3.4 KiB
title, ms.reviewer, description, keywords, search.product, search.appverid, ms.prod, ms.mktglfcycl, ms.sitesec, ms.pagetype, ms.author, author, ms.localizationpriority, manager, audience, ms.collection, ms.topic
| title | ms.reviewer | description | keywords | search.product | search.appverid | ms.prod | ms.mktglfcycl | ms.sitesec | ms.pagetype | ms.author | author | ms.localizationpriority | manager | audience | ms.collection | ms.topic |
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
| Microsoft Defender ATP for Linux static proxy discovery | Describes how to configure Microsoft Defender ATP for static proxy discovery. | microsoft, defender, atp, linux, installation, proxy | eADQiWindows 10XVcnh | met150 | w10 | deploy | library | security | dansimp | dansimp | medium | dansimp | ITPro | M365-security-compliance | conceptual |
Configure Microsoft Defender ATP for Linux for static proxy discovery
Applies to:
Microsoft Defender ATP can discover a proxy server using the HTTPS_PROXY environment variable. This setting must be configured both at installation time and after the product has been installed.
Installation time configuration
During installation, the HTTPS_PROXY environment variable must be passed to the package manager. The package manager can read this variable in any of the following ways:
-
The
HTTPS_PROXYvariable is defined in/etc/environmentwith the following line:HTTPS_PROXY="http://proxy.server:port/" -
The
HTTPS_PROXYvariable is defined in the package manager global configuration. For example, in Ubuntu 18.04, you can add the following line to/etc/apt/apt.conf.d/proxy.conf:Acquire::https::Proxy "http://proxy.server:port/";Caution
Note that above two methods could define the proxy to use for other applications on your system. Use this method with caution, or only if this is meant to be a generally global configuration.
-
The
HTTPS_PROXYvariable is prepended to the installation or uninstallation commands. For example, with the APT package manager, prepend the variable as follows when installing Microsoft Defender ATP:$ HTTPS_PROXY="http://proxy.server:port/" apt install mdatpNote
Do not add sudo between the environment variable definition and apt, otherwise the variable will not be propagated.
The HTTPS_PROXY environment variable may similarly be defined during uninstallation.
Note that installation and uninstallation will not necessarily fail if a proxy is required but not configured. However, telemetry will not be submitted, and the operation could take significantly longer due to network timeouts.
Post installation configuration
After installation, the HTTPS_PROXY environment variable must be defined in the Microsoft Defender ATP service file. To do this, open /lib/systemd/system/mdatp.service in a text editor while running as the root user. You can then propagate the variable to the service in one of two ways:
-
Uncomment the line
#Environment="HTTPS_PROXY=http://address:port"and specify your static proxy address. -
Add a line
EnvironmentFile=/path/to/env/file. This path can point to/etc/environmentor a custom file, either of which needs to add the following line:HTTPS_PROXY="http://proxy.server:port/"
After modifying the mdatp.service file, save and close it. Restart the service so the changes can be applied. In Ubuntu, this involves two commands:
$ systemctl daemon-reload; systemctl restart mdatp