Microsoft has introduced an enhanced Defender deployment tool for Windows, streamlining device onboarding with a single executable file. This update aims to simplify the management of endpoint security across various Windows devices by embedding onboarding packages into a downloadable .exe file.
Streamlined Onboarding Process
The new tool eliminates the need for separate onboarding files for modern and legacy systems, offering a more predictable and transparent onboarding experience. Administrators can now use a single executable that includes all necessary onboarding information, supporting silent and non-interactive deployments via Group Policy or Configuration Manager.
Enhanced Administrative Controls
To mitigate risks associated with shared onboarding packages, the tool introduces administrative controls and custom package identifiers for tracking and management. Packages can be set to expire within a year, and name identifiers and keys provide additional oversight. The Defender portal now includes new entry points and guidance for selecting onboarding or offboarding methods.
Improved Visibility and Tracking
Deployment tool events are logged in the device timeline and advanced hunting tabs, offering insights into onboarding progress and errors. Administrators can access the new deployment packages page to view and manage onboarding packages, enhancing visibility and traceability. The updated tool is available through Settings > Endpoints > Onboarding > Windows or directly from the device inventory page, and it is also available for Linux.
