Yesterday Microsoft released Microsoft Defender ATP for Mac in public preview and are now available for download and installation though the Microsoft Defender Security Center.
In the onboarding section in Microsoft Defender Security Center, if you have preview features selected, you will see how to onboard macOS machines.
You will have the option to download a standalone package or package for Mobile Device Management / Microsoft Intune.
Microsoft Defender ATP. If you need to download the software, log in to the Microsoft software campus EES Agreement with your IdentiKey and password and select the Microsoft Defender ATP software link. After successfully downloading, locate and open the Microsoft Defender package file. Step 2 Click Continue when the installer guide window opens. Microsoft Defender ATP. The new Microsoft Defender ATP for Mac system extension-based implementation is currently only applicable to devices running macOS version 10.15.4 or later and in InsiderFast MAU ring. However, deploying configuration proactively across the entire macOS fleet ensures that all Mac devices are prepared for macOS 11 Big Sur on its release day.
Update: Microsoft Defender ATP for Mac is generally available as of June 28, 2019. Microsoft Defender ATP for Mac, which brings our unified endpoint security solution to Mac devices, is now in public preview. We announced and opened a limited preview for Microsoft Defender ATP for Mac in March.
System Requirements
Before you try to install Microsoft Defender ATP on macOS you need to make sure you meet the following system requirements [1]:
No other third-party endpoint protection software installed
Manual deployment
If you want to manually deploy Microsoft Defender ATP to your macOS devices, Microsoft has created the following guide: https://docs.microsoft.com/en-us/windows/security/threat-protection/windows-defender-antivirus/microsoft-defender-atp-mac-install-manually
Microsoft Intune
If you use Microsoft Intune as a Mobile Device Management solution for your macOS devices, you could configure it to automatically onboard and deploy Microsoft Defender ATP. A guide from Microsoft on how this could be done is found here: https://docs.microsoft.com/en-us/windows/security/threat-protection/windows-defender-antivirus/microsoft-defender-atp-mac-install-with-intune
JAMF
If you use JAMF as a Mobile Device Management solution for your macOS devices, you could configure it to automatically onboard and deploy Microsoft Defender ATP. A guide from Microsoft on how this could be done is found here: https://docs.microsoft.com/en-us/windows/security/threat-protection/windows-defender-antivirus/microsoft-defender-atp-mac-install-with-jamf
Other MDM
If you are not using Microsoft Intune or JAMF but a other third party Mobile Device Management solution for your macOS devices, Microsoft has created a guide for this process on how you could use it to automatically onboard and deploy Microsoft Defender ATP for Mac, which could be found here: https://docs.microsoft.com/en-us/windows/security/threat-protection/windows-defender-antivirus/microsoft-defender-atp-mac-install-with-other-mdm
Keep in mind, Microsoft Defender ATP for Mac is in Public Preview, so you want to make sure you verify and test this before rolling out in full scale production!
Defender Atp For Mac
Disclaimer: All information on this blog is offered 'as is' with no warranty. It is strongly recommended that you verify all information and validate all scripts in isolated test environments before using them in production environments.
Apple users may be aware of that the company is shifting away from kernel extensions, starting with macOS 11 Big Sur. Due to this change, Microsoft is updating its Defender ATP solution to follow the latest Mac requirements.
Microsoft Defender is the default antivirus app shipped with Windows 10. Earlier versions of Windows like Windows 8.1, Windows 8, Windows 7 and Vista also had it but it was less efficient previously as it only scanned spyware and adware. In Windows 8 and Windows 10, Defender is based on the Microsoft Security Essentials app which offers better protection by adding full blown protection against all kinds of malware.
Windows Defender Atp Mac
Defender Advanced Threat Protection (ATP) is a service which is integrated across the entire Windows security stack to protect against malicious software. It is able to detect and analyze threats and allow administrators to take prompt action with centralized management.
New system extension on Mac
The system extensions-based version of Microsoft Defender ATP for Mac will be delivered to all macOS devices via the existing Microsoft AutoUpdate (MAU) channel.
Prior to the general availability of macOS 11 Big Sur, the new system extensions-based code path can be activated on devices running macOS Catalina version 10.15.4 or later and registered for the InsiderFast MAU update channel.
Once macOS 11 Big Sur is generally available, the new system extensions-based implementation will be activated on all devices running macOS 11.
Microsoft noted the following.
The new Microsoft Defender ATP for Mac system extension-based implementation is currently only applicable to devices running macOS version 10.15.4 or later and in InsiderFast MAU ring. However, deploying configuration proactively across the entire macOS fleet ensures that all Mac devices are prepared for macOS 11 Big Sur on its release day. It also ensures that Microsoft Defender ATP for Mac continues protecting all macOS devices immediately post-upgrade to Big Sur. The new remote configuration is supplemental to any prior Microsoft Defender ATP for Mac configuration and will have no adverse effect on devices that still run the kernel extension-based version.
Microsoft Defender For Mac Os
To experience the new system extensions-based implementation during public preview, you’ll need to have preview features turned on in the Microsoft Defender Security Center. If you have not yet opted into previews, Microsoft encourages you to turn on preview features in the Microsoft Defender Security Center.