deepblue/windows-itpro-docs
1
0
Fork 0
mirror of https://github.com/MicrosoftDocs/windows-itpro-docs.git synced 2025-05-28 13:17:23 +00:00
Code Issues Actions 3 Packages Projects Releases Wiki Activity

Merge pull request #1662 from MicrosoftDocs/seo-fix-to-missing-h1-andduplicate-h1

Browse Source 
SEO update fix for multiple h1s caused by hotlinking
This commit is contained in:
Tina Burden 2019-12-10 08:42:16 -08:00 committed by GitHub
commit 03a8be4560
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
66 changed files with 77 additions and 84 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

5
windows/security/threat-protection/microsoft-defender-atp/improve-request-performance.md → windows/security/includes/improve-request-performance.md
View File

@ -16,11 +16,8 @@ ms.collection: M365-security-compliance
ms.topic: article
---
# Improve request performance
>[!NOTE]
>For better performance, you can use server closer to your geo location:
> - api-us.securitycenter.windows.com
> - api-eu.securitycenter.windows.com
> - api-uk.securitycenter.windows.com
> - api-uk.securitycenter.windows.com

4
windows/security/threat-protection/microsoft-defender-atp/machineactionsnote.md → windows/security/includes/machineactionsnote.md
View File

@ -9,7 +9,5 @@ author: mjcaparas
ms.prod: w10
---
# Perform a Machine Action via the Microsoft Defender ATP API
>[!Note]
> This page focuses on performing a machine action via API. See [take response actions on a machine](respond-machine-alerts.md) for more information about response actions functionality via Microsoft Defender ATP.
> This page focuses on performing a machine action via API. See [take response actions on a machine](../threat-protection/microsoft-defender-atp/respond-machine-alerts.md) for more information about response actions functionality via Microsoft Defender ATP.

2
windows/security/threat-protection/microsoft-defender-atp/prerelease.md → windows/security/includes/prerelease.md
View File

@ -9,7 +9,5 @@ author: mjcaparas
ms.prod: w10
---
# Microsoft Defender ATP Pre-release Disclaimer
> [!IMPORTANT]
> Some information relates to prereleased product which may be substantially modified before it's commercially released. Microsoft makes no warranties, express or implied, with respect to the information provided here.

2
windows/security/threat-protection/microsoft-defender-atp/add-or-remove-machine-tags.md
View File

@ -67,7 +67,7 @@ If successful, this method returns 200 - Ok response code and the updated Machin
Here is an example of a request that adds machine tag.
[!include[Improve request performance](improve-request-performance.md)]
[!include[Improve request performance](../../includes/improve-request-performance.md)]
```
POST https://api.securitycenter.windows.com/api/machines/1e5bc9d7e413ddd7902c2932e418702b84d0cc07/tags

2
windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-schema-reference.md
View File

@ -25,7 +25,7 @@ ms.date: 10/08/2019
>Want to experience Microsoft Defender ATP? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-advancedhuntingref-abovefoldlink)
[!include[Prerelease information](prerelease.md)]
[!include[Prerelease information](../../includes/prerelease.md)]
The [Advanced hunting](advanced-hunting-overview.md) schema is made up of multiple tables that provide either event information or information about machines and other entities. To effectively build queries that span multiple tables, you need to understand the tables and the columns in the Advanced hunting schema.

4
windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-tvm-configassessment-table.md
View File

@ -24,9 +24,9 @@ ms.date: 11/12/2019
- [Microsoft Defender Advanced Threat Protection (Microsoft Defender ATP)](https://go.microsoft.com/fwlink/p/?linkid=2069559)
>Want to experience Microsoft Defender ATP? [Sign up for a free trial.](https://www.microsoft.com/en-us/WindowsForBusiness/windows-atp?ocid=docs-wdatp-advancedhuntingref-abovefoldlink)
>Want to experience Microsoft Defender ATP? [Sign up for a free trial.](https://www.microsoft.com/WindowsForBusiness/windows-atp?ocid=docs-wdatp-advancedhuntingref-abovefoldlink)
[!include[Prerelease information](prerelease.md)]
[!include[Prerelease information](../../includes/prerelease.md)]
Each row in the DeviceTvmSecureConfigurationAssessment table contains an assessment event for a specific security configuration from [Threat & Vulnerability Management](next-gen-threat-and-vuln-mgt.md). Use this reference to check the latest assessment results and determine whether devices are compliant.

4
windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-tvm-secureconfigkb-table.md
View File

@ -24,9 +24,9 @@ ms.date: 11/12/2019
- [Microsoft Defender Advanced Threat Protection (Microsoft Defender ATP)](https://go.microsoft.com/fwlink/p/?linkid=2069559)
>Want to experience Microsoft Defender ATP? [Sign up for a free trial.](https://www.microsoft.com/en-us/WindowsForBusiness/windows-atp?ocid=docs-wdatp-advancedhuntingref-abovefoldlink)
>Want to experience Microsoft Defender ATP? [Sign up for a free trial.](https://www.microsoft.com/WindowsForBusiness/windows-atp?ocid=docs-wdatp-advancedhuntingref-abovefoldlink)
[!include[Prerelease information](prerelease.md)]
[!include[Prerelease information](../../includes/prerelease.md)]
The DeviceTvmSecureConfigurationAssessmentKB table in the Advanced hunting schema contains information about the various secure configurations — such as whether a device has automatic updates on — checked by [Threat & Vulnerability Management](next-gen-threat-and-vuln-mgt.md). It also includes risk information, related industry benchmarks, and applicable MITRE ATT&CK techniques and tactics. Use this reference to construct queries that return information from the table.

4
windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-tvm-softwareinventory-table.md
View File

@ -24,10 +24,10 @@ ms.date: 11/12/2019
- [Microsoft Defender Advanced Threat Protection (Microsoft Defender ATP)](https://go.microsoft.com/fwlink/p/?linkid=2069559)
>Want to experience Microsoft Defender ATP? [Sign up for a free trial.](https://www.microsoft.com/en-us/WindowsForBusiness/windows-atp?ocid=docs-wdatp-advancedhuntingref-abovefoldlink)
>Want to experience Microsoft Defender ATP? [Sign up for a free trial.](https://www.microsoft.com/WindowsForBusiness/windows-atp?ocid=docs-wdatp-advancedhuntingref-abovefoldlink)
[!include[Prerelease information](prerelease.md)]
[!include[Prerelease information](../../includes/prerelease.md)]
The DeviceTvmSoftwareInventoryVulnerabilities table in the Advanced hunting schema contains the [Threat & Vulnerability Management](next-gen-threat-and-vuln-mgt.md) inventory of software on your devices as well as any known vulnerabilities in these software products. This table also includes operating system information, CVE IDs, and vulnerability severity information. Use this reference to construct queries that return information from the table.

4
windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-tvm-softwarevulnerability-table.md
View File

@ -24,9 +24,9 @@ ms.date: 11/12/2019
- [Microsoft Defender Advanced Threat Protection (Microsoft Defender ATP)](https://go.microsoft.com/fwlink/p/?linkid=2069559)
>Want to experience Microsoft Defender ATP? [Sign up for a free trial.](https://www.microsoft.com/en-us/WindowsForBusiness/windows-atp?ocid=docs-wdatp-advancedhuntingref-abovefoldlink)
>Want to experience Microsoft Defender ATP? [Sign up for a free trial.](https://www.microsoft.com/WindowsForBusiness/windows-atp?ocid=docs-wdatp-advancedhuntingref-abovefoldlink)
[!include[Prerelease information](prerelease.md)]
[!include[Prerelease information](../../includes/prerelease.md)]
The DeviceTvmSoftwareInventoryVulnerabilities table in the Advanced hunting schema contains the list of vulnerabilities [Threat & Vulnerability Management](next-gen-threat-and-vuln-mgt.md) assesses devices for. Use this reference to construct queries that return information from the table.

2
windows/security/threat-protection/microsoft-defender-atp/collect-investigation-package.md
View File

@ -65,7 +65,7 @@ If successful, this method returns 201 - Created response code and [Machine Acti
Here is an example of the request.
[!include[Improve request performance](improve-request-performance.md)]
[!include[Improve request performance](../../includes/improve-request-performance.md)]
```
POST https://api.securitycenter.windows.com/api/machines/fb9ab6be3965095a09c057be7c90f0a2/collectInvestigationPackage

2
windows/security/threat-protection/microsoft-defender-atp/configure-and-manage-tvm.md
View File

@ -21,7 +21,7 @@ ms.topic: article
**Applies to:**
- [Microsoft Defender Advanced Threat Protection Microsoft Defender ATP)](https://go.microsoft.com/fwlink/p/?linkid=2069559)
[!include[Prerelease information](prerelease.md)]
[!include[Prerelease information](../../includes/prerelease.md)]
This section guides you through the steps you need to take to configure Threat & Vulnerability Management's integration with Microsoft Intune or Microsoft System Center Configuration Manager (SCCM) for a seamless collaboration of issue remediation.

2
windows/security/threat-protection/microsoft-defender-atp/configure-mssp-support.md
View File

@ -29,7 +29,7 @@ ms.date: 09/03/2018
>Want to experience Windows Defender ATP? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-mssp-support-abovefoldlink)
[!include[Prerelease information](prerelease.md)]
[!include[Prerelease information](../../includes/prerelease.md)]
You'll need to take the following configuration steps to enable the managed security service provider (MSSP) integration.

2
windows/security/threat-protection/microsoft-defender-atp/create-alert-by-reference.md
View File

@ -76,7 +76,7 @@ If successful, this method returns 200 OK, and a new [alert](alerts.md) object i
Here is an example of the request.
[!include[Improve request performance](improve-request-performance.md)]
[!include[Improve request performance](../../includes/improve-request-performance.md)]
```
POST https://api.securitycenter.windows.com/api/alerts/CreateAlertByReference

2
windows/security/threat-protection/microsoft-defender-atp/delete-ti-indicator-by-id.md
View File

@ -42,7 +42,7 @@ Application | Ti.ReadWrite.All | 'Read and write Indicators'
Delete https://api.securitycenter.windows.com/api/indicators/{id}
```
[!include[Improve request performance](improve-request-performance.md)]
[!include[Improve request performance](../../includes/improve-request-performance.md)]
## Request headers

2
windows/security/threat-protection/microsoft-defender-atp/find-machines-by-ip.md
View File

@ -67,7 +67,7 @@ If the timestamp is not in the past 30 days - 400 Bad Request.
Here is an example of the request.
[!include[Improve request performance](improve-request-performance.md)]
[!include[Improve request performance](../../includes/improve-request-performance.md)]
```
GET https://api.securitycenter.windows.com/api/machines/findbyip(ip='10.248.240.38',timestamp=2018-09-22T08:44:05Z)

2
windows/security/threat-protection/microsoft-defender-atp/get-alert-info-by-id.md
View File

@ -64,7 +64,7 @@ If successful, this method returns 200 OK, and the [alert](alerts.md) entity in
Here is an example of the request.
[!include[Improve request performance](improve-request-performance.md)]
[!include[Improve request performance](../../includes/improve-request-performance.md)]
```
GET https://api.securitycenter.windows.com/api/alerts/441688558380765161_2136280442

2
windows/security/threat-protection/microsoft-defender-atp/get-alert-related-domain-info.md
View File

@ -61,7 +61,7 @@ If successful and alert and domain exist - 200 OK. If alert not found - 404 Not
Here is an example of the request.
[!include[Improve request performance](improve-request-performance.md)]
[!include[Improve request performance](../../includes/improve-request-performance.md)]
```
GET https://api.securitycenter.windows.com/alerts/636688558380765161_2136280442/domains

2
windows/security/threat-protection/microsoft-defender-atp/get-alert-related-files-info.md
View File

@ -61,7 +61,7 @@ If successful and alert and files exist - 200 OK. If alert not found - 404 Not F
Here is an example of the request.
[!include[Improve request performance](improve-request-performance.md)]
[!include[Improve request performance](../../includes/improve-request-performance.md)]
```
GET https://api.securitycenter.windows.com/api/alerts/636688558380765161_2136280442/files

2
windows/security/threat-protection/microsoft-defender-atp/get-alert-related-ip-info.md
View File

@ -62,7 +62,7 @@ If successful and alert and an IP exist - 200 OK. If alert not found - 404 Not F
Here is an example of the request.
[!include[Improve request performance](improve-request-performance.md)]
[!include[Improve request performance](../../includes/improve-request-performance.md)]
```
GET https://api.securitycenter.windows.com/alerts/636688558380765161_2136280442/ips

2
windows/security/threat-protection/microsoft-defender-atp/get-alert-related-machine-info.md
View File

@ -63,7 +63,7 @@ If successful and alert and machine exist - 200 OK. If alert not found or machin
Here is an example of the request.
[!include[Improve request performance](improve-request-performance.md)]
[!include[Improve request performance](../../includes/improve-request-performance.md)]
```

2
windows/security/threat-protection/microsoft-defender-atp/get-alert-related-user-info.md
View File

@ -62,7 +62,7 @@ If successful and alert and a user exists - 200 OK with user in the body. If ale
Here is an example of the request.
[!include[Improve request performance](improve-request-performance.md)]
[!include[Improve request performance](../../includes/improve-request-performance.md)]
```

2
windows/security/threat-protection/microsoft-defender-atp/get-alerts.md
View File

@ -78,7 +78,7 @@ Here is an example of the request.
GET https://api.securitycenter.windows.com/api/alerts
```
[!include[Improve request performance](improve-request-performance.md)]
[!include[Improve request performance](../../includes/improve-request-performance.md)]
**Response**

2
windows/security/threat-protection/microsoft-defender-atp/get-domain-related-alerts.md
View File

@ -63,7 +63,7 @@ If successful and domain exists - 200 OK with list of [alert](alerts.md) entitie
Here is an example of the request.
[!include[Improve request performance](improve-request-performance.md)]
[!include[Improve request performance](../../includes/improve-request-performance.md)]
```
GET https://api.securitycenter.windows.com/api/domains/client.wns.windows.com/alerts

2
windows/security/threat-protection/microsoft-defender-atp/get-domain-related-machines.md
View File

@ -62,7 +62,7 @@ If successful and domain exists - 200 OK with list of [machine](machine.md) enti
Here is an example of the request.
[!include[Improve request performance](improve-request-performance.md)]
[!include[Improve request performance](../../includes/improve-request-performance.md)]
```

2
windows/security/threat-protection/microsoft-defender-atp/get-domain-statistics.md
View File

@ -60,7 +60,7 @@ If successful and domain exists - 200 OK, with statistics object in the response
Here is an example of the request.
[!include[Improve request performance](improve-request-performance.md)]
[!include[Improve request performance](../../includes/improve-request-performance.md)]
```
GET https://api.securitycenter.windows.com/api/domains/example.com/stats

2
windows/security/threat-protection/microsoft-defender-atp/get-file-information.md
View File

@ -59,7 +59,7 @@ If successful and file exists - 200 OK with the [file](files.md) entity in the b
Here is an example of the request.
[!include[Improve request performance](improve-request-performance.md)]
[!include[Improve request performance](../../includes/improve-request-performance.md)]
```
GET https://api.securitycenter.windows.com/api/files/6532ec91d513acc05f43ee0aa3002599729fd3e1

2
windows/security/threat-protection/microsoft-defender-atp/get-file-related-alerts.md
View File

@ -64,7 +64,7 @@ If successful and file exists - 200 OK with list of [alert](alerts.md) entities
Here is an example of the request.
[!include[Improve request performance](improve-request-performance.md)]
[!include[Improve request performance](../../includes/improve-request-performance.md)]
```
GET https://api.securitycenter.windows.com/api/files/6532ec91d513acc05f43ee0aa3002599729fd3e1/alerts

2
windows/security/threat-protection/microsoft-defender-atp/get-file-related-machines.md
View File

@ -64,7 +64,7 @@ If successful and file exists - 200 OK with list of [machine](machine.md) entiti
Here is an example of the request.
[!include[Improve request performance](improve-request-performance.md)]
[!include[Improve request performance](../../includes/improve-request-performance.md)]
```
GET https://api.securitycenter.windows.com/api/files/1e5bc9d7e413ddd7902c2932e418702b84d0cc07/machines

2
windows/security/threat-protection/microsoft-defender-atp/get-file-statistics.md
View File

@ -61,7 +61,7 @@ If successful and file exists - 200 OK with statistical data in the body. If fil
Here is an example of the request.
[!include[Improve request performance](improve-request-performance.md)]
[!include[Improve request performance](../../includes/improve-request-performance.md)]
```
GET https://api.securitycenter.windows.com/api/files/6532ec91d513acc05f43ee0aa3002599729fd3e1/stats

2
windows/security/threat-protection/microsoft-defender-atp/get-ip-related-alerts.md
View File

@ -64,7 +64,7 @@ If successful and IP exists - 200 OK with list of [alert](alerts.md) entities in
Here is an example of the request.
[!include[Improve request performance](improve-request-performance.md)]
[!include[Improve request performance](../../includes/improve-request-performance.md)]
```

2
windows/security/threat-protection/microsoft-defender-atp/get-ip-statistics.md
View File

@ -61,7 +61,7 @@ If successful and ip exists - 200 OK with statistical data in the body. IP do no
Here is an example of the request.
[!include[Improve request performance](improve-request-performance.md)]
[!include[Improve request performance](../../includes/improve-request-performance.md)]
```
GET https://api.securitycenter.windows.com/api/ips/10.209.67.177/stats

2
windows/security/threat-protection/microsoft-defender-atp/get-machine-by-id.md
View File

@ -66,7 +66,7 @@ If machine with the specified id was not found - 404 Not Found.
Here is an example of the request.
[!include[Improve request performance](improve-request-performance.md)]
[!include[Improve request performance](../../includes/improve-request-performance.md)]
```
GET https://api.securitycenter.windows.com/api/machines/1e5bc9d7e413ddd7902c2932e418702b84d0cc07

2
windows/security/threat-protection/microsoft-defender-atp/get-machine-log-on-users.md
View File

@ -62,7 +62,7 @@ If successful and machine exist - 200 OK with list of [user](user.md) entities i
Here is an example of the request.
[!include[Improve request performance](improve-request-performance.md)]
[!include[Improve request performance](../../includes/improve-request-performance.md)]
```
GET https://api.securitycenter.windows.com/api/1e5bc9d7e413ddd7902c2932e418702b84d0cc07/logonusers

2
windows/security/threat-protection/microsoft-defender-atp/get-machine-related-alerts.md
View File

@ -62,7 +62,7 @@ If successful and machine exists - 200 OK with list of [alert](alerts.md) entiti
Here is an example of the request.
[!include[Improve request performance](improve-request-performance.md)]
[!include[Improve request performance](../../includes/improve-request-performance.md)]
```

2
windows/security/threat-protection/microsoft-defender-atp/get-machineaction-object.md
View File

@ -61,7 +61,7 @@ If successful, this method returns 200, Ok response code with a [Machine Action]
Here is an example of the request.
[!include[Improve request performance](improve-request-performance.md)]
[!include[Improve request performance](../../includes/improve-request-performance.md)]
```
GET https://api.securitycenter.windows.com/api/machineactions/2e9da30d-27f6-4208-81f2-9cd3d67893ba

4
windows/security/threat-protection/microsoft-defender-atp/get-machineactions-collection.md
View File

@ -69,7 +69,7 @@ If successful, this method returns 200, Ok response code with a collection of [m
Here is an example of the request on an organization that has three MachineActions.
[!include[Improve request performance](improve-request-performance.md)]
[!include[Improve request performance](../../includes/improve-request-performance.md)]
```
GET https://api.securitycenter.windows.com/api/machineactions
@ -140,7 +140,7 @@ GET https://api.securitycenter.windows.com/api/machineactions?$filter=machineId
Here is an example of the response.
[!include[Improve request performance](improve-request-performance.md)]
[!include[Improve request performance](../../includes/improve-request-performance.md)]
```
HTTP/1.1 200 Ok

2
windows/security/threat-protection/microsoft-defender-atp/get-machines.md
View File

@ -69,7 +69,7 @@ If successful and machines exists - 200 OK with list of [machine](machine.md) en
Here is an example of the request.
[!include[Improve request performance](improve-request-performance.md)]
[!include[Improve request performance](../../includes/improve-request-performance.md)]
```
GET https://api.securitycenter.windows.com/api/machines

2
windows/security/threat-protection/microsoft-defender-atp/get-package-sas-uri.md
View File

@ -71,7 +71,7 @@ GET https://api.securitycenter.windows.com/api/machineactions/7327b54fd718525cbc
Here is an example of the response.
[!include[Improve request performance](improve-request-performance.md)]
[!include[Improve request performance](../../includes/improve-request-performance.md)]
```

2
windows/security/threat-protection/microsoft-defender-atp/get-ti-indicators-collection.md
View File

@ -43,7 +43,7 @@ Application | Ti.ReadWrite.All | 'Read and write All Indicators'
GET https://api.securitycenter.windows.com/api/indicators
```
[!include[Improve request performance](improve-request-performance.md)]
[!include[Improve request performance](../../includes/improve-request-performance.md)]
## Request headers

2
windows/security/threat-protection/microsoft-defender-atp/get-user-information.md
View File

@ -55,7 +55,7 @@ If successful and user exists - 200 OK with [user](user.md) entity in the body.
Here is an example of the request.
[!include[Improve request performance](improve-request-performance.md)]
[!include[Improve request performance](../../includes/improve-request-performance.md)]
```
GET https://api.securitycenter.windows.com/api/users/user1

2
windows/security/threat-protection/microsoft-defender-atp/get-user-related-alerts.md
View File

@ -66,7 +66,7 @@ If successful and user exist - 200 OK. If the user do not exist - 404 Not Found.
Here is an example of the request.
[!include[Improve request performance](improve-request-performance.md)]
[!include[Improve request performance](../../includes/improve-request-performance.md)]
```
GET https://api.securitycenter.windows.com/api/users/user1/alerts

2
windows/security/threat-protection/microsoft-defender-atp/get-user-related-machines.md
View File

@ -67,7 +67,7 @@ If successful and user exists - 200 OK with list of [machine](machine.md) entiti
Here is an example of the request.
[!include[Improve request performance](improve-request-performance.md)]
[!include[Improve request performance](../../includes/improve-request-performance.md)]
```
GET https://api.securitycenter.windows.com/api/users/user1/machines

2
windows/security/threat-protection/microsoft-defender-atp/information-protection-in-windows-config.md
View File

@ -23,7 +23,7 @@ ms.topic: article
- [Microsoft Defender Advanced Threat Protection (Microsoft Defender ATP)](https://go.microsoft.com/fwlink/p/?linkid=2069559)
[!include[Prerelease information](prerelease.md)]
[!include[Prerelease information](../../includes/prerelease.md)]
Learn how you can use Microsoft Defender ATP to expand the coverage of Windows Information Protection (WIP) to protect files based on their label, regardless of their origin.

2
windows/security/threat-protection/microsoft-defender-atp/information-protection-in-windows-overview.md
View File

@ -21,7 +21,7 @@ ms.topic: conceptual
**Applies to:**
- [Microsoft Defender Advanced Threat Protection (Microsoft Defender ATP)](https://go.microsoft.com/fwlink/p/?linkid=2069559)
[!include[Prerelease information](prerelease.md)]
[!include[Prerelease information](../../includes/prerelease.md)]
Information protection is an integral part of Microsoft 365 Enterprise suite, providing intelligent protection to keep sensitive data secure while enabling productivity in the workplace.

2
windows/security/threat-protection/microsoft-defender-atp/initiate-autoir-investigation.md
View File

@ -73,7 +73,7 @@ If successful, this method returns 200 OK response code with object that holds t
Here is an example of the request.
[!include[Improve request performance](improve-request-performance.md)]
[!include[Improve request performance](../../includes/improve-request-performance.md)]
```
POST https://api.securitycenter.windows.com/api/machines/fb9ab6be3965095a09c057be7c90f0a2/InitiateInvestigation

2
windows/security/threat-protection/microsoft-defender-atp/investigate-files.md
View File

@ -24,7 +24,7 @@ ms.date: 04/24/2018
- [Microsoft Defender Advanced Threat Protection (Microsoft Defender ATP)](https://go.microsoft.com/fwlink/p/?linkid=2069559)
[!include[Prerelease information](prerelease.md)]
[!include[Prerelease information](../../includes/prerelease.md)]
>Want to experience Microsoft Defender ATP? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-investigatefiles-abovefoldlink)

4
windows/security/threat-protection/microsoft-defender-atp/isolate-machine.md
View File

@ -24,7 +24,7 @@ ms.topic: article
Isolates a machine from accessing external network.
[!include[Machine actions note](machineactionsnote.md)]
[!include[Machine actions note](../../includes/machineactionsnote.md)]
## Permissions
One of the following permissions is required to call this API. To learn more, including how to choose permissions, see [Use Microsoft Defender ATP APIs](apis-intro.md)
@ -75,7 +75,7 @@ If successful, this method returns 201 - Created response code and [Machine Acti
Here is an example of the request.
[!include[Improve request performance](improve-request-performance.md)]
[!include[Improve request performance](../../includes/improve-request-performance.md)]
```
POST https://api.securitycenter.windows.com/api/machines/1e5bc9d7e413ddd7902c2932e418702b84d0cc07/isolate

2
windows/security/threat-protection/microsoft-defender-atp/microsoft-cloud-app-security-config.md
View File

@ -24,7 +24,7 @@ ms.topic: article
- [Microsoft Defender Advanced Threat Protection (Microsoft Defender ATP)](https://go.microsoft.com/fwlink/p/?linkid=2069559)
[!include[Prerelease information](prerelease.md)]
[!include[Prerelease information](../../includes/prerelease.md)]
To benefit from Microsoft Defender Advanced Threat Protection (ATP) cloud app discovery signals, turn on Microsoft Cloud App Security integration.

2
windows/security/threat-protection/microsoft-defender-atp/microsoft-cloud-app-security-integration.md
View File

@ -23,7 +23,7 @@ ms.date: 10/18/2018
**Applies to:**
- [Microsoft Defender Advanced Threat Protection (Microsoft Defender ATP)](https://go.microsoft.com/fwlink/p/?linkid=2069559)
[!include[Prerelease information](prerelease.md)]
[!include[Prerelease information](../../includes/prerelease.md)]
Microsoft Cloud App Security (Cloud App Security) is a comprehensive solution that gives visibility into cloud apps and services by allowing you to control and limit access to cloud apps, while enforcing compliance requirements on data stored in the cloud. For more information, see [Cloud App Security](https://docs.microsoft.com/cloud-app-security/what-is-cloud-app-security).

4
windows/security/threat-protection/microsoft-defender-atp/offboard-machine-api.md
View File

@ -24,7 +24,7 @@ ms.topic: article
Offboard machine from Microsoft Defender ATP.
[!include[Machine actions note](machineactionsnote.md)]
[!include[Machine actions note](../../includes/machineactionsnote.md)]
## Permissions
One of the following permissions is required to call this API. To learn more, including how to choose permissions, see [Use Microsoft Defender ATP APIs](apis-intro.md)
@ -68,7 +68,7 @@ If successful, this method returns 201 - Created response code and [Machine Acti
Here is an example of the request.
[!include[Improve request performance](improve-request-performance.md)]
[!include[Improve request performance](../../includes/improve-request-performance.md)]
```
POST https://api.securitycenter.windows.com/api/machines/1e5bc9d7e413ddd7902c2932e418702b84d0cc07/offboard

2
windows/security/threat-protection/microsoft-defender-atp/onboard-configure.md
View File

@ -22,7 +22,7 @@ ms.topic: conceptual
**Applies to:**
- [Microsoft Defender Advanced Threat Protection (Microsoft Defender ATP)](https://go.microsoft.com/fwlink/p/?linkid=2069559)
[!include[Prerelease information](prerelease.md)]
[!include[Prerelease information](../../includes/prerelease.md)]
>Want to experience Microsoft Defender ATP? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-onboardconfigure-abovefoldlink)

2
windows/security/threat-protection/microsoft-defender-atp/post-ti-indicator.md
View File

@ -45,7 +45,7 @@ Application | Ti.ReadWrite.All | 'Read and write All Indicators'
POST https://api.securitycenter.windows.com/api/indicators
```
[!include[Improve request performance](improve-request-performance.md)]
[!include[Improve request performance](../../includes/improve-request-performance.md)]
## Request headers

2
windows/security/threat-protection/microsoft-defender-atp/powerbi-reports.md
View File

@ -24,7 +24,7 @@ ms.topic: article
- [Microsoft Defender Advanced Threat Protection (Microsoft Defender ATP)](https://go.microsoft.com/fwlink/p/?linkid=2069559)
[!include[Prerelease information](prerelease.md)]
[!include[Prerelease information](../../includes/prerelease.md)]
> [!TIP]
> Go to **Advanced features** in the **Settings** page to turn on the preview features.

2
windows/security/threat-protection/microsoft-defender-atp/respond-file-alerts.md
View File

@ -23,7 +23,7 @@ ms.topic: article
- [Microsoft Defender Advanced Threat Protection (Microsoft Defender ATP)](https://go.microsoft.com/fwlink/p/?linkid=2069559)
[!include[Prerelease information](prerelease.md)]
[!include[Prerelease information](../../includes/prerelease.md)]
>Want to experience Microsoft Defender ATP? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-responddile-abovefoldlink)

4
windows/security/threat-protection/microsoft-defender-atp/restrict-code-execution.md
View File

@ -24,7 +24,7 @@ ms.topic: article
Restrict execution of all applications on the machine except a predefined set (see [Response machine alerts](respond-machine-alerts.md) for more information)
[!include[Machine actions note](machineactionsnote.md)]
[!include[Machine actions note](../../includes/machineactionsnote.md)]
## Permissions
One of the following permissions is required to call this API. To learn more, including how to choose permissions, see [Use Microsoft Defender ATP APIs](apis-intro.md)
@ -80,7 +80,7 @@ Content-type: application/json
Here is an example of the response.
[!include[Improve request performance](improve-request-performance.md)]
[!include[Improve request performance](../../includes/improve-request-performance.md)]
```
HTTP/1.1 201 Created

4
windows/security/threat-protection/microsoft-defender-atp/run-av-scan.md
View File

@ -24,7 +24,7 @@ ms.topic: article
Initiate Windows Defender Antivirus scan on a machine.
[!include[Machine actions note](machineactionsnote.md)]
[!include[Machine actions note](../../includes/machineactionsnote.md)]
## Permissions
One of the following permissions is required to call this API. To learn more, including how to choose permissions, see [Use Microsoft Defender ATP APIs](apis-intro.md)
@ -89,7 +89,7 @@ Content-type: application/json
Here is an example of the response.
[!include[Improve request performance](improve-request-performance.md)]
[!include[Improve request performance](../../includes/improve-request-performance.md)]
```
HTTP/1.1 201 Created

4
windows/security/threat-protection/microsoft-defender-atp/stop-and-quarantine-file.md
View File

@ -24,7 +24,7 @@ ms.topic: article
Stop execution of a file on a machine and delete it.
[!include[Machine actions note](machineactionsnote.md)]
[!include[Machine actions note](../../includes/machineactionsnote.md)]
## Permissions
One of the following permissions is required to call this API. To learn more, including how to choose permissions, see [Use Microsoft Defender ATP APIs](apis-intro.md)
@ -82,7 +82,7 @@ Content-type: application/json
Here is an example of the response.
[!include[Improve request performance](improve-request-performance.md)]
[!include[Improve request performance](../../includes/improve-request-performance.md)]
```
HTTP/1.1 201 Created

2
windows/security/threat-protection/microsoft-defender-atp/threat-and-vuln-mgt-scenarios.md
View File

@ -23,7 +23,7 @@ ms.topic: article
>Want to experience Microsoft Defender ATP? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-portaloverview-abovefoldlink)
[!include[Prerelease information](prerelease.md)]
[!include[Prerelease information](../../includes/prerelease.md)]
## Before you begin
Ensure that your machines:

2
windows/security/threat-protection/microsoft-defender-atp/tvm-security-recommendation.md
View File

@ -23,7 +23,7 @@ ms.date: 04/11/2019
>Want to experience Microsoft Defender ATP? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-portaloverview-abovefoldlink)
[!include[Prerelease information](prerelease.md)]
[!include[Prerelease information](../../includes/prerelease.md)]
The cybersecurity weaknesses identified in your organization are mapped to actionable security recommendations and prioritized by their impact on the security recommendation list. Prioritized recommendation helps shorten the mean time to mitigate or remediate vulnerabilities and drive compliance.

2
windows/security/threat-protection/microsoft-defender-atp/tvm-software-inventory.md
View File

@ -23,7 +23,7 @@ ms.date: 04/11/2019
>Want to experience Microsoft Defender ATP? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-portaloverview-abovefoldlink)
[!include[Prerelease information](prerelease.md)]
[!include[Prerelease information](../../includes/prerelease.md)]
Microsoft Defender ATP Threat & Vulnerability management's discovery capability shows in the **Software inventory** page. The software inventory includes the name of the product or vendor, the latest version it is in, and the number of weaknesses and vulnerabilities detected with it.

2
windows/security/threat-protection/microsoft-defender-atp/tvm-supported-os.md
View File

@ -23,7 +23,7 @@ ms.topic: article
>Want to experience Microsoft Defender ATP? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-portaloverview-abovefoldlink)
[!include[Prerelease information](prerelease.md)]
[!include[Prerelease information](../../includes/prerelease.md)]
Before you begin, ensure that you meet the following operating system or platform requisites for Threat & Vulnerability Management so the activities in your devices are properly accounted for.

2
windows/security/threat-protection/microsoft-defender-atp/tvm-weaknesses.md
View File

@ -23,7 +23,7 @@ ms.date: 10/31/2019
>Want to experience Microsoft Defender ATP? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-portaloverview-abovefoldlink)
[!include[Prerelease information](prerelease.md)]
[!include[Prerelease information](../../includes/prerelease.md)]
Threat & Vulnerability Management leverages the same signals in Microsoft Defender ATP's endpoint protection to scan and detect vulnerabilities.

4
windows/security/threat-protection/microsoft-defender-atp/unisolate-machine.md
View File

@ -25,7 +25,7 @@ ms.topic: article
Undo isolation of a machine.
[!include[Machine actions note](machineactionsnote.md)]
[!include[Machine actions note](../../includes/machineactionsnote.md)]
## Permissions
One of the following permissions is required to call this API. To learn more, including how to choose permissions, see [Use Microsoft Defender ATP APIs](apis-intro.md)
@ -70,7 +70,7 @@ If successful, this method returns 201 - Created response code and [Machine Acti
Here is an example of the request.
[!include[Improve request performance](improve-request-performance.md)]
[!include[Improve request performance](../../includes/improve-request-performance.md)]
```
POST https://api.securitycenter.windows.com/api/machines/1e5bc9d7e413ddd7902c2932e418702b84d0cc07/unisolate

4
windows/security/threat-protection/microsoft-defender-atp/unrestrict-code-execution.md
View File

@ -24,7 +24,7 @@ ms.topic: article
Enable execution of any application on the machine.
[!include[Machine actions note](machineactionsnote.md)]
[!include[Machine actions note](../../includes/machineactionsnote.md)]
## Permissions
One of the following permissions is required to call this API. To learn more, including how to choose permissions, see [Use Microsoft Defender ATP APIs](apis-intro.md)
@ -67,7 +67,7 @@ If successful, this method returns 201 - Created response code and [Machine Acti
Here is an example of the request.
[!include[Improve request performance](improve-request-performance.md)]
[!include[Improve request performance](../../includes/improve-request-performance.md)]
```
POST https://api.securitycenter.windows.com/api/machines/1e5bc9d7e413ddd7902c2932e418702b84d0cc07/unrestrictCodeExecution

2
windows/security/threat-protection/microsoft-defender-atp/update-alert.md
View File

@ -60,7 +60,7 @@ assignedTo | String | Owner of the alert
classification | String | Specifies the specification of the alert. The property values are: 'Unknown', 'FalsePositive', 'TruePositive'.
determination | String | Specifies the determination of the alert. The property values are: 'NotAvailable', 'Apt', 'Malware', 'SecurityPersonnel', 'SecurityTesting', 'UnwantedSoftware', 'Other'
[!include[Improve request performance](improve-request-performance.md)]
[!include[Improve request performance](../../includes/improve-request-performance.md)]
## Response
If successful, this method returns 200 OK, and the [alert](alerts.md) entity in the response body with the updated properties. If alert with the specified id was not found - 404 Not Found.

2
windows/security/threat-protection/microsoft-defender-atp/user-roles.md
View File

@ -23,7 +23,7 @@ ms.topic: article
>Want to experience Microsoft Defender ATP? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-roles-abovefoldlink)
[!include[Prerelease information](prerelease.md)]
[!include[Prerelease information](../../includes/prerelease.md)]
## Create roles and assign the role to an Azure Active Directory group
The following steps guide you on how to create roles in Microsoft Defender Security Center. It assumes that you have already created Azure Active Directory user groups.