From 5c8d3d10a8a4442f80a9c72e38c36ef2dcc941d4 Mon Sep 17 00:00:00 2001 From: Tudor Dobrila Date: Wed, 4 Mar 2020 17:14:18 -0800 Subject: [PATCH 01/15] Note at top of page --- .../microsoft-defender-atp/microsoft-defender-atp-linux.md | 7 +++++++ 1 file changed, 7 insertions(+) diff --git a/windows/security/threat-protection/microsoft-defender-atp/microsoft-defender-atp-linux.md b/windows/security/threat-protection/microsoft-defender-atp/microsoft-defender-atp-linux.md index 36e0aff59f..a8fab05988 100644 --- a/windows/security/threat-protection/microsoft-defender-atp/microsoft-defender-atp-linux.md +++ b/windows/security/threat-protection/microsoft-defender-atp/microsoft-defender-atp-linux.md @@ -22,6 +22,13 @@ ms.topic: conceptual This topic describes how to install, configure, update, and use Microsoft Defender Advanced Threat Protection (Microsoft Defender ATP) for Linux. +> [!IMPORTANT] +> **PUBLIC PREVIEW EDITION** +> +> This documentation is for a pre-released solution. The guidelines and the solution are subject to change between now and its general availability. +> +> As with any pre-released solution, remember to exercise caution when determining the target population for your deployments. + > [!VIDEO https://www.microsoft.com/en-us/videoplayer/embed/RE4q3yP]

From 5111de269adf4c2f151cb17301f890c4292317d6 Mon Sep 17 00:00:00 2001 From: Tudor Dobrila Date: Wed, 4 Mar 2020 17:15:14 -0800 Subject: [PATCH 02/15] Move at top --- .../microsoft-defender-atp/microsoft-defender-atp-linux.md | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/windows/security/threat-protection/microsoft-defender-atp/microsoft-defender-atp-linux.md b/windows/security/threat-protection/microsoft-defender-atp/microsoft-defender-atp-linux.md index a8fab05988..489c3d6a5a 100644 --- a/windows/security/threat-protection/microsoft-defender-atp/microsoft-defender-atp-linux.md +++ b/windows/security/threat-protection/microsoft-defender-atp/microsoft-defender-atp-linux.md @@ -20,8 +20,6 @@ ms.topic: conceptual # Microsoft Defender ATP for Linux -This topic describes how to install, configure, update, and use Microsoft Defender Advanced Threat Protection (Microsoft Defender ATP) for Linux. - > [!IMPORTANT] > **PUBLIC PREVIEW EDITION** > @@ -29,6 +27,8 @@ This topic describes how to install, configure, update, and use Microsoft Defend > > As with any pre-released solution, remember to exercise caution when determining the target population for your deployments. +This topic describes how to install, configure, update, and use Microsoft Defender Advanced Threat Protection (Microsoft Defender ATP) for Linux. + > [!VIDEO https://www.microsoft.com/en-us/videoplayer/embed/RE4q3yP]

From 30e446bd477b36f8f68a5cdb2750e404dcb8923e Mon Sep 17 00:00:00 2001 From: Tudor Dobrila Date: Wed, 4 Mar 2020 17:45:42 -0800 Subject: [PATCH 03/15] . --- .../microsoft-defender-atp/microsoft-defender-atp-linux.md | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/windows/security/threat-protection/microsoft-defender-atp/microsoft-defender-atp-linux.md b/windows/security/threat-protection/microsoft-defender-atp/microsoft-defender-atp-linux.md index 489c3d6a5a..69ea545ed3 100644 --- a/windows/security/threat-protection/microsoft-defender-atp/microsoft-defender-atp-linux.md +++ b/windows/security/threat-protection/microsoft-defender-atp/microsoft-defender-atp-linux.md @@ -23,9 +23,9 @@ ms.topic: conceptual > [!IMPORTANT] > **PUBLIC PREVIEW EDITION** > -> This documentation is for a pre-released solution. The guidelines and the solution are subject to change between now and its general availability. +> This documentation is for a pre-release solution. The guidelines and the solution are subject to change between now and its general availability. > -> As with any pre-released solution, remember to exercise caution when determining the target population for your deployments. +> As with any pre-release solution, remember to exercise caution when determining the target population for your deployments. This topic describes how to install, configure, update, and use Microsoft Defender Advanced Threat Protection (Microsoft Defender ATP) for Linux. From 50455c1d801ceacd0f844d94c2a33215d342fa0f Mon Sep 17 00:00:00 2001 From: Tudor Dobrila Date: Wed, 4 Mar 2020 20:55:53 -0800 Subject: [PATCH 04/15] Add note on initial definition downloads --- .../microsoft-defender-atp/linux-install-manually.md | 3 +++ 1 file changed, 3 insertions(+) diff --git a/windows/security/threat-protection/microsoft-defender-atp/linux-install-manually.md b/windows/security/threat-protection/microsoft-defender-atp/linux-install-manually.md index 931ca5edf7..60d78ae629 100644 --- a/windows/security/threat-protection/microsoft-defender-atp/linux-install-manually.md +++ b/windows/security/threat-protection/microsoft-defender-atp/linux-install-manually.md @@ -241,6 +241,9 @@ Download the onboarding package from Microsoft Defender Security Center: 1 ``` +> [!IMPORTANT] +> When the product starts for the first time, it downloads the latest antimalware definitions. Depending on your Internet connection, this can take up to a few minutes. During this time the above command returns a value of `0`. + 5. Run a detection test to verify that the machine is properly onboarded and reporting to the service. Perform the following steps on the newly onboarded machine: - Ensure that real-time protection is enabled (denoted by a result of `1` from running the following command): From 9383e70b1a614dffa0d0b05e21c3a5d8a478ea06 Mon Sep 17 00:00:00 2001 From: Tudor Dobrila Date: Wed, 4 Mar 2020 20:56:38 -0800 Subject: [PATCH 05/15] More --- .../microsoft-defender-atp/linux-install-with-ansible.md | 3 +++ .../microsoft-defender-atp/linux-install-with-puppet.md | 3 +++ 2 files changed, 6 insertions(+) diff --git a/windows/security/threat-protection/microsoft-defender-atp/linux-install-with-ansible.md b/windows/security/threat-protection/microsoft-defender-atp/linux-install-with-ansible.md index 8eae3591a3..50262cb871 100644 --- a/windows/security/threat-protection/microsoft-defender-atp/linux-install-with-ansible.md +++ b/windows/security/threat-protection/microsoft-defender-atp/linux-install-with-ansible.md @@ -233,6 +233,9 @@ Now run the tasks files under `/etc/ansible/playbooks/`. $ ansible-playbook /etc/ansible/playbooks/install_mdatp.yml -i /etc/ansible/hosts ``` +> [!IMPORTANT] +> When the product starts for the first time, it downloads the latest antimalware definitions. Depending on your Internet connection, this can take up to a few minutes. + - Validation/configuration: ```bash diff --git a/windows/security/threat-protection/microsoft-defender-atp/linux-install-with-puppet.md b/windows/security/threat-protection/microsoft-defender-atp/linux-install-with-puppet.md index a27c84b264..2e2db11bae 100644 --- a/windows/security/threat-protection/microsoft-defender-atp/linux-install-with-puppet.md +++ b/windows/security/threat-protection/microsoft-defender-atp/linux-install-with-puppet.md @@ -167,6 +167,9 @@ $ mdatp --health healthy The above command prints `1` if the product is onboarded and functioning as expected. +> [!IMPORTANT] +> When the product starts for the first time, it downloads the latest antimalware definitions. Depending on your Internet connection, this can take up to a few minutes. During this time the above command returns a value of `0`. + If the product is not healthy, the exit code (which can be checked through `echo $?`) indicates the problem: - 1 if the device is not yet onboarded. From f1fe7765f73cb4ae11edf9c3c9c6121bba1db063 Mon Sep 17 00:00:00 2001 From: Tudor Dobrila Date: Wed, 4 Mar 2020 21:09:31 -0800 Subject: [PATCH 06/15] Indentation --- .../microsoft-defender-atp/linux-install-manually.md | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/windows/security/threat-protection/microsoft-defender-atp/linux-install-manually.md b/windows/security/threat-protection/microsoft-defender-atp/linux-install-manually.md index 60d78ae629..d78e94da0e 100644 --- a/windows/security/threat-protection/microsoft-defender-atp/linux-install-manually.md +++ b/windows/security/threat-protection/microsoft-defender-atp/linux-install-manually.md @@ -241,8 +241,8 @@ Download the onboarding package from Microsoft Defender Security Center: 1 ``` -> [!IMPORTANT] -> When the product starts for the first time, it downloads the latest antimalware definitions. Depending on your Internet connection, this can take up to a few minutes. During this time the above command returns a value of `0`. + > [!IMPORTANT] + > When the product starts for the first time, it downloads the latest antimalware definitions. Depending on your Internet connection, this can take up to a few minutes. During this time the above command returns a value of `0`. 5. Run a detection test to verify that the machine is properly onboarded and reporting to the service. Perform the following steps on the newly onboarded machine: From 82cbc86f278ef8c03c497b7a362ed83d615083b7 Mon Sep 17 00:00:00 2001 From: Tudor Dobrila Date: Wed, 4 Mar 2020 21:31:14 -0800 Subject: [PATCH 07/15] Random grammar fix --- .../microsoft-defender-atp/linux-install-with-ansible.md | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/windows/security/threat-protection/microsoft-defender-atp/linux-install-with-ansible.md b/windows/security/threat-protection/microsoft-defender-atp/linux-install-with-ansible.md index 50262cb871..6dca87169e 100644 --- a/windows/security/threat-protection/microsoft-defender-atp/linux-install-with-ansible.md +++ b/windows/security/threat-protection/microsoft-defender-atp/linux-install-with-ansible.md @@ -42,7 +42,7 @@ Before you get started, please see [the main Microsoft Defender ATP for Linux pa - Curl - Unzip -- All host must be listed in the following format in the `/etc/ansible/hosts` file: +- All hosts must be listed in the following format in the `/etc/ansible/hosts` file: ```bash [servers] From 10bb79b85077fa1b4d70dcc6cf50a069a5e76a45 Mon Sep 17 00:00:00 2001 From: Tudor Dobrila Date: Wed, 4 Mar 2020 22:23:47 -0800 Subject: [PATCH 08/15] Preview steps --- .../microsoft-defender-atp/microsoft-defender-atp-linux.md | 2 ++ 1 file changed, 2 insertions(+) diff --git a/windows/security/threat-protection/microsoft-defender-atp/microsoft-defender-atp-linux.md b/windows/security/threat-protection/microsoft-defender-atp/microsoft-defender-atp-linux.md index 69ea545ed3..a3f5f84d66 100644 --- a/windows/security/threat-protection/microsoft-defender-atp/microsoft-defender-atp-linux.md +++ b/windows/security/threat-protection/microsoft-defender-atp/microsoft-defender-atp-linux.md @@ -26,6 +26,8 @@ ms.topic: conceptual > This documentation is for a pre-release solution. The guidelines and the solution are subject to change between now and its general availability. > > As with any pre-release solution, remember to exercise caution when determining the target population for your deployments. +> +> If you have preview features turned on in the Microsoft Defender ATP Security Center, you should be able to access the Linux onboarding page immediately. If you have not yet opted into previews, we encourage you to [turn on preview features](https://docs.microsoft.com/en-us/windows/security/threat-protection/microsoft-defender-atp/preview) in the Microsoft Defender ATP Security Center today. This topic describes how to install, configure, update, and use Microsoft Defender Advanced Threat Protection (Microsoft Defender ATP) for Linux. From 0046d7ec9bedf085f9f65544a16a69ab775c5882 Mon Sep 17 00:00:00 2001 From: Tudor Dobrila Date: Wed, 4 Mar 2020 22:34:38 -0800 Subject: [PATCH 09/15] Minor update --- .../microsoft-defender-atp/microsoft-defender-atp-linux.md | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/windows/security/threat-protection/microsoft-defender-atp/microsoft-defender-atp-linux.md b/windows/security/threat-protection/microsoft-defender-atp/microsoft-defender-atp-linux.md index a3f5f84d66..99476329a0 100644 --- a/windows/security/threat-protection/microsoft-defender-atp/microsoft-defender-atp-linux.md +++ b/windows/security/threat-protection/microsoft-defender-atp/microsoft-defender-atp-linux.md @@ -27,7 +27,7 @@ ms.topic: conceptual > > As with any pre-release solution, remember to exercise caution when determining the target population for your deployments. > -> If you have preview features turned on in the Microsoft Defender ATP Security Center, you should be able to access the Linux onboarding page immediately. If you have not yet opted into previews, we encourage you to [turn on preview features](https://docs.microsoft.com/en-us/windows/security/threat-protection/microsoft-defender-atp/preview) in the Microsoft Defender ATP Security Center today. +> If you have preview features turned on in the Microsoft Defender Security Center, you should be able to access the Linux onboarding page immediately. If you have not yet opted into previews, we encourage you to [turn on preview features](https://docs.microsoft.com/en-us/windows/security/threat-protection/microsoft-defender-atp/preview) in the Microsoft Defender Security Center today. This topic describes how to install, configure, update, and use Microsoft Defender Advanced Threat Protection (Microsoft Defender ATP) for Linux. From 7355a8ae0f95d611ce78bf2793b6e880beff0564 Mon Sep 17 00:00:00 2001 From: Tudor Dobrila Date: Wed, 4 Mar 2020 22:54:45 -0800 Subject: [PATCH 10/15] Remove locale --- .../microsoft-defender-atp/microsoft-defender-atp-linux.md | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/windows/security/threat-protection/microsoft-defender-atp/microsoft-defender-atp-linux.md b/windows/security/threat-protection/microsoft-defender-atp/microsoft-defender-atp-linux.md index 99476329a0..ad38c483b0 100644 --- a/windows/security/threat-protection/microsoft-defender-atp/microsoft-defender-atp-linux.md +++ b/windows/security/threat-protection/microsoft-defender-atp/microsoft-defender-atp-linux.md @@ -27,7 +27,7 @@ ms.topic: conceptual > > As with any pre-release solution, remember to exercise caution when determining the target population for your deployments. > -> If you have preview features turned on in the Microsoft Defender Security Center, you should be able to access the Linux onboarding page immediately. If you have not yet opted into previews, we encourage you to [turn on preview features](https://docs.microsoft.com/en-us/windows/security/threat-protection/microsoft-defender-atp/preview) in the Microsoft Defender Security Center today. +> If you have preview features turned on in the Microsoft Defender Security Center, you should be able to access the Linux onboarding page immediately. If you have not yet opted into previews, we encourage you to [turn on preview features](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/preview) in the Microsoft Defender Security Center today. This topic describes how to install, configure, update, and use Microsoft Defender Advanced Threat Protection (Microsoft Defender ATP) for Linux. From a8781b51e35bfb6eb2a7005a34d393821b0f4054 Mon Sep 17 00:00:00 2001 From: DanPandre <54847950+DanPandre@users.noreply.github.com> Date: Thu, 5 Mar 2020 10:45:27 -0500 Subject: [PATCH 11/15] Document Hub 2S firmware update --- devices/surface-hub/surface-hub-update-history.md | 15 +++++++++++++++ 1 file changed, 15 insertions(+) diff --git a/devices/surface-hub/surface-hub-update-history.md b/devices/surface-hub/surface-hub-update-history.md index 3330dfaabb..8e584f17b3 100644 --- a/devices/surface-hub/surface-hub-update-history.md +++ b/devices/surface-hub/surface-hub-update-history.md @@ -24,6 +24,21 @@ Please refer to the “[Surface Hub Important Information](https://support.micro ## Windows 10 Team Creators Update 1703 +
+February 28, 2020—update for Surface Hub 2S + +This update is specific to the Surface Hub 2S and provides the driver and firmware updates outlined below: + +* Surface Integration driver - 13.46.139.0 + * Improves display brightness scenarios. +* Intel(R) Management Engine Interface driver - 1914.12.0.1256 + * Improves system stability. +* Surface SMC Firmware update - 1.161.139.0 + * Improves pen battery performance. +* Surface UEFI update - 694.2938.768.0 + * Improves system stability. +
+
February 11, 2020—update for Team edition based on KB4537765* (OS Build 15063.2284) From 05393efdaac9ae53cf81c940e86af6f3b8b901ea Mon Sep 17 00:00:00 2001 From: Tudor Dobrila Date: Thu, 5 Mar 2020 10:13:48 -0800 Subject: [PATCH 12/15] Add insider-slow channel --- .../microsoft-defender-atp/linux-install-manually.md | 6 +++--- .../microsoft-defender-atp/linux-install-with-ansible.md | 6 +++--- .../microsoft-defender-atp/linux-install-with-puppet.md | 6 +++--- 3 files changed, 9 insertions(+), 9 deletions(-) diff --git a/windows/security/threat-protection/microsoft-defender-atp/linux-install-manually.md b/windows/security/threat-protection/microsoft-defender-atp/linux-install-manually.md index d78e94da0e..7c7b87e9e8 100644 --- a/windows/security/threat-protection/microsoft-defender-atp/linux-install-manually.md +++ b/windows/security/threat-protection/microsoft-defender-atp/linux-install-manually.md @@ -37,11 +37,11 @@ Before you get started, see [Microsoft Defender ATP for Linux](microsoft-defende ## Configure the Linux software repository -Microsoft Defender ATP for Linux can be deployed from one of the following channels (denoted below as *[channel]*): *insider-fast* or *prod*. Each of these channels corresponds to a Linux software repository. Instructions for configuring your device to use one of these repositories are provided below. +Microsoft Defender ATP for Linux can be deployed from one of the following channels (denoted below as *[channel]*): *insider-fast*, *insider-slow*, or *prod*. Each of these channels corresponds to a Linux software repository. Instructions for configuring your device to use one of these repositories are provided below. -The choice of the channel determines the type and frequency of updates that are offered to your device. Devices in *insider-fast* can try out new features before devices in *prod*. +The choice of the channel determines the type and frequency of updates that are offered to your device. Devices in *insider-fast* and *insider-slow* can try out new features before devices in *prod*. -In order to preview new features and provide early feedback, it is recommended that you configure some devices in your enterprise to use the *insider-fast* channel. +In order to preview new features and provide early feedback, it is recommended that you configure some devices in your enterprise to use either *insider-fast* or *insider-slow*. ### RHEL and variants (CentOS and Oracle EL) diff --git a/windows/security/threat-protection/microsoft-defender-atp/linux-install-with-ansible.md b/windows/security/threat-protection/microsoft-defender-atp/linux-install-with-ansible.md index 6dca87169e..141dfa33e7 100644 --- a/windows/security/threat-protection/microsoft-defender-atp/linux-install-with-ansible.md +++ b/windows/security/threat-protection/microsoft-defender-atp/linux-install-with-ansible.md @@ -129,11 +129,11 @@ Create subtask or role files that contribute to an actual task. Create the follo - Add the Microsoft Defender ATP repository and key. - Microsoft Defender ATP for Linux can be deployed from one of the following channels (denoted below as *[channel]*): *insider-fast* or *prod*. Each of these channels corresponds to a Linux software repository. + Microsoft Defender ATP for Linux can be deployed from one of the following channels (denoted below as *[channel]*): *insider-fast*, *insider-slow*, or *prod*. Each of these channels corresponds to a Linux software repository. - The choice of the channel determines the type and frequency of updates that are offered to your device. Devices in *insider-fast* can try out new features before devices in *prod*. + The choice of the channel determines the type and frequency of updates that are offered to your device. Devices in *insider-fast* and *insider-slow* can try out new features before devices in *prod*. - In order to preview new features and provide early feedback, it is recommended that you configure some devices in your enterprise to use the *insider-fast* channel. + In order to preview new features and provide early feedback, it is recommended that you configure some devices in your enterprise to use either *insider-fast* or *insider-slow*. Note your distribution and version and identify the closest entry for it under `https://packages.microsoft.com/config/`. diff --git a/windows/security/threat-protection/microsoft-defender-atp/linux-install-with-puppet.md b/windows/security/threat-protection/microsoft-defender-atp/linux-install-with-puppet.md index 2e2db11bae..c70f5834c8 100644 --- a/windows/security/threat-protection/microsoft-defender-atp/linux-install-with-puppet.md +++ b/windows/security/threat-protection/microsoft-defender-atp/linux-install-with-puppet.md @@ -78,11 +78,11 @@ install_mdatp ### Contents of `install_mdatp/manifests/init.pp` -Microsoft Defender ATP for Linux can be deployed from one of the following channels (denoted below as *[channel]*): *insider-fast* or *prod*. Each of these channels corresponds to a Linux software repository. +Microsoft Defender ATP for Linux can be deployed from one of the following channels (denoted below as *[channel]*): *insider-fast*, *insider-slow*, or *prod*. Each of these channels corresponds to a Linux software repository. -The choice of the channel determines the type and frequency of updates that are offered to your device. Devices in *insider-fast* can try out new features before devices in *prod*. +The choice of the channel determines the type and frequency of updates that are offered to your device. Devices in *insider-fast* and *insider-slow* can try out new features before devices in *prod*. -In order to preview new features and provide early feedback, it is recommended that you configure some devices in your enterprise to use the *insider-fast* channel. +In order to preview new features and provide early feedback, it is recommended that you configure some devices in your enterprise to use either *insider-fast* or *insider-slow*. Note your distribution and version and identify the closest entry for it under `https://packages.microsoft.com/config/`. From 64c16762732f9d96953192809388f255e441cc81 Mon Sep 17 00:00:00 2001 From: Greg Lindsay Date: Thu, 5 Mar 2020 10:24:48 -0800 Subject: [PATCH 13/15] fix typo and add details about USB SkipWimSplit --- .../deploy-a-windows-10-image-using-mdt.md | 5 ++++- 1 file changed, 4 insertions(+), 1 deletion(-) diff --git a/windows/deployment/deploy-windows-mdt/deploy-a-windows-10-image-using-mdt.md b/windows/deployment/deploy-windows-mdt/deploy-a-windows-10-image-using-mdt.md index f9bbb31cba..13ae466693 100644 --- a/windows/deployment/deploy-windows-mdt/deploy-a-windows-10-image-using-mdt.md +++ b/windows/deployment/deploy-windows-mdt/deploy-a-windows-10-image-using-mdt.md @@ -94,7 +94,7 @@ The steps for creating the deployment share for production are the same as when ### Configure permissions for the production deployment share -To read files in the deployment share, you need to assign NTSF and SMB permissions to the MDT Build Account (MDT\_BA) for the **D:\\MDTProduction** folder +To read files in the deployment share, you need to assign NTFS and SMB permissions to the MDT Build Account (MDT\_BA) for the **D:\\MDTProduction** folder On **MDT01**: @@ -727,6 +727,9 @@ On **MDT01**: The ISO that you got when updating the offline media item can be burned to a DVD and used directly (it will be bootable), but it is often more efficient to use USB sticks instead since they are faster and can hold more data. (A dual-layer DVD is limited to 8.5 GB.) +>[!TIP] +>In this example, the .wim file is 5.5 GB in size. However, bootable USB sticks are formatted with the FAT32 file system which limits file size to 4.0 GB. To resolve this issue, you must split the .wim file. This can be done using DISM: Dism /Split-Image /ImageFile:D:\MDTOfflinemedia\Content\Deploy\Operating Systems\W10EX64RTM\REFW10X64-001.wim /SWMFile:E:\sources\install.swm /FileSize:3800. Windows Setup automatically installs from this file, so long as you name it install.swm. The file names for the next files include numbers, for example: install2.swm, install3.swm. To enable split image in MDT, the Settings.xml file in your deployment share (ex: D:\MDTProduction\Control\Settings.xml) must have the **SkipWimSplit** value set to **False**. By default this value is set to True (\True\), so this must be changed and the offline media content updated. + Follow these steps to create a bootable USB stick from the offline media content: 1. On a physical machine running Windows 7 or later, insert the USB stick you want to use. From 3b8e3ebca390716a1bc9df5b09a6d2ca3708fd00 Mon Sep 17 00:00:00 2001 From: Tudor Dobrila Date: Thu, 5 Mar 2020 10:33:18 -0800 Subject: [PATCH 14/15] Clarification --- .../microsoft-defender-atp/linux-install-manually.md | 12 ++++++------ .../linux-install-with-ansible.md | 6 +++--- .../linux-install-with-puppet.md | 6 +++--- 3 files changed, 12 insertions(+), 12 deletions(-) diff --git a/windows/security/threat-protection/microsoft-defender-atp/linux-install-manually.md b/windows/security/threat-protection/microsoft-defender-atp/linux-install-manually.md index 7c7b87e9e8..7353351968 100644 --- a/windows/security/threat-protection/microsoft-defender-atp/linux-install-manually.md +++ b/windows/security/threat-protection/microsoft-defender-atp/linux-install-manually.md @@ -37,11 +37,11 @@ Before you get started, see [Microsoft Defender ATP for Linux](microsoft-defende ## Configure the Linux software repository -Microsoft Defender ATP for Linux can be deployed from one of the following channels (denoted below as *[channel]*): *insider-fast*, *insider-slow*, or *prod*. Each of these channels corresponds to a Linux software repository. Instructions for configuring your device to use one of these repositories are provided below. +Microsoft Defender ATP for Linux can be deployed from one of the following channels (denoted below as *[channel]*): *insiders-fast*, *insiders-slow*, or *prod*. Each of these channels corresponds to a Linux software repository. Instructions for configuring your device to use one of these repositories are provided below. -The choice of the channel determines the type and frequency of updates that are offered to your device. Devices in *insider-fast* and *insider-slow* can try out new features before devices in *prod*. +The choice of the channel determines the type and frequency of updates that are offered to your device. Devices in *insiders-fast* are the first ones to receive updates and new features, followed later by *insiders-slow* and lastly by *prod*. -In order to preview new features and provide early feedback, it is recommended that you configure some devices in your enterprise to use either *insider-fast* or *insider-slow*. +In order to preview new features and provide early feedback, it is recommended that you configure some devices in your enterprise to use either *insiders-fast* or *insiders-slow*. ### RHEL and variants (CentOS and Oracle EL) @@ -56,7 +56,7 @@ In order to preview new features and provide early feedback, it is recommended t sudo yum-config-manager --add-repo=https://packages.microsoft.com/config/[distro]/[version]/[channel].repo ``` - For example, if you are running CentOS 7 and wish to deploy MDATP for Linux from the *insider-fast* channel: + For example, if you are running CentOS 7 and wish to deploy MDATP for Linux from the *insiders-fast* channel: ```bash sudo yum-config-manager --add-repo=https://packages.microsoft.com/config/centos/7/insiders-fast.repo @@ -94,7 +94,7 @@ In order to preview new features and provide early feedback, it is recommended t sudo zypper addrepo -c -f -n microsoft-[channel] https://packages.microsoft.com/config/[distro]/[version]/[channel].repo ``` - For example, if you are running SLES 12 and wish to deploy MDATP for Linux from the *insider-fast* channel: + For example, if you are running SLES 12 and wish to deploy MDATP for Linux from the *insiders-fast* channel: ```bash sudo zypper addrepo -c -f -n microsoft-insiders-fast https://packages.microsoft.com/config/sles/12/insiders-fast.repo @@ -132,7 +132,7 @@ In order to preview new features and provide early feedback, it is recommended t curl -o microsoft.list https://packages.microsoft.com/config/[distro]/[version]/[channel].list ``` - For example, if you are running Ubuntu 18.04 and wish to deploy MDATP for Linux from the *insider-fast* channel: + For example, if you are running Ubuntu 18.04 and wish to deploy MDATP for Linux from the *insiders-fast* channel: ```bash curl -o microsoft.list https://packages.microsoft.com/config/ubuntu/18.04/insiders-fast.list diff --git a/windows/security/threat-protection/microsoft-defender-atp/linux-install-with-ansible.md b/windows/security/threat-protection/microsoft-defender-atp/linux-install-with-ansible.md index 141dfa33e7..bdba284676 100644 --- a/windows/security/threat-protection/microsoft-defender-atp/linux-install-with-ansible.md +++ b/windows/security/threat-protection/microsoft-defender-atp/linux-install-with-ansible.md @@ -129,11 +129,11 @@ Create subtask or role files that contribute to an actual task. Create the follo - Add the Microsoft Defender ATP repository and key. - Microsoft Defender ATP for Linux can be deployed from one of the following channels (denoted below as *[channel]*): *insider-fast*, *insider-slow*, or *prod*. Each of these channels corresponds to a Linux software repository. + Microsoft Defender ATP for Linux can be deployed from one of the following channels (denoted below as *[channel]*): *insiders-fast*, *insiders-slow*, or *prod*. Each of these channels corresponds to a Linux software repository. - The choice of the channel determines the type and frequency of updates that are offered to your device. Devices in *insider-fast* and *insider-slow* can try out new features before devices in *prod*. + The choice of the channel determines the type and frequency of updates that are offered to your device. Devices in *insiders-fast* are the first ones to receive updates and new features, followed later by *insiders-slow* and lastly by *prod*. - In order to preview new features and provide early feedback, it is recommended that you configure some devices in your enterprise to use either *insider-fast* or *insider-slow*. + In order to preview new features and provide early feedback, it is recommended that you configure some devices in your enterprise to use either *insiders-fast* or *insiders-slow*. Note your distribution and version and identify the closest entry for it under `https://packages.microsoft.com/config/`. diff --git a/windows/security/threat-protection/microsoft-defender-atp/linux-install-with-puppet.md b/windows/security/threat-protection/microsoft-defender-atp/linux-install-with-puppet.md index c70f5834c8..177ef802de 100644 --- a/windows/security/threat-protection/microsoft-defender-atp/linux-install-with-puppet.md +++ b/windows/security/threat-protection/microsoft-defender-atp/linux-install-with-puppet.md @@ -78,11 +78,11 @@ install_mdatp ### Contents of `install_mdatp/manifests/init.pp` -Microsoft Defender ATP for Linux can be deployed from one of the following channels (denoted below as *[channel]*): *insider-fast*, *insider-slow*, or *prod*. Each of these channels corresponds to a Linux software repository. +Microsoft Defender ATP for Linux can be deployed from one of the following channels (denoted below as *[channel]*): *insiders-fast*, *insiders-slow*, or *prod*. Each of these channels corresponds to a Linux software repository. -The choice of the channel determines the type and frequency of updates that are offered to your device. Devices in *insider-fast* and *insider-slow* can try out new features before devices in *prod*. +The choice of the channel determines the type and frequency of updates that are offered to your device. Devices in *insiders-fast* are the first ones to receive updates and new features, followed later by *insiders-slow* and lastly by *prod*. -In order to preview new features and provide early feedback, it is recommended that you configure some devices in your enterprise to use either *insider-fast* or *insider-slow*. +In order to preview new features and provide early feedback, it is recommended that you configure some devices in your enterprise to use either *insiders-fast* or *insiders-slow*. Note your distribution and version and identify the closest entry for it under `https://packages.microsoft.com/config/`. From aaa6d00b277f5a41e0846b1b6b0278dd6bc85bc9 Mon Sep 17 00:00:00 2001 From: Greg Lindsay Date: Thu, 5 Mar 2020 11:07:24 -0800 Subject: [PATCH 15/15] fix typo and add details about USB SkipWimSplit --- .../deploy-windows-mdt/deploy-a-windows-10-image-using-mdt.md | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/windows/deployment/deploy-windows-mdt/deploy-a-windows-10-image-using-mdt.md b/windows/deployment/deploy-windows-mdt/deploy-a-windows-10-image-using-mdt.md index 13ae466693..7e06abfeb3 100644 --- a/windows/deployment/deploy-windows-mdt/deploy-a-windows-10-image-using-mdt.md +++ b/windows/deployment/deploy-windows-mdt/deploy-a-windows-10-image-using-mdt.md @@ -728,7 +728,7 @@ On **MDT01**: The ISO that you got when updating the offline media item can be burned to a DVD and used directly (it will be bootable), but it is often more efficient to use USB sticks instead since they are faster and can hold more data. (A dual-layer DVD is limited to 8.5 GB.) >[!TIP] ->In this example, the .wim file is 5.5 GB in size. However, bootable USB sticks are formatted with the FAT32 file system which limits file size to 4.0 GB. To resolve this issue, you must split the .wim file. This can be done using DISM: Dism /Split-Image /ImageFile:D:\MDTOfflinemedia\Content\Deploy\Operating Systems\W10EX64RTM\REFW10X64-001.wim /SWMFile:E:\sources\install.swm /FileSize:3800. Windows Setup automatically installs from this file, so long as you name it install.swm. The file names for the next files include numbers, for example: install2.swm, install3.swm. To enable split image in MDT, the Settings.xml file in your deployment share (ex: D:\MDTProduction\Control\Settings.xml) must have the **SkipWimSplit** value set to **False**. By default this value is set to True (\True\), so this must be changed and the offline media content updated. +>In this example, the .wim file is 5.5 GB in size. However, bootable USB sticks are formatted with the FAT32 file system which limits file size to 4.0 GB. This means you must split the .wim file, which can be done using DISM:
 
Dism /Split-Image /ImageFile:D:\MDTOfflinemedia\Content\Deploy\Operating Systems\W10EX64RTM\REFW10X64-001.wim /SWMFile:E:\sources\install.swm /FileSize:3800.
 
Windows Setup automatically installs from this file, provided you name it install.swm. The file names for the next files include numbers, for example: install2.swm, install3.swm.
 
To enable split image in MDT, the Settings.xml file in your deployment share (ex: D:\MDTProduction\Control\Settings.xml) must have the **SkipWimSplit** value set to **False**. By default this value is set to True (\True\), so this must be changed and the offline media content updated. Follow these steps to create a bootable USB stick from the offline media content: