Updates

2025-06-18 11:53:37 +00:00 · 2020-07-07 20:56:53 -07:00
parent 23e33362ad
commit b70c3f1c57
3 changed files with 11 additions and 13 deletions
--- a/windows/security/threat-protection/microsoft-defender-atp/images/mac-approved-system-extensions.png
+++ b/windows/security/threat-protection/microsoft-defender-atp/images/mac-approved-system-extensions.png
--- a/windows/security/threat-protection/microsoft-defender-atp/linux-resources.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/linux-resources.md
@ -86,10 +86,10 @@ The following table lists commands for some of the most common scenarios. Run `m
 |Configuration         |Turn on/off product diagnostics                         |`mdatp config cloud-diagnostic --value [enabled|disabled]`             |
 |Configuration         |Turn on/off automatic sample submission                 |`mdatp config cloud-automatic-sample-submission [enabled|disabled]`    |
 |Configuration         |Turn on/off AV passive mode                             |`mdatp config passive-mode [enabled|disabled]`                         |
-|Configuration         |Add/remove an antivirus exclusion for a file extension  |`mdatp exclusion extension [add|remove] --name <extension>`            |
-|Configuration         |Add/remove an antivirus exclusion for a file            |`mdatp exclusion file [add|remove] --path <path-to-file>`              |
-|Configuration         |Add/remove an antivirus exclusion for a directory       |`mdatp exclusion folder [add|remove] --path <path-to-directory>`       |
-|Configuration         |Add/remove an antivirus exclusion for a process         |`mdatp exclusion process [add|remove] --path <path-to-process>`<br/>`mdatp exclusion process [add|remove] --name <process-name>`   |
+|Configuration         |Add/remove an antivirus exclusion for a file extension  |`mdatp exclusion extension [add|remove] --name [extension]`            |
+|Configuration         |Add/remove an antivirus exclusion for a file            |`mdatp exclusion file [add|remove] --path [path-to-file]`              |
+|Configuration         |Add/remove an antivirus exclusion for a directory       |`mdatp exclusion folder [add|remove] --path [path-to-directory]`       |
+|Configuration         |Add/remove an antivirus exclusion for a process         |`mdatp exclusion process [add|remove] --path [path-to-process]`<br/>`mdatp exclusion process [add|remove] --name [process-name]`   |
 |Configuration         |List all antivirus exclusions                           |`mdatp exclusion list`                                                 |
 |Configuration         |Turn on PUA protection                                  |`mdatp threat policy set --type potentially_unwanted_application --action block` |
 |Configuration         |Turn off PUA protection                                 |`mdatp threat policy set --type potentially_unwanted_application --action off` |
@ -103,12 +103,12 @@ The following table lists commands for some of the most common scenarios. Run `m
 |Protection            |Cancel an ongoing on-demand scan                        |`mdatp scan cancel`                                                    |
 |Protection            |Request a security intelligence update                  |`mdatp definitions update`                                             |
 |Protection history    |Print the full protection history                       |`mdatp threat list`                                                    |
-|Protection history    |Get threat details                                      |`mdatp threat get --id <threat-id>`                                    |
+|Protection history    |Get threat details                                      |`mdatp threat get --id [threat-id]`                                    |
 |Quarantine management |List all quarantined files                              |`mdatp threat quarantine list`                                         |
 |Quarantine management |Remove all files from the quarantine                    |`mdatp threat quarantine remove-all`                                   |
-|Quarantine management |Add a file detected as a threat to the quarantine       |`mdatp threat quarantine add --id <threat-id>`                         |
-|Quarantine management |Remove a file detected as a threat from the quarantine  |`mdatp threat quarantine add --id <threat-id>`                         |
-|Quarantine management |Restore a file from the quarantine                      |`mdatp threat quarantine add --id <threat-id>`                         |
+|Quarantine management |Add a file detected as a threat to the quarantine       |`mdatp threat quarantine add --id [threat-id]`                         |
+|Quarantine management |Remove a file detected as a threat from the quarantine  |`mdatp threat quarantine add --id [threat-id]`                         |
+|Quarantine management |Restore a file from the quarantine                      |`mdatp threat quarantine add --id [threat-id]`                         |

 ## Microsoft Defender ATP portal information

--- a/windows/security/threat-protection/microsoft-defender-atp/mac-sysext-policies.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/mac-sysext-policies.md
@ -19,7 +19,7 @@ ms.topic: conceptual

 # New configuration profiles for macOS Catalina and newer versions of macOS

-In alignment with macOS evolution, we are preparing a Microsoft Defender ATP for Mac update that leverages system extensions instead of kernel extensions. This update will only be applicable to macOS Catalina (10.15) and newer version of macOS.
+In alignment with macOS evolution, we are preparing a Microsoft Defender ATP for Mac update that leverages system extensions instead of kernel extensions. This update will only be applicable to macOS Catalina (10.15.4) and newer versions of macOS.

 If you have deployed Microsoft Defender ATP for Mac in a managed environment (through JAMF, Intune, or another MDM solution), you must deploy new configuration profiles. Failure to do this will result in users getting approval prompts to run these new components.

@ -36,7 +36,6 @@ To approve the system extensions, create the following payload:

    - **com.microsoft.wdav.epsext**
    - **com.microsoft.wdav.netext**
-    - **com.microsoft.wdav.tunnelext**

    ![Approved system extensions screenshot](images/mac-approved-system-extensions.png)

@ -109,7 +108,7 @@ A web content filtering policy is needed to run the network extension. Add the f
                    <key>UserDefinedName</key>
                    <string>Microsoft Defender ATP Content Filter</string>
                    <key>PluginBundleID</key>
-                    <string>com.microsoft.wdav.daemon</string>
+                    <string>com.microsoft.wdav</string>
                    <key>FilterSockets</key>
                    <true/>
                    <key>FilterDataProviderBundleIdentifier</key>
@ -193,7 +192,7 @@ Save the following content to a file named **sysext.xml**:
                <key>UserDefinedName</key>
                <string>Microsoft Defender ATP Content Filter</string>
                <key>PluginBundleID</key>
-                <string>com.microsoft.wdav.daemon</string>
+                <string>com.microsoft.wdav</string>
                <key>FilterSockets</key>
                <true/>
                <key>FilterDataProviderBundleIdentifier</key>
@ -262,7 +261,6 @@ Save the following content to a file named **sysext.xml**:
                    <array>
                        <string>com.microsoft.wdav.epsext</string>
                        <string>com.microsoft.wdav.netext</string>
-                        <string>com.microsoft.wdav.tunnelext</string>
                    </array>
                </dict>
            </dict>