Welcome, Guest to: Public MPWiki ▼
Welcome to Management Pack Wiki! Your documentation pro for SCOM Management Packs
0 comment(s) Post a comment
  • Management Pack:  Windows Defender
  • MP Version:  7.1.10128.1
  • Released:  11/23/2016
  • Publisher:  Microsoft

Overview

The Management Pack for Windows Defender enables you to monitor the health of your devices running Windows Defender. The management pack uses public Windows Defender PowerShell cmdlets to gather information about various Windows Defender events. These events range from malware detections, to the health state of Windows Defender on the devices. These events can be set-up as alerts, so the admin can take action once they recieve alerts from their end-user devices. There are three different monitoring groups that Windows Defender places devices under based on the state of Windows Defender on them. Protected Endpoints - Inventory will show up under this group if the endpoint has Windows Defender up and running and protected Unprotected Endpoints - Inventory will show up under this group if the endpoint does not have Windows Defender up and running Protected Candidate - Inventory will show up under this group if the endpoint has Windows Defender up and running
Login
An endpoint without Windows Defender installed An endpoint with Windows Defender installed and monitored by management pack Defines the basic properties of computers running Windows operating systems An endpoint with Windows Defender installed

Download diagram as a Visio file

See Also for Windows Defender Management Pack


Downloads for Windows Defender Management Pack

Post a comment