to find out why one of my 2012R2 systems says it onboards successfully after running the onboarding .cmd file. Yet still shows "Can be Onboarded" in the M365 Defender portal. The Defender ATP service shows running and automatic (delayed start). None of the tips provided in the video seem to work for this server. I've deployed to dozens of other 2012R2 systems with minimal issues.

lees

How can i get presentation of this video

amitbahuguna

The entire onboarding process for Windows Servers is a total shit show thanks to Microsoft. I work in an environment with approx. 4, 000 servers ranging from Server 2012 R2, 2016, 2019 etc. We use SCCM to patch all of these servers and it should have the capability to deploy required installation packages and perform the onboarding. Right now we are using custom task sequences to perform this action and its been a mess. Any other AV solution out there, would have been a lot less

AD-pbmh