Activate MDI Sensors on Domain Controllers with MDE Integration

By /

Listen to this Post

Did you know that you can simply activate MDI (Defender for Identity) sensors on your domain controllers if they are already onboarded in MDE (Defender for Endpoint)? With just a few clicks, you’re done. There’s no need to download the onboarding package and install the sensors manually on servers. This feature is available for domain controllers running Windows Server 2019 and above.

You Should Know:

To activate MDI sensors on your domain controllers, follow these steps:

  1. Ensure MDE Integration: Verify that your domain controllers are already onboarded in Microsoft Defender for Endpoint (MDE).

  2. Access Microsoft 365 Defender Portal: Log in to the Microsoft 365 Defender portal (https://security.microsoft.com).

  3. Navigate to MDI Settings: Go to Settings > Identities > Sensors.

  4. Activate Sensors: Select the domain controllers where you want to activate the MDI sensors and click Activate.

  5. Verify Activation: Once activated, the sensors will start monitoring your domain controllers for identity-based threats.

Practice Verified Commands and Codes:

  • Check MDE Onboarding Status:

    Get-MpComputerStatus | Select-Object -Property AMRunningMode, AntivirusEnabled

  • Verify MDI Sensor Status:

    Get-AzureAdvancedThreatProtectionSensor | Select-Object -Property Name, Status

  • Enable MDI Sensor via PowerShell:

    Enable-AzureAdvancedThreatProtection -DomainController "YourDCServerName"

  • Check Windows Server Version:

    Get-ComputerInfo | Select-Object -Property WindowsProductName, WindowsVersion

What Undercode Say:

Activating MDI sensors on domain controllers integrated with MDE simplifies the process of securing your identity infrastructure. By leveraging this feature, you can enhance your organization’s security posture without the hassle of manual installations. Ensure your domain controllers are running Windows Server 2019 or above to take advantage of this streamlined approach. For more detailed guidance, refer to the official Microsoft documentation on MDI and MDE integration.

Useful URLs:

References:

Reported By: Vladjoh Defenderforendpoint – Hackers Feeds
Extra Hub: Undercode MoN
Basic Verification: Pass ✅

Join Our Cyber World:

Whatsapp
TelegramFeatured Image

Related Posts: