From 233900733288fb9129ed865f9c07b8329f1e6da0 Mon Sep 17 00:00:00 2001 From: MaratMussabekov <48041687+MaratMussabekov@users.noreply.github.com> Date: Sat, 21 Mar 2020 17:03:41 +0500 Subject: [PATCH 01/13] Update mac-preferences.md --- .../microsoft-defender-atp/mac-preferences.md | 16 ++++++++-------- 1 file changed, 8 insertions(+), 8 deletions(-) diff --git a/windows/security/threat-protection/microsoft-defender-atp/mac-preferences.md b/windows/security/threat-protection/microsoft-defender-atp/mac-preferences.md index 76875534f3..35cd1ff8dc 100644 --- a/windows/security/threat-protection/microsoft-defender-atp/mac-preferences.md +++ b/windows/security/threat-protection/microsoft-defender-atp/mac-preferences.md @@ -362,9 +362,9 @@ Specifies the value of tag ## Recommended configuration profile -To get started, we recommend the following configuration profile for your enterprise to take advantage of all protection features that Microsoft Defender ATP provides. +To get started, we recommend the following configuration for your enterprise to take advantage of all protection features that Microsoft Defender ATP provides. -The following configuration profile will: +The following configuration profile (or, in case of JAMF, a property list that could be uploaded into custom settings Configuration Profile) will: - Enable real-time protection (RTP) - Specify how the following threat types are handled: - **Potentially unwanted applications (PUA)** are blocked @@ -372,7 +372,7 @@ The following configuration profile will: - Enable cloud-delivered protection - Enable automatic sample submission -### JAMF profile +### Property list for JAMF Configuration Profile ```XML @@ -491,9 +491,9 @@ The following configuration profile will: ## Full configuration profile example -The following configuration profile contains entries for all settings described in this document and can be used for more advanced scenarios where you want more control over Microsoft Defender ATP for Mac. +The following templates contain entries for all settings described in this document and can be used for more advanced scenarios where you want more control over Microsoft Defender ATP for Mac. -### JAMF profile +### Property list for JAMF Configuration Profile ```XML @@ -734,16 +734,16 @@ The following configuration profile contains entries for all settings described ``` -## Configuration profile validation +## Property list validation -The configuration profile must be a valid *.plist* file. This can be checked by executing: +The property list must be a valid *.plist* file. This can be checked by executing: ```bash $ plutil -lint com.microsoft.wdav.plist com.microsoft.wdav.plist: OK ``` -If the configuration profile is well-formed, the above command outputs `OK` and returns an exit code of `0`. Otherwise, an error that describes the issue is displayed and the command returns an exit code of `1`. +If the file is well-formed, the above command outputs `OK` and returns an exit code of `0`. Otherwise, an error that describes the issue is displayed and the command returns an exit code of `1`. ## Configuration profile deployment From f91bb310574a5bc0fe7f389158edda75a4a5ce9b Mon Sep 17 00:00:00 2001 From: MaratMussabekov <48041687+MaratMussabekov@users.noreply.github.com> Date: Sat, 21 Mar 2020 21:28:06 +0500 Subject: [PATCH 02/13] Update windows/security/threat-protection/microsoft-defender-atp/mac-preferences.md Co-Authored-By: JohanFreelancer9 <48568725+JohanFreelancer9@users.noreply.github.com> --- .../threat-protection/microsoft-defender-atp/mac-preferences.md | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/windows/security/threat-protection/microsoft-defender-atp/mac-preferences.md b/windows/security/threat-protection/microsoft-defender-atp/mac-preferences.md index 35cd1ff8dc..68caeeb966 100644 --- a/windows/security/threat-protection/microsoft-defender-atp/mac-preferences.md +++ b/windows/security/threat-protection/microsoft-defender-atp/mac-preferences.md @@ -372,7 +372,7 @@ The following configuration profile (or, in case of JAMF, a property list that c - Enable cloud-delivered protection - Enable automatic sample submission -### Property list for JAMF Configuration Profile +### Property list for JAMF configuration profile ```XML From 4ae03074cc5baf0a19c2e811f277706c97b11717 Mon Sep 17 00:00:00 2001 From: MaratMussabekov <48041687+MaratMussabekov@users.noreply.github.com> Date: Sat, 21 Mar 2020 21:28:12 +0500 Subject: [PATCH 03/13] Update windows/security/threat-protection/microsoft-defender-atp/mac-preferences.md Co-Authored-By: JohanFreelancer9 <48568725+JohanFreelancer9@users.noreply.github.com> --- .../threat-protection/microsoft-defender-atp/mac-preferences.md | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/windows/security/threat-protection/microsoft-defender-atp/mac-preferences.md b/windows/security/threat-protection/microsoft-defender-atp/mac-preferences.md index 68caeeb966..7b2803c6dd 100644 --- a/windows/security/threat-protection/microsoft-defender-atp/mac-preferences.md +++ b/windows/security/threat-protection/microsoft-defender-atp/mac-preferences.md @@ -493,7 +493,7 @@ The following configuration profile (or, in case of JAMF, a property list that c The following templates contain entries for all settings described in this document and can be used for more advanced scenarios where you want more control over Microsoft Defender ATP for Mac. -### Property list for JAMF Configuration Profile +### Property list for JAMF configuration profile ```XML From 094ac6ea5f07a59fe2774f7ffba7dd136ae2a65d Mon Sep 17 00:00:00 2001 From: MaratMussabekov <48041687+MaratMussabekov@users.noreply.github.com> Date: Sat, 21 Mar 2020 21:28:19 +0500 Subject: [PATCH 04/13] Update windows/security/threat-protection/microsoft-defender-atp/mac-preferences.md Co-Authored-By: JohanFreelancer9 <48568725+JohanFreelancer9@users.noreply.github.com> --- .../threat-protection/microsoft-defender-atp/mac-preferences.md | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/windows/security/threat-protection/microsoft-defender-atp/mac-preferences.md b/windows/security/threat-protection/microsoft-defender-atp/mac-preferences.md index 7b2803c6dd..6c5a04ada0 100644 --- a/windows/security/threat-protection/microsoft-defender-atp/mac-preferences.md +++ b/windows/security/threat-protection/microsoft-defender-atp/mac-preferences.md @@ -364,7 +364,7 @@ Specifies the value of tag To get started, we recommend the following configuration for your enterprise to take advantage of all protection features that Microsoft Defender ATP provides. -The following configuration profile (or, in case of JAMF, a property list that could be uploaded into custom settings Configuration Profile) will: +The following configuration profile (or, in case of JAMF, a property list that could be uploaded into the custom settings configuration profile) will: - Enable real-time protection (RTP) - Specify how the following threat types are handled: - **Potentially unwanted applications (PUA)** are blocked From 4ef85765b8502de9ea7338771b2a33acb766eed2 Mon Sep 17 00:00:00 2001 From: MaratMussabekov <48041687+MaratMussabekov@users.noreply.github.com> Date: Sun, 22 Mar 2020 09:58:55 +0500 Subject: [PATCH 05/13] Update troubleshoot-reporting.md --- .../windows-defender-antivirus/troubleshoot-reporting.md | 3 +++ 1 file changed, 3 insertions(+) diff --git a/windows/security/threat-protection/windows-defender-antivirus/troubleshoot-reporting.md b/windows/security/threat-protection/windows-defender-antivirus/troubleshoot-reporting.md index d123f26a35..2efa65178d 100644 --- a/windows/security/threat-protection/windows-defender-antivirus/troubleshoot-reporting.md +++ b/windows/security/threat-protection/windows-defender-antivirus/troubleshoot-reporting.md @@ -22,6 +22,9 @@ manager: dansimp - [Microsoft Defender Advanced Threat Protection (Microsoft Defender ATP)](https://go.microsoft.com/fwlink/p/?linkid=2069559) +> [!IMPORTANT] +> On March 31, 2020, the Windows Defender Antivirus reporting feature of Update Compliance will be removed. You can continue to define and review security compliance policies using [Microsoft Endpoint Manager](https://www.microsoft.com/microsoft-365/microsoft-endpoint-manager), which allows finer control over security features and updates. + You can use Windows Defender Antivirus with Update Compliance. You’ll see status for E3, B, F1, VL, and Pro licenses. However, for E5 licenses, you need to use the [Microsoft Defender ATP portal](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/configure-endpoints). To learn more about licensing options, see [Windows 10 product licensing options](https://www.microsoft.com/licensing/product-licensing/windows10.aspx). When you use [Windows Analytics Update Compliance to obtain reporting into the protection status of devices or endpoints](/windows/deployment/update/update-compliance-using#wdav-assessment) in your network that are using Windows Defender Antivirus, you might encounter problems or issues. From 154f032f3600c8098584eabfda854e0c93d376c2 Mon Sep 17 00:00:00 2001 From: amirsc3 <42802974+amirsc3@users.noreply.github.com> Date: Mon, 23 Mar 2020 16:25:56 +0200 Subject: [PATCH 06/13] Update onboard-offline-machines.md The article is misleading and causes our customers to think that windows 10 can be onboarded via MMA when offline --- .../microsoft-defender-atp/onboard-offline-machines.md | 8 ++++++++ 1 file changed, 8 insertions(+) diff --git a/windows/security/threat-protection/microsoft-defender-atp/onboard-offline-machines.md b/windows/security/threat-protection/microsoft-defender-atp/onboard-offline-machines.md index ff5e1ed7d9..f688724abd 100644 --- a/windows/security/threat-protection/microsoft-defender-atp/onboard-offline-machines.md +++ b/windows/security/threat-protection/microsoft-defender-atp/onboard-offline-machines.md @@ -25,6 +25,14 @@ ms.topic: article To onboard machines without Internet access, you'll need to take the following general steps: +[!IMPORTANT] These steps are applicable only to client or server machines running previous versions of Windows such as: +Windows Server 2016 and earlier and Windows 8.1 and earlier. +Note: An OMS gateway server can still be used as proxy for disconnected Windows 10 machines when configured via 'TelemetryProxyServer' registry or GPO. +For more information, refer to the articles below: +https://docs.microsoft.com/en-us/windows/security/threat-protection/microsoft-defender-atp/onboard-downlevel +https://docs.microsoft.com/en-us/windows/security/threat-protection/microsoft-defender-atp/configure-server-endpoints#windows-server-2008-r2-sp1--windows-server-2012-r2-and-windows-server-2016 +https://docs.microsoft.com/en-us/windows/security/threat-protection/microsoft-defender-atp/configure-proxy-internet#configure-the-proxy-server-manually-using-a-registry-based-static-proxy + ## On-premise machines - Setup Azure Log Analytics (formerly known as OMS Gateway) to act as proxy or hub: From 8ab276c24bc6a1cc0906de7172b18dad7f1622f7 Mon Sep 17 00:00:00 2001 From: amirsc3 <42802974+amirsc3@users.noreply.github.com> Date: Mon, 23 Mar 2020 16:29:18 +0200 Subject: [PATCH 07/13] Update onboard-offline-machines.md Adjusting note a little --- .../microsoft-defender-atp/onboard-offline-machines.md | 6 +++--- 1 file changed, 3 insertions(+), 3 deletions(-) diff --git a/windows/security/threat-protection/microsoft-defender-atp/onboard-offline-machines.md b/windows/security/threat-protection/microsoft-defender-atp/onboard-offline-machines.md index f688724abd..b86ce4d1e1 100644 --- a/windows/security/threat-protection/microsoft-defender-atp/onboard-offline-machines.md +++ b/windows/security/threat-protection/microsoft-defender-atp/onboard-offline-machines.md @@ -25,9 +25,9 @@ ms.topic: article To onboard machines without Internet access, you'll need to take the following general steps: -[!IMPORTANT] These steps are applicable only to client or server machines running previous versions of Windows such as: -Windows Server 2016 and earlier and Windows 8.1 and earlier. -Note: An OMS gateway server can still be used as proxy for disconnected Windows 10 machines when configured via 'TelemetryProxyServer' registry or GPO. +[!IMPORTANT] The steps below are applicable only to machines running previous versions of Windows such as: +Windows Server 2016 and earlier or Windows 8.1 and earlier. +Note: An OMS gateway server can still be used as proxy for disconnected Windows 10 machines when configured via 'TelemetryProxyServer' registry or GPO.
For more information, refer to the articles below: https://docs.microsoft.com/en-us/windows/security/threat-protection/microsoft-defender-atp/onboard-downlevel https://docs.microsoft.com/en-us/windows/security/threat-protection/microsoft-defender-atp/configure-server-endpoints#windows-server-2008-r2-sp1--windows-server-2012-r2-and-windows-server-2016 From 94ec6954d43261afe658bcf7c147405633dd5bcb Mon Sep 17 00:00:00 2001 From: amirsc3 <42802974+amirsc3@users.noreply.github.com> Date: Mon, 23 Mar 2020 16:30:25 +0200 Subject: [PATCH 08/13] Update onboard-offline-machines.md Adding one more line break --- .../microsoft-defender-atp/onboard-offline-machines.md | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/windows/security/threat-protection/microsoft-defender-atp/onboard-offline-machines.md b/windows/security/threat-protection/microsoft-defender-atp/onboard-offline-machines.md index b86ce4d1e1..e41a095c48 100644 --- a/windows/security/threat-protection/microsoft-defender-atp/onboard-offline-machines.md +++ b/windows/security/threat-protection/microsoft-defender-atp/onboard-offline-machines.md @@ -26,7 +26,7 @@ ms.topic: article To onboard machines without Internet access, you'll need to take the following general steps: [!IMPORTANT] The steps below are applicable only to machines running previous versions of Windows such as: -Windows Server 2016 and earlier or Windows 8.1 and earlier. +Windows Server 2016 and earlier or Windows 8.1 and earlier.
Note: An OMS gateway server can still be used as proxy for disconnected Windows 10 machines when configured via 'TelemetryProxyServer' registry or GPO.
For more information, refer to the articles below: https://docs.microsoft.com/en-us/windows/security/threat-protection/microsoft-defender-atp/onboard-downlevel From a8be1ab572db40be5ebd0deb8a163a6f5f08bf32 Mon Sep 17 00:00:00 2001 From: amirsc3 <42802974+amirsc3@users.noreply.github.com> Date: Mon, 23 Mar 2020 17:09:22 +0200 Subject: [PATCH 09/13] Update onboard-offline-machines.md Yet more line breaks --- .../microsoft-defender-atp/onboard-offline-machines.md | 8 ++++---- 1 file changed, 4 insertions(+), 4 deletions(-) diff --git a/windows/security/threat-protection/microsoft-defender-atp/onboard-offline-machines.md b/windows/security/threat-protection/microsoft-defender-atp/onboard-offline-machines.md index e41a095c48..f010a95dc9 100644 --- a/windows/security/threat-protection/microsoft-defender-atp/onboard-offline-machines.md +++ b/windows/security/threat-protection/microsoft-defender-atp/onboard-offline-machines.md @@ -28,10 +28,10 @@ To onboard machines without Internet access, you'll need to take the following g [!IMPORTANT] The steps below are applicable only to machines running previous versions of Windows such as: Windows Server 2016 and earlier or Windows 8.1 and earlier.
Note: An OMS gateway server can still be used as proxy for disconnected Windows 10 machines when configured via 'TelemetryProxyServer' registry or GPO.
-For more information, refer to the articles below: -https://docs.microsoft.com/en-us/windows/security/threat-protection/microsoft-defender-atp/onboard-downlevel -https://docs.microsoft.com/en-us/windows/security/threat-protection/microsoft-defender-atp/configure-server-endpoints#windows-server-2008-r2-sp1--windows-server-2012-r2-and-windows-server-2016 -https://docs.microsoft.com/en-us/windows/security/threat-protection/microsoft-defender-atp/configure-proxy-internet#configure-the-proxy-server-manually-using-a-registry-based-static-proxy +For more information, refer to the articles below:
+https://docs.microsoft.com/en-us/windows/security/threat-protection/microsoft-defender-atp/onboard-downlevel
+https://docs.microsoft.com/en-us/windows/security/threat-protection/microsoft-defender-atp/configure-server-endpoints#windows-server-2008-r2-sp1--windows-server-2012-r2-and-windows-server-2016
+https://docs.microsoft.com/en-us/windows/security/threat-protection/microsoft-defender-atp/configure-proxy-internet#configure-the-proxy-server-manually-using-a-registry-based-static-proxy
## On-premise machines From 8895c75cd49446aba52c276019583fadfa59d450 Mon Sep 17 00:00:00 2001 From: Tina Burden Date: Mon, 23 Mar 2020 11:56:37 -0700 Subject: [PATCH 10/13] pencil edits --- .../microsoft-defender-atp/onboard-offline-machines.md | 6 +++--- 1 file changed, 3 insertions(+), 3 deletions(-) diff --git a/windows/security/threat-protection/microsoft-defender-atp/onboard-offline-machines.md b/windows/security/threat-protection/microsoft-defender-atp/onboard-offline-machines.md index f010a95dc9..95bd8d13ae 100644 --- a/windows/security/threat-protection/microsoft-defender-atp/onboard-offline-machines.md +++ b/windows/security/threat-protection/microsoft-defender-atp/onboard-offline-machines.md @@ -29,9 +29,9 @@ To onboard machines without Internet access, you'll need to take the following g Windows Server 2016 and earlier or Windows 8.1 and earlier.
Note: An OMS gateway server can still be used as proxy for disconnected Windows 10 machines when configured via 'TelemetryProxyServer' registry or GPO.
For more information, refer to the articles below:
-https://docs.microsoft.com/en-us/windows/security/threat-protection/microsoft-defender-atp/onboard-downlevel
-https://docs.microsoft.com/en-us/windows/security/threat-protection/microsoft-defender-atp/configure-server-endpoints#windows-server-2008-r2-sp1--windows-server-2012-r2-and-windows-server-2016
-https://docs.microsoft.com/en-us/windows/security/threat-protection/microsoft-defender-atp/configure-proxy-internet#configure-the-proxy-server-manually-using-a-registry-based-static-proxy
+https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/onboard-downlevel
+https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/configure-server-endpoints#windows-server-2008-r2-sp1--windows-server-2012-r2-and-windows-server-2016
+https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/configure-proxy-internet#configure-the-proxy-server-manually-using-a-registry-based-static-proxy
## On-premise machines From 30e592b6c36368981b8f8ba8765efc1206e176b5 Mon Sep 17 00:00:00 2001 From: Tina Burden Date: Mon, 23 Mar 2020 12:01:56 -0700 Subject: [PATCH 11/13] pencil edits --- .../onboard-offline-machines.md | 16 +++++++++------- 1 file changed, 9 insertions(+), 7 deletions(-) diff --git a/windows/security/threat-protection/microsoft-defender-atp/onboard-offline-machines.md b/windows/security/threat-protection/microsoft-defender-atp/onboard-offline-machines.md index 95bd8d13ae..c757c0bea2 100644 --- a/windows/security/threat-protection/microsoft-defender-atp/onboard-offline-machines.md +++ b/windows/security/threat-protection/microsoft-defender-atp/onboard-offline-machines.md @@ -25,13 +25,15 @@ ms.topic: article To onboard machines without Internet access, you'll need to take the following general steps: -[!IMPORTANT] The steps below are applicable only to machines running previous versions of Windows such as: -Windows Server 2016 and earlier or Windows 8.1 and earlier.
-Note: An OMS gateway server can still be used as proxy for disconnected Windows 10 machines when configured via 'TelemetryProxyServer' registry or GPO.
-For more information, refer to the articles below:
-https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/onboard-downlevel
-https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/configure-server-endpoints#windows-server-2008-r2-sp1--windows-server-2012-r2-and-windows-server-2016
-https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/configure-proxy-internet#configure-the-proxy-server-manually-using-a-registry-based-static-proxy
+> [!IMPORTANT] +> The steps below are applicable only to machines running previous versions of Windows such as: +Windows Server 2016 and earlier or Windows 8.1 and earlier. +> [!NOTE] +> An OMS gateway server can still be used as proxy for disconnected Windows 10 machines when configured via 'TelemetryProxyServer' registry or GPO. +For more information, see the following articles: +- [Onboard previous versions of Windows] (https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/onboard-downlevel) +- [Onboard servers to the Microsoft Defender ATP service] (https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/configure-server-endpoints#windows-server-2008-r2-sp1--windows-server-2012-r2-and-windows-server-2016) +- [Configure machine proxy and Internet connectivity settings] (https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/configure-proxy-internet#configure-the-proxy-server-manually-using-a-registry-based-static-proxy) ## On-premise machines From 6fa262ef90d086ebf7310f048b8097b9df379d8c Mon Sep 17 00:00:00 2001 From: Tina Burden Date: Mon, 23 Mar 2020 12:12:01 -0700 Subject: [PATCH 12/13] pencil edit --- .../microsoft-defender-atp/onboard-offline-machines.md | 2 ++ 1 file changed, 2 insertions(+) diff --git a/windows/security/threat-protection/microsoft-defender-atp/onboard-offline-machines.md b/windows/security/threat-protection/microsoft-defender-atp/onboard-offline-machines.md index c757c0bea2..4c33b12258 100644 --- a/windows/security/threat-protection/microsoft-defender-atp/onboard-offline-machines.md +++ b/windows/security/threat-protection/microsoft-defender-atp/onboard-offline-machines.md @@ -28,8 +28,10 @@ To onboard machines without Internet access, you'll need to take the following g > [!IMPORTANT] > The steps below are applicable only to machines running previous versions of Windows such as: Windows Server 2016 and earlier or Windows 8.1 and earlier. + > [!NOTE] > An OMS gateway server can still be used as proxy for disconnected Windows 10 machines when configured via 'TelemetryProxyServer' registry or GPO. + For more information, see the following articles: - [Onboard previous versions of Windows] (https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/onboard-downlevel) - [Onboard servers to the Microsoft Defender ATP service] (https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/configure-server-endpoints#windows-server-2008-r2-sp1--windows-server-2012-r2-and-windows-server-2016) From da50bb607d34d1b782b666749886a5bcbd3aff88 Mon Sep 17 00:00:00 2001 From: Tina Burden Date: Mon, 23 Mar 2020 12:31:09 -0700 Subject: [PATCH 13/13] pencil edits --- .../microsoft-defender-atp/onboard-offline-machines.md | 6 +++--- 1 file changed, 3 insertions(+), 3 deletions(-) diff --git a/windows/security/threat-protection/microsoft-defender-atp/onboard-offline-machines.md b/windows/security/threat-protection/microsoft-defender-atp/onboard-offline-machines.md index 4c33b12258..0534d30935 100644 --- a/windows/security/threat-protection/microsoft-defender-atp/onboard-offline-machines.md +++ b/windows/security/threat-protection/microsoft-defender-atp/onboard-offline-machines.md @@ -33,9 +33,9 @@ Windows Server 2016 and earlier or Windows 8.1 and earlier. > An OMS gateway server can still be used as proxy for disconnected Windows 10 machines when configured via 'TelemetryProxyServer' registry or GPO. For more information, see the following articles: -- [Onboard previous versions of Windows] (https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/onboard-downlevel) -- [Onboard servers to the Microsoft Defender ATP service] (https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/configure-server-endpoints#windows-server-2008-r2-sp1--windows-server-2012-r2-and-windows-server-2016) -- [Configure machine proxy and Internet connectivity settings] (https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/configure-proxy-internet#configure-the-proxy-server-manually-using-a-registry-based-static-proxy) +- [Onboard previous versions of Windows](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/onboard-downlevel) +- [Onboard servers to the Microsoft Defender ATP service](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/configure-server-endpoints#windows-server-2008-r2-sp1--windows-server-2012-r2-and-windows-server-2016) +- [Configure machine proxy and Internet connectivity settings](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/configure-proxy-internet#configure-the-proxy-server-manually-using-a-registry-based-static-proxy) ## On-premise machines