Get started with Microsoft 365 Defender
HTML-код
- Опубликовано: 27 июл 2024
- This time it's the turn of Windows 365 Defender. The new and updated security portal in Microsoft 365. I take you through everything from basic protection policies to some advanced features. All designed to ensure that you and your organisation are more secure.
Timecodes
00:00 - Start
01:56 - Demo Begins
02:41 - Microsoft 365 Defender Threat Policies
03:58 - Anti Phishing Policies
10:50 - Anti-Spam policies
14:53 - Anti Malware Policies
15:58 - Safe Attachments
20:13 - Safe Links
24:52 - Microsoft 365 Defender Secure Score
25:45 - Incidents
26:39 - Alerts
32:30 - Reports
36:39 - Session Review
Please visit my website at www.Andymalone.org Наука
Thanks for making this video. I’m getting into Cyber Security and taking my first baby steps and your video help tons!
You’re most welcome 😍😊
Thank you Andy Fantastic video!
You’re welcome 👍
Nice video when having a day off. Thanks Andy!
You’re very welcome, and thanks again
Great video, Andrew! I will definitely watch your other videos.
Andrew! Only my mother called me Andrew. But thanks for your kind comments and all the best.👍😀
Fantastic video! Thank you!
You’re very welcome 😊
Always very funny when an MS expert use a Mac. Btw thank you for the great content!
It always makes me smile when I get comments like this. Why are you so surprised! The Microsoft cloud can connect many different device types including Apple, android, Windows and so on. I’m an MVP in the Microsoft cloud and I love Apple!😀
@@AndyMaloneMVP You are right, correct answer :)
Thank you and great to have you on board😀
very well done, thanks
Many thanks
Yessir I respect it
Hi Andy, thanks for the video, super helpful. Question: when creating policies is it possible to only apply policies to a specific security group or do they have to be deployed to the entire AD for the given tenant?
You can also do security groups 👍
Hi Andy, thank you for the video is very supportive and instructive. Quick question, my Microsoft 365 Defender area is different than the one you have shared on your video. Is that to do with licensing? If so, what sort of licensing are you currently using in order to get all those features/options on your left admin pane?
Hi Andre Oh gosh there are now so many versions. Even I get confused by the licensing. As I recorded this a little while back, it's probably been rebranded 10 times over :-D
i love your sessions
Many thanks and much appreciated 👍😊
Do you have video showing tips how can we secure windows server remotely?
@@jawadhalloom No not yet. Good idea though. I’ll give you a tip. Close RDP 3389 inbound. It’s the number 1 hacker choice👍
@@AndyMaloneMVP can you provide me the link please
@@jawadhalloom no video yet sorry. I’m sure if you Google it or visit docs.Microsoft.com you’ll discover the answer 😏
Hey Andy. I'm a new subscriber to your channel. Thanks for the great content. In this video you reference an upcoming video on Azure Sentinel. I have not been able to find that on your channel. Have you created that yet?
Hi John, no I’ll be honest I got kind of sidetracked. It’s been crazy busy here but, I will get around to it eventually👍😀 Thanks so much for subscribing, it’s really appreciated.
Nice videos
Thanks 😊
Hey Andy, that is a very good session, I would like to know about, how to manage the risk users & how to work on Hunting tools , thanks again keep it up
You can manage risky users by deploying Identity protection and yes I plan to follow this session up.
I would love to see more about Identity and App, which are part of the defender suite. Nice and compact video. I‘m also interested to see more about licensing
Andy. Are preset security policies something that has been added since you did this video?
This is an old video. Look on the playlists. Yes is the answer to you Q
I just started my cyber security studies. My only question. Is the program run on a server or equally across workstations? If across workstations then only the admin would be able to get to that screen. I haven't yet had the chance use defender yet.
Defender is a cloud based service that monitors and controls endpoints. Check out Microsift docs and search for defender. There’s loads of stuff😊
Hi Andy,
all goos?
Love you videos and big follow.
Just have 1 question: suppose I have 100 users, will I need 100 licence of Windows Defender?
Or just need 1 license for the Admin to verify some vulnerability on machines for example? I have microsoft business premium license for all users.
Hi Ricardo. Depending on the product. But generally it’s per user licensing. 😊
Hi Andy, thank you for the video, you have a new subscriber!
How does Microsoft Defender for Endpoint compare to a 3rd party solution such as Crowdstrike or Sophos? In an example of a business of 50 to 100 users and devices, windows, android, Mac OS and IOS.
We like the idea of a cohesive Microsoft platform across our entire organisation.
Thank you in advance!
Thanks for the nice comment and great to have you onboard. In my opinion it’s as good as the platforms you mention. My only argument with Microsoft is that the defender brand, in my opinion is being used to often with many of its security products. As they are being produced by different product groups, they should interact with each other perfectly. To be fair in most cases they do, however integration could be better in my opinion. Back to your question though, I don’t see the point of paying for additional licenses for sofos and so on, when you get this product included in the subscription. I hope that helps, and clears things up for you. Great to have you on board.
Hello Andy, great video thank for that. Could you please make a video on phishing champion. How to create and how to run that. It's my sincere request you.
Already answered in your last Q
how does this also protect physical computers? been watching these videos no one is talking about all that from my server and everything? i mean this in an XDR solution right?
Windows defender is already a component in windows 10/11 So simply install the agent and the rest is easy😊
Thank you. I own a small business with less than 15 email accounts. Do I need MS Defender on my account alone to protect other accounts, or do I need Defender on each account -- for the fee on each account?
Yes it’s included with business premium
Hi Andy, May I know if there are any benefits for a regular user that has no admin roles to have Defender for Office 365 Plan 2? or the Plan1 is already enough for them?
This can help make your decision for you 👍 learn.microsoft.com/en-us/microsoft-365/security/office-365-security/defender-for-office-365?view=o365-worldwide#:~:text=Microsoft%20Defender%20for%20Office%20365%20comes%20in%20two%20different%20Plan,your%20Plan%20as%20you%20learn.
@@AndyMaloneMVP Thank you for the article! I already checked it out and can't still find the benefits of the regular user having Plan 2. I am not sure if the Admin having Plan 2 and regular user having Plan 1 is the right setup or everyone should have Plan 2 to get the benefits of it.
@@Tiamtiamzon licenses are always complex and I wish you the best of luck with them. Unfortunately, I am a techie, not a licensing specialist. Good luck.
@@AndyMaloneMVP Thank you for your assistance!
I can't find where or how can I manage the "Controlled folders access". Is it possible? For example, allow access to a protected folder from an app.
As I recorded this session quite some time ago I unfortunately do not have access to my demo environment for this however I have found you a very useful article that will explain what you need to do. I hope this helps and thanks for reaching out. support.microsoft.com/en-us/windows/allow-an-app-to-access-controlled-folders-b5b6627a-b008-2ca2-7931-7e51e912b034
@Andy Malone MVP Thank you , of course I know this. Today I had a case with an Azure AD joined PC where this option was enabled by a corporate policy, and our installed applicaton was blocked access the public document folder. On a normal device you can allow an application but on this device the button was disabled (greyed out). After I while our application was in the list and started working without problem. So I think the admins allowed this from the cloud. I am looking for cloud based solution for what you linked. Thank you for your help!
@@takacsi you’re very welcome
Microsoft 365 Defender need to license or not? Because my Org MS 365 Defender have not more information. And if we need buy license, we can buy some user email and not buy license for all user on org?
Defender for endpoint is based on user based licensing
Can you please make a video on how to connect vscode powershell to exchange online? Thanks
Sorry my friend that’s not in my skill set sorry.
i tried find the last video that related for this one but i didnt find ..any help?
Which one? I have many. Look in the playlists. Security. If there is one, it will be there 😀
How to scan file for virus when it is uploaded in SharePoint online, and user can not access this file until it is scanned and marked as safe ?
Microsoft defender For Microsoft 365 and also Microsoft defender for endpoint work together in order to protect your data. However to scan attachments you need to have an appropriate license. For more details on the specifics, I recommend you take a look at docs.microsoft.com. Many thanks for reaching out and all the best
How to know scan results?
Anything nasty would show up in logs.
HI my name is Burnett Davis I have accidentally removed the Microsoft defender applications and I need to Reactive back in I put my email there and it was Microsoft defender Antivirus protection Endpoint management
Please contact support
MS requires additional licensing for Defender 365 / ATP. Pure Greed.
Yeah. Tend to agree