This guide will show an administrator how to view devices that have successfully completed the MDE enrollment process.
Role Requirements
Procedure Scope: Administrators
Required Group Membership: Admin.Security
Handbook Reference
Package: TBD
Domain: TBD
Modifies: TBD
Defender for Endpoint Reporting
- Navigate to the Device Inventory – Microsoft Defender portal, we will be focusing on the All devices tab which will display information related to devices that have onboarded to the Defender for Endpoint service as they begin to report sensor data, or devices that are discovered in your network through the device discovery process. You will see information such as the device name, the IP associated with the machine, the domain the machine has joined from (AAD, workgroup, etc.), the risk level associated with the device (risk assessment is derived from a combination of factors such as outdated software or OS components), the exposure level associated with the device (the pending security recommendation attribute to the calculated exposure level), OS information related to the machine, the MDE onboarding status, the sensor health state for the device, etc. You can use the sort and filter functionality on each device inventory tab to get a more focused view if desired.
Need Assistance?
Reach out to your Customer Success Manager to discuss how a Sittadel cybersecurity analyst can assist in managing these tasks for you. New to our services? Inquire about arranging a consultation to explore optimizing your Azure environment for painless management.