You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Copy file name to clipboardExpand all lines: Instructions/Labs/LAB_AK_04_Lab1_Ex01_Deploy_Defender_Endpoint.md
+13-17Lines changed: 13 additions & 17 deletions
Display the source diff
Display the rich diff
Original file line number
Diff line number
Diff line change
@@ -23,19 +23,19 @@ You start by initializing the Defender for Endpoint environment. Next, you onboa
23
23
24
24
>**Important:** The lab Virtual Machines are used through different modules. SAVE your virtual machines. If you exit the lab without saving, you will be required to re-run some configurations again.
25
25
26
-
>**Note:** Make sure you have completed successfully Task 3 of the first module.
26
+
>**Note:** Make sure you have successfully completed Task 3 of the first module.
27
27
28
28
### Estimated time to complete this lab: 30 minutes
29
29
30
30
### Task 1: Initialize Microsoft Defender for Endpoint
31
31
32
32
In this task, you'll perform the initialization of the Microsoft Defender for Endpoint.
33
33
34
-
1. Sign-in to **WIN1** virtual machine as Admin with the password: **Pa55w.rd**.
34
+
1. Signin to **WIN1** virtual machine as Admin using the provided credentials.
35
35
36
-
1. If you aren't already at the Microsoft Defender XDR portal, start the Microsoft Edge browser.
36
+
1. If you aren't already at the **Microsoft Defender XDR portal**, start the **Microsoft Edge** browser.
37
37
38
-
1. In the Microsoft Edge browser, go to the Defender XDR portal at (<https://security.microsoft.com>).
38
+
1. In the Microsoft Edge browser, navigate to **Microsoft Defender XDR**at `https://security.microsoft.com`.
39
39
40
40
1. In the **Sign in** dialog box, copy, and paste in the tenant Email account for the admin username provided by your lab hosting provider and then select **Next**.
41
41
@@ -65,22 +65,18 @@ In this task, you'll onboard a device to Microsoft Defender for Endpoint using a
65
65
66
66
>**Note:** You can also perform device onboarding from the **Assets** section of the left menu bar. Expand Assets and select Devices. On the Device Inventory page, with Computers & Mobile selected, scroll down to **Onboard devices.** This takes you to the **Settings > Endpoints** page.
67
67
68
-
1.Leave the default operating system selection for **Windows 10 and 11**.
68
+
1.In the "1. Onboard a device" area make sure "Local Script (for up to 10 devices)" is displayed in the Deployment method drop-down and select the **Download onboarding package** button.
69
69
70
-
1. In the *1. Onboard a device* area, leave the default *Connectivity* set to *Streamlined*, and the *Deployment method* set to *Local Script (for up to 10 devices)*.
71
-
72
-
1. Select the **Download onboarding package** button.
73
-
74
-
1. Under the *Downloads* pop-up, highlight the *GatewayWindowsDefenderATPOnboardingPackage.zip* file with your mouse and select the folder icon **Show in folder**. **Hint:** In case you don't see it, the file should be in the c:\users\admin\downloads directory.
70
+
1. Under the *Downloads* pop-up, highlight the "WindowsDefenderATPOnboardingPackage.zip" file with your mouse and select the folder icon **Show in folder**. **Hint:** In case you don't see it, the file should be in the c:\users\admin\downloads directory.
75
71
76
72
>**Tip:**
77
-
> If your browser blocks the download, take action in the browser to allow it. In the Microsoft Edge Browser, you may see the message, *GatewayWindowsDefenderATPOnboardingPackage.zip isn't commonly downloaded. Make sure you trust...*, select the ellipsis button (...) if needed and then select **Keep**. In Microsoft Edge a second pop-up appears with the message,"*Make sure you trust GatewayWindowsDefenderATPOnboardingPackage.zip before you open it*, select **Show more** to expand the selections and select **Keep anyway**.
73
+
> If your browser blocks the download, take action in the browser to allow it. In the Microsoft Edge Browser, you may see the message, "*WindowsDefenderATPOnboardingPackage.zip isn't commonly downloaded. Make sure you trust...*, select the ellipsis button (...) if needed and then select **Keep**. In Microsoft Edge a second pop-up appears with the message,"*Make sure you trust WindowsDefenderATPOnboardingPackage.zip before you open it*", select **Show more** to expand the selections and select **Keep anyway**.
78
74
79
75
1. Right-click the downloaded zip file and select **Extract All...**, make sure that *Show extracted files when complete* is checked and select **Extract**.
80
76
81
-
1. Right-click on the extracted file *WindowsDefenderATPLocalOnboardingScript.cmd* and select **Properties**. Select the **Unblock** checkbox in the bottom right of the Properties windows and select **OK**.
77
+
1. Right-click on the extracted file "WindowsDefenderATPLocalOnboardingScript.cmd" and select **Properties**. Select the **Unblock** checkbox in the bottom right of the Properties windows and select **OK**.
82
78
83
-
1. Right-click on the extracted file *WindowsDefenderATPLocalOnboardingScript.cmd* again and choose **Run as Administrator**. **Hint:** If you encounter the Windows SmartScreen window, select on **More info**, and choose **Run anyway**.
79
+
1. Right-click on the extracted file "WindowsDefenderATPLocalOnboardingScript.cmd" again and choose **Run as Administrator**. **Hint:** If you encounter the Windows SmartScreen window, select on **More info**, and choose **Run anyway**.
84
80
85
81
1. When the "User Account Control" window is shown, select **Yes** to allow the script to run and answer **Y** to the question presented by the script and press **Enter**. When complete you should see a message in the command screen that says *Successfully onboarded machine to Microsoft Defender for Endpoint*.
86
82
@@ -92,13 +88,13 @@ In this task, you'll configure roles for use with device groups.
92
88
93
89
1. In the Microsoft Defender XDR portal navigation menu, expand the **System** section and select **Settings**, then select **Microsoft Defender XDR**.
94
90
95
-
1. Select **Permissions and Roles** under the *General* section.
91
+
1. Select **Permissions and Roles** under the *Account* section.
96
92
97
93
1. Scroll down the page and select the **Go to Permissions and roles** link.
98
94
99
-
1. On the *Permissions and roles* page, select **+ Create custom role**.
95
+
1. On the **Permissions and roles** page, select **+ Create custom role**.
100
96
101
-
1. On the *Basics* page In the Add role dialog, enter the following:
97
+
1. On the **Basics** page In the Add role dialog, enter the following:
102
98
103
99
|Basics setting|Value|
104
100
|---|---|
@@ -118,7 +114,7 @@ In this task, you'll configure roles for use with device groups.
118
114
119
115
1. On the **Assign users and data sources** page, select the **Create assignment** button.
120
116
121
-
1. In the *Add assignment* dialog, enter the following:
117
+
1. In the **Add assignment** dialog, enter the following:
0 commit comments