You can benefit from running Microsoft Defender Antivirus alongside another antivirus solution.įor example, Endpoint detection and response (EDR) in block mode provides added protection from malicious artifacts even if Microsoft Defender Antivirus is not the primary antivirus product. On Windows Server 2016, you might see Windows Defender Antivirus instead of Microsoft Defender Antivirus.ĭefender for Endpoint includes capabilities that further extend the antivirus protection that is installed on your endpoint.
You should see Normal, Passive, or EDR Block Mode if Microsoft Defender Antivirus is enabled on the endpoint. You can view your protection status in PowerShell by using the command Get-MpComputerStatus. Path: HKLM\SOFTWARE\Policies\Microsoft\Windows Advanced Threat Protection.You can set Microsoft Defender Antivirus to passive mode using a registry key as follows: In those cases, set Microsoft Defender Antivirus to passive mode to prevent problems caused by having multiple antivirus products installed on a server. ( 2) On Windows Server 2019, Windows Server, version 1803 or newer, Windows Server 2016, or Windows Server 2012 R2, Microsoft Defender Antivirus doesn't enter passive mode automatically when you install a non-Microsoft antivirus product. Microsoft Defender Antivirus must be disabled (manually) Microsoft Defender Antivirus must be set to passive mode (manually) The following table summarizes the state of Microsoft Defender Antivirus in several scenarios. Whether the endpoint is onboarded to Defender for Endpoint.Whether Microsoft Defender Antivirus is the primary antivirus/antimalware solution on the endpoint.Which version of Windows is installed on an endpoint.Whether Microsoft Defender Antivirus runs in active mode, passive mode, or is disabled depends on several factors, such as: In general, Microsoft Defender Antivirus can be set to passive mode only on endpoints that are onboarded to Defender for Endpoint. If the device is onboarded to Microsoft Defender for Endpoint, you can use Microsoft Defender Antivirus in passive mode (see below). ( 1) On Windows Server, if you're running a non-Microsoft antivirus product, you can uninstall Microsoft Defender Antivirus to prevent conflict. The following table summarizes what to expect: Windows versionĪ non-Microsoft antivirus/antimalware solution
In general, Microsoft Defender Antivirus does not run in passive mode on devices that are not onboarded to Defender for Endpoint.
0 kommentar(er)
