updates

2025-06-21 13:23:36 +00:00 · 2020-02-18 17:01:38 -08:00
parent 13a0537305
commit f1c3b00930
5 changed files with 74 additions and 57 deletions
--- a/windows/security/threat-protection/TOC.md
+++ b/windows/security/threat-protection/TOC.md
@ -18,11 +18,11 @@
 ## [Deployment guide]()
 ### [Deployment phases](microsoft-defender-atp/deployment-phases.md)

-### [Phase 1: Prepare Microsoft Defender ATP deployment](microsoft-defender-atp/prepare-deployment.md)
+### [Phase 1: Prepare](microsoft-defender-atp/prepare-deployment.md)

-### [Phase 2:  Setup the Microsoft Defender ATP service](microsoft-defender-atp/production-deployment.md)
+### [Phase 2: Setup](microsoft-defender-atp/production-deployment.md)

-### [Phase 3: Onboard](microsoft-defender-atp/configure.md)
+### [Phase 3: Onboard](microsoft-defender-atp/onboarding.md)


 ## [Operations]()
--- a/windows/security/threat-protection/microsoft-defender-atp/deployment-phases.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/deployment-phases.md
@ -35,7 +35,7 @@ There are three phases in deploying Microsoft Defender ATP:
      <br/>Setup </a><br>
    </td>
    <td align="center">
-      <a href="configure">
+      <a href="onboarding">
        <img src="images/onboard.png" alt="Onboard" title="Onboard" />
      <br/>Onboard </a><br>
 </td>
@ -54,6 +54,7 @@ There are three phases in deploying Microsoft Defender ATP:
    <td valign="top" style="width:25%; border:0;">
     The setup phase covers the initial steps you'll take as you first access Microsoft Defender Security Center. You'll be guided on:

+
 - Validating the licensing
 - Completing the setup wizard within the portal
 - Network configuration
@ -71,4 +72,30 @@ Onboard devices to the service so the Microsoft Defender ATP service can get sen

 The deployment guide will walk you through the recommended path in deploying Microsoft Defender ATP. 

+There are several methods you can use to onboard to the service. The deployment guide will only cover the recommended path. For details on other ways to onboard, see [Onboard machines to Microsoft Defender ATP](onboard-configure.md).

+## In Scope
+
+The following is in scope for this deployment guide:
+-   Use of Microsoft Endpoint Configuration Manager to onboard endpoints into the service
+-   Enabling Microsoft Defender ATP endpoint protection platform (EPP)
+    capabilities
+
+    -   Next Generation Protection
+
+    -   Attack Surface Reduction
+
+-   Enabling Microsoft Defender ATP endpoint detection and response (EDR)
+    capabilities including automatic investigation and remediation
+
+-   Enabling Microsoft Defender ATP threat and vulnerability management (TVM)
+
+
+## Out of scope
+
+The following are out of scope of this deployment guide:
+
+-   Configuration of third-party solutions that might integrate with Microsoft
+    Defender ATP
+
+-   Penetration testing in production environment
--- a/windows/security/threat-protection/microsoft-defender-atp/onboarding.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/onboarding.md
@ -1,5 +1,5 @@
 ---
-title: Configure capabilities
+title: Onboard to the Micrsoft Defender ATP service
 description: 
 keywords: 
 search.product: eADQiWindows 10XVcnh
@ -16,7 +16,7 @@ ms.collection: M365-security-compliance
 ms.topic: article
 ---

-# Configure capabilities
+# Onboard to the Micrsoft Defender ATP service


 Deploying Microsoft Defender ATP is a three-phase process:
--- a/windows/security/threat-protection/microsoft-defender-atp/prepare-deployment.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/prepare-deployment.md
@ -32,17 +32,17 @@ Deploying Microsoft Defender ATP is a three-phase process:
  <tr style="text-align:center;">
    <td align="center" style="width:25%; border:0;" bgcolor="#d5f5e3">
      <a href= "prepare-deployment"> 
-        <img src="images/plan.png" alt="Plan to deploy Microsoft Defender ATP" title="Plan" />
-      <br/>Plan </a><br>
+        <img src="images/prepare.png" alt="Plan to deploy Microsoft Defender ATP" title="Plan" />
+      <br/>Prepare </a><br>
    </td>
     <td align="center"  >
      <a href="production-deployment">
-        <img src="images/oboard.png" alt="Onboard to the Microsoft Defender ATP service" title="Setup the Microsoft Defender ATP service" />
+        <img src="images/setup.png" alt="Onboard to the Microsoft Defender ATP service" title="Setup the Microsoft Defender ATP service" />
      <br/> Setup </a><br>
        </td>
    <td align="center">
-      <a href="configure">
-        <img src="images/configure.png" alt="Configure capabilities" title="Configure capabilities" />
+      <a href="onboarding">
+        <img src="images/onboard.png" alt="Configure capabilities" title="Configure capabilities" />
      <br/>Onboard</a><br>
 </td>
  </tr>
@ -59,11 +59,7 @@ Deploying Microsoft Defender ATP is a three-phase process:
  </tr>
 </table>

-You are currently in the planning phase.
-
-
-
-
+You are currently in the prepare phase.



@ -86,33 +82,6 @@ to the table below as appropriate for your organization.
 | Enter name and email | **Workplace Architect** *A representative from the IT team in charge of defining how this change is aligned with the core workplace architecture in the organization.*                             | R      |
 | Enter name and email | **Security Analyst** *A representative from the CDOC team who can provide input on the detection capabilities, user experience and overall usefulness of this change from a security operations perspective.* | I      |

-## Project Management
-
-### In Scope
-
-The following is in scope for this project:
-
-   Enabling Microsoft Defender ATP endpoint protection platform (EPP)
-    capabilities
-
-    -   Next Generation Protection
-
-    -   Attack Surface Reduction
-
-   Enabling Microsoft Defender ATP endpoint detection and response (EDR)
-    capabilities including automatic investigation and remediation
-
-   Enabling Microsoft Defender ATP threat and vulnerability management (TVM)
-   Use of System Center Configuration Manager to onboard endpoints into the service.
-
-### Out of scope
-
-The following are out of scope of this project:
-
-   Configuration of third-party solutions that might integrate with Microsoft
-    Defender ATP.
-
-   Penetration testing in production environment.

 ## Environment 

--- a/windows/security/threat-protection/microsoft-defender-atp/production-deployment.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/production-deployment.md
@ -1,5 +1,5 @@
 ---
-title: Microsoft Defender ATP production deployment
+title: Setup Microsoft Defender ATP deployment
 description: 
 keywords:
 search.product: eADQiWindows 10XVcnh
@ -17,7 +17,7 @@ ms.collection: M365-security-compliance
 ms.topic: article 
 ---

-# Microsoft Defender ATP production deployment
+# Setup Microsoft Defender ATP deployment

 **Applies to:**
 - [Microsoft Defender Advanced Threat Protection (Microsoft Defender ATP)](https://go.microsoft.com/fwlink/p/?linkid=2069559)
@ -39,7 +39,7 @@ Deploying Microsoft Defender ATP is a three-phase process:
      <br/>Setup </a><br>
    </td>
    <td align="center">
-      <a href="configure">
+      <a href="onboarding">
        <img src="images/onboard.png" alt="Onboard" title="Onboard" />
      <br/>Onboard </a><br>
 </td>
@ -48,22 +48,43 @@ Deploying Microsoft Defender ATP is a three-phase process:
  </tr>
 </table>

-You are currently in the onboard phase.
+You are currently in the onboarding phase.

-
-
-
-
-Proper planning is the foundation of a successful deployment. In this deployment scenario, you'll be guided through the steps on:
+In this deployment scenario, you'll be guided through the steps on:
+- Licensing validation
 - Tenant configuration
 - Network configuration
- Onboarding using System Center Configuration Manager
- Endpoint detection and response
- Next generation protection
- Attack surface reduction
+

 >[!NOTE]
->For the purpose of guiding you through a typical deployment, this scenario will only cover the use of System Center Configuration Manager. Microsoft Defnder ATP supports the use of other onboarding tools but will not cover those scenarios in the deployment guide. For more information, see [Onboard machines to Microsoft Defender ATP](onboard-configure.md).
+>For the purpose of guiding you through a typical deployment, this scenario will only cover the use of Microsoft Endpoint Configuration Manager. Microsoft Defnder ATP supports the use of other onboarding tools but will not cover those scenarios in the deployment guide. For more information, see [Onboard machines to Microsoft Defender ATP](onboard-configure.md).
+
+## Check license state
+
+Checking for the license state and whether it got properly provisioned, can be done through the admin center or through the **Microsoft Azure portal**.
+
+1. To view your licenses go to the **Microsoft Azure portal** and navigate to the [Microsoft Azure portal license section](https://portal.azure.com/#blade/Microsoft_AAD_IAM/LicensesMenuBlade/Products).
+
+   ![Image of Azure Licensing page](images/atp-licensing-azure-portal.png)
+
+1. Alternately, in the admin center, navigate to **Billing** > **Subscriptions**.
+
+   - On the screen you will see all the provisioned licenses and their current **Status**.
+
+   ![Image of billing licenses](images/atp-billing-subscriptions.png)
+
+
+## Cloud Service Provider validation
+
+To gain access into which licenses are provisioned to your company, and to check the state of the licenses, go to the admin center.
+
+1. From the **Partner portal**, click on the **Administer services > Office 365**.
+
+2. Clicking on the **Partner portal** link will leverage the **Admin on behalf** option and will give you access to the customer admin center.
+
+   ![Image of O365 admin portal](images/atp-O365-admin-portal-customer.png)
+
+

 ## Tenant Configuration