rm'd 2 previous pages split from mdatp-mac & collated them into resources page alongside known issues

2025-06-21 21:33:38 +00:00 · 2019-05-03 16:40:02 -04:00
parent 6a3fd98788
commit 875aeade4e
4 changed files with 113 additions and 138 deletions
--- a/windows/security/threat-protection/windows-defender-antivirus/microsoft-defender-atp-mac-diagnostic-logging.md
+++ b/windows/security/threat-protection/windows-defender-antivirus/microsoft-defender-atp-mac-diagnostic-logging.md
@ -1,64 +0,0 @@
 ---
 title: Collecting diagnostic information from Microsoft Defender ATP for Mac
 description: Describes how to collect diagnostic information from Microsoft Defender ATP for Mac.
 keywords: microsoft, defender, atp, mac, installation, deploy, intune, jamf, macos, mojave, high sierra, sierra
 search.product: eADQiWindows 10XVcnh
 search.appverid: #met150
 ms.prod: #w10
 ms.mktglfcycl: #deploy
 ms.sitesec: library
 ms.pagetype: security
 ms.author: v-maave
 author: martyav
 ms.localizationpriority: #medium
 manager: dansimp
 audience: ITPro
 ms.collection: M365-security-compliance 
 ms.topic: conceptual
 ---
 # Collecting diagnostic information
 **Applies to:**
 [Windows Defender Advanced Threat Protection (Windows Defender ATP) for Mac](https://go.microsoft.com/fwlink/p/?linkid=???To-Add???)
 >[!IMPORTANT]
 >Some information relates to prereleased product which may be substantially modified before it's commercially released. Microsoft makes no warranties, express or implied, with respect to the information provided here.
 If you can reproduce a problem, please increase the logging level, run the system for some time, and restore the logging level to the default.
 1) Increase logging level:
 ```bash
   mavel-mojave:~ testuser$ mdatp log-level --verbose
   Creating connection to daemon
   Connection established
   Operation succeeded
 ```
 2) Reproduce the problem
 3) Run `mdatp --diagnostic` to backup Defender ATP's logs. The command will print out location with generated zip file.
   ```bash
   mavel-mojave:~ testuser$ mdatp --diagnostic
   Creating connection to daemon
   Connection established
   "/Library/Application Support/Microsoft/Defender/wdavdiag/d85e7032-adf8-434a-95aa-ad1d450b9a2f.zip"
   ```
 4) Restore logging level:
   ```bash
   mavel-mojave:~ testuser$ mdatp log-level --info
   Creating connection to daemon
   Connection established
   Operation succeeded
   ```
 ## Installation issues
 If an error occurs during installation, the installer will only report a general failure.
 The detailed log will be saved to /Library/Logs/Microsoft/wdav.install.log. If you experience issues during installation, send us this file so we can help diagnose the cause.
--- a/windows/security/threat-protection/windows-defender-antivirus/microsoft-defender-atp-mac-resources.md
+++ b/windows/security/threat-protection/windows-defender-antivirus/microsoft-defender-atp-mac-resources.md
@ -0,0 +1,112 @@
 ---
 title: Microsoft Defender ATP for Mac Resources
 description: Describes resources for Microsoft Defender ATP for Mac, including how to uninstall it, how to collect diagnostic logs, and known issues with the product.
 keywords: microsoft, defender, atp, mac, installation, deploy, uninstallation, intune, jamf, macos, mojave, high sierra, sierra
 search.product: eADQiWindows 10XVcnh
 search.appverid: #met150
 ms.prod: w10
 ms.mktglfcycl: deploy
 ms.sitesec: library
 ms.pagetype: security
 ms.author: v-maave
 author: martyav
 ms.localizationpriority: #medium
 manager: dansimp
 audience: ITPro
 ms.collection: M365-security-compliance 
 ms.topic: #conceptual
 ---
 ## Collecting diagnostic information
 **Applies to:**
 [Windows Defender Advanced Threat Protection (Windows Defender ATP) for Mac](https://go.microsoft.com/fwlink/p/?linkid=???To-Add???)
 >[!IMPORTANT]
 >Some information relates to prereleased product which may be substantially modified before it's commercially released. Microsoft makes no warranties, express or implied, with respect to the information provided here.
 If you can reproduce a problem, please increase the logging level, run the system for some time, and restore the logging level to the default.
 1) Increase logging level:
 ```bash
   mavel-mojave:~ testuser$ mdatp log-level --verbose
   Creating connection to daemon
   Connection established
   Operation succeeded
 ```
 2) Reproduce the problem
 3) Run `mdatp --diagnostic` to backup Defender ATP's logs. The command will print out location with generated zip file.
   ```bash
   mavel-mojave:~ testuser$ mdatp --diagnostic
   Creating connection to daemon
   Connection established
   "/Library/Application Support/Microsoft/Defender/wdavdiag/d85e7032-adf8-434a-95aa-ad1d450b9a2f.zip"
   ```
 4) Restore logging level:
   ```bash
   mavel-mojave:~ testuser$ mdatp log-level --info
   Creating connection to daemon
   Connection established
   Operation succeeded
   ```
 ### Installation issues
 If an error occurs during installation, the installer will only report a general failure.
 The detailed log will be saved to /Library/Logs/Microsoft/wdav.install.log. If you experience issues during installation, send us this file so we can help diagnose the cause.
 ## Uninstalling
 There are several ways to uninstall Microsoft Defender ATP for Mac. Please note that while centrally managed uninstall is available for JAMF, it is not yet available for Intune. 
 ### Within the GUI
 - Open **Finder > Applications**. Right click on **Microsoft Defender ATP > Move to Trash**.
 ### From the command line:
 - ```sudo rm -rf '/Applications/Microsoft Defender ATP'```
 ### With a script
 Create a script in **Settings > Computer Management > Scripts**.
 ![Microsoft Defender uninstall screenshot](images/MDATP_26_Uninstall.png)
 For example, this script removes Microsoft Defender ATP from the /Applications directory:
 ```bash
   echo "Is WDAV installed?"
   ls -ld '/Applications/Microsoft Defender ATP.app' 2>/dev/null
   echo "Uninstalling WDAV..."
   rm -rf '/Applications/Microsoft Defender ATP.app'
   echo "Is WDAV still installed?"
   ls -ld '/Applications/Microsoft Defender ATP.app' 2>/dev/null
   echo "Done!"
 ```
 ### With a JAMF policy
 If you are running JAMF, your policy should contain a single script:
 ![Microsoft Defender uninstall script screenshot](images/MDATP_27_UninstallScript.png)
 Configure the appropriate scope in the **Scope** tab to specify the machines that will receive this policy.
 ## Known issues
 - Not fully optimized for performance or disk space yet.
 - Full Windows Defender ATP integration is not available yet.
 - Mac devices that switch networks may appear multiple times in the APT portal.
 - Centrally managed uninstall via Intune is still in development. As an alternative, manually uninstall Microsoft Defender ATP for Mac from each client device.
--- a/windows/security/threat-protection/windows-defender-antivirus/microsoft-defender-atp-mac-uninstalling.md
+++ b/windows/security/threat-protection/windows-defender-antivirus/microsoft-defender-atp-mac-uninstalling.md
@ -1,66 +0,0 @@
 ---
 title: Uninstalling Microsoft Defender ATP for Mac
 description: Describes how to uninstall Microsoft Defender ATP for Mac.
 keywords: microsoft, defender, atp, mac, installation, deploy, intune, jamf, macos, mojave, high sierra, sierra
 search.product: eADQiWindows 10XVcnh
 search.appverid: #met150
 ms.prod: #w10
 ms.mktglfcycl: #deploy
 ms.sitesec: library
 ms.pagetype: security
 ms.author: v-maave
 author: martyav
 ms.localizationpriority: #medium
 manager: dansimp
 audience: ITPro
 ms.collection: M365-security-compliance 
 ms.topic: conceptual
 ---
 # Uninstalling
 **Applies to:**
 [Windows Defender Advanced Threat Protection (Windows Defender ATP) for Mac](https://go.microsoft.com/fwlink/p/?linkid=???To-Add???)
 >[!IMPORTANT]
 >Some information relates to prereleased product which may be substantially modified before it's commercially released. Microsoft makes no warranties, express or implied, with respect to the information provided here.
 There are several ways to uninstall Microsoft Defender ATP for Mac. Please note that while centrally managed uninstall is available for JAMF, it is not yet available for Intune. See [Windows Defender Advanced Threat Protection (Windows Defender ATP) for Mac](https://go.microsoft.com/fwlink/p/?linkid=???To-Add???) for updates on development.
 ## Within the GUI
 - Open **Finder > Applications**. Right click on **Microsoft Defender ATP > Move to Trash**.
 ## From the command line:
 - ```sudo rm -rf '/Applications/Microsoft Defender ATP'```
 ## With a script
 Create a script in **Settings > Computer Management > Scripts**.
 ![Microsoft Defender uninstall screenshot](images/MDATP_26_Uninstall.png)
 For example, this script removes Microsoft Defender ATP from the /Applications directory:
 ```bash
 echo "Is WDAV installed?"
 ls -ld '/Applications/Microsoft Defender ATP.app' 2>/dev/null
 echo "Uninstalling WDAV..."
 rm -rf '/Applications/Microsoft Defender ATP.app'
 echo "Is WDAV still installed?"
 ls -ld '/Applications/Microsoft Defender ATP.app' 2>/dev/null
 echo "Done!"
 ```
 ## With a JAMF policy
 If you are running JAMF, your policy should contain a single script:
 ![Microsoft Defender uninstall script screenshot](images/MDATP_27_UninstallScript.png)
 Configure the appropriate scope in the **Scope** tab to specify the machines that will receive this policy.
--- a/windows/security/threat-protection/windows-defender-antivirus/microsoft-defender-atp-mac.md
+++ b/windows/security/threat-protection/windows-defender-antivirus/microsoft-defender-atp-mac.md
@ -508,10 +508,3 @@ Controlling product settings, triggering on-demand scans, and several other impo
  - Computer model
  - Processor architecture
  - Whether the device is a virtual machine
 ## Known issues
 - Not fully optimized for performance or disk space yet.
 - Full Windows Defender ATP integration is not available yet.
 - Mac devices that switch networks may appear multiple times in the APT portal.
 - Centrally managed uninstall via Intune is still in development. As an alternative, manually uninstall Microsoft Defender ATP for Mac from each client device.