Share via

Upgrade To 2403 : Microsoft Defender security configurations are no longer managed with Microsoft Intune

Vid3al 96 Reputation points
2024-10-09T12:42:44.08+00:00

Hello everyone,

The current version of MECM we are using is 2303. (No Hotfixes Installed).

We would like to upgrade to version 2403.

We read about the problem “Security configurations removed from Intune” after the update.

https://zcusa.951200.xyz/en-us/mem/configmgr/core/servers/deploy/install/release-notes#endpoint-protection

https://zcusa.951200.xyz/en-us/mem/configmgr/hotfix/2309/25858444#symptoms

We do not understand whether we may encounter this problem after the upgrade. We would like to understand before doing the upgrade.

  • The Endpoint Protection role is not active.
  • Co-Managed with Intune is active.
  • I Workloads "Device Configuration" And "Endpoint Protection" are configured as Pilots.
  • In MECM Console, "\Assets and Compliance\Overview\Endpoint Protection\Antimalware Policies", only the "Default Client Antimalware Policy".
  • In MECM Console, "\Assets and Compliance\Overview\Endpoint Protection\Microsoft Defender for Endpoint Policies" is empty.
  • The Client Settings, "Endpoint Protection" is only visible in the “Default Client Setting,” but it is configured as “NO.”

Will we have the problem described in the following article ?

https://zcusa.951200.xyz/en-us/mem/configmgr/core/servers/deploy/install/release-notes#endpoint-protection

Thank you for your patience and support.

Microsoft Configuration Manager Updates
Microsoft Configuration Manager Updates
Microsoft Configuration Manager: An integrated solution for for managing large groups of personal computers and servers.Updates: Broadly released fixes addressing specific issue(s) or related bug(s). Updates may also include new or modified features (i.e. changing default behavior).
1,048 questions
Microsoft Intune Security
Microsoft Intune Security
Microsoft Intune: A Microsoft cloud-based management solution that offers mobile device management, mobile application management, and PC management capabilities.Security: The precautions taken to guard against crime, attack, sabotage, espionage, or another threat.
419 questions
Microsoft Intune Configuration
Microsoft Intune Configuration
Microsoft Intune: A Microsoft cloud-based management solution that offers mobile device management, mobile application management, and PC management capabilities.Configuration: The process of arranging or setting up computer systems, hardware, or software.
1,899 questions
Microsoft Intune
Microsoft Intune
A Microsoft cloud-based management solution that offers mobile device management, mobile application management, and PC management capabilities.
5,084 questions
Microsoft Configuration Manager
0 comments

1 answer

Sort by: Most helpful
Most helpful Newest Oldest
  1. Simon Ren-MSFT 34,396 Reputation points Microsoft Vendor
    2024-10-10T08:09:42.47+00:00

    Hi,

    Thank you for posting in Microsoft Q&A forum.

    ==>Will we have the problem described in the following article ?

    Per my experience, no, you will not have this problem.

    1,Firstly, the Endpoint Protection point site system role must be installed before we can use Endpoint Protection. As the Endpoint Protection role is not active in your environment, it will not take effect.

    2,Meanwhile, "the Manage Endpoint Protection client value set to Yes in client settings" is one of the conditions for this issue. Now, it is configured as "NO" in your default client setting.

    Thanks for your time. Have a nice day!

    Best regards,

    Simon

    If the response is helpful, please click "Accept Answer" and upvote it.

    Note: Please follow the steps in our documentation to enable e-mail notifications if you want to receive the related email notification for this thread.

    0 comments

Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.