deepblue/windows-itpro-docs
1
0
Fork 0
mirror of https://github.com/MicrosoftDocs/windows-itpro-docs.git synced 2025-06-26 07:43:36 +00:00
Code Issues Actions 3 Packages Projects Releases Wiki Activity
Files
91bf40bd3d214b072d6945d76ddab18a1ce080f7
windows-itpro-docs/windows/security/threat-protection/microsoft-defender-atp/response-actions.md
Beth Levin c70761cfff Merge branch 'master' into mdatp
2019-04-23 14:03:16 -07:00

1.7 KiB
Raw Blame History

title, description, keywords, search.product, search.appverid, ms.prod, ms.mktglfcycl, ms.sitesec, ms.pagetype, ms.author, author, ms.localizationpriority, manager, audience, ms.collection, ms.topic
title description keywords search.product search.appverid ms.prod ms.mktglfcycl ms.sitesec ms.pagetype ms.author author ms.localizationpriority manager audience ms.collection ms.topic
Take response actions on files and machines in Microsoft Defender ATP Take response actions on files and machines by stopping and quarantining files, blocking a file, isolating machines, or collecting an investigation package. respond, stop and quarantine, block file, deep analysis, isolate machine, collect investigation package, action center eADQiWindows 10XVcnh met150 w10 deploy library security macapara mjcaparas medium dansimp ITPro M365-security-compliance article

Take response actions in Microsoft Defender ATP

Applies to:

Want to experience Microsoft Defender ATP? Sign up for a free trial.

You can take response actions on machines and files to quickly respond to detected attacks so that you can contain or reduce and prevent further damage caused by malicious attackers in your organization.

Note

The machine related response actions are only available for machines on Windows 10 (version 1703 or higher), Windows Server, version 1803 and Windows Server 2019.

In this section

Topic Description
Take response actions on a machine Isolate machines or collect an investigation package.
Take response actions on a file Stop and quarantine files or block a file from your network.