Microsoft Defender ATP coming to Linux

Last week, we reported that Microsoft plans to add Linux support for Chromium-based Edge. This week, Microsoft announced that it will be bringing another of its services to Linux: Microsoft Defender Advanced Threat Protection, which the company describes as follows:

Microsoft Defender Advanced Threat Protection is a platform designed to help enterprise networks prevent, detect, investigate, and respond to advanced threats.

Windows Defender ATP will be available for RHEL 7+, CentOS Linux 7+, Ubuntu 16 LTS, or higher LTS, SLES 12+, Debian 9+, and Oracle EL 7. The service will be deployed and configured with Puppet, Ansible, or an enterprise’s existing Linux configuration management tool. Microsoft’s announcement did not include a date release date, it did state that a public preview will be available “in the next few days.”

The initial release will include preventative capabilities for Linux servers, as well as the Microsoft Defender Security Center. The preventative capabilities entail a full command line experience for configuration and management of the agent, initiation of scans, and management of threats. The Security Center will present the following basic device and alert information:

Antivirus alert information:

  • Severity
  • Scan type
  • Device information (see below for details)
  • File information (name, path, size, and hash)
  • Threat information (name, type, and state)

Device information:

  • Machine identifier
  • Tenant identifier
  • App version
  • Hostname
  • OS type
  • OS version
  • Computer model
  • Processor architecture
  • Whether the device is a virtual machine
0 0 votes
Article Rating
Nathan Wasson

Inquiring mind, tech journalist, car enthusiast, gamer.

Notify of

Oldest Most Voted
Inline Feedbacks
View all comments
2 years ago

I despise Edge. All versions. Nothing works right. And I’m the only guy on the East Coast who likes Windows 10!

2 years ago
Reply to  chuckula

Smile, Defend, Extinguish?

2 years ago

Its sure getting cold in here…..

2 years ago

No no no!

The Microsoft Defender is SSK not ATP.

I don’t know what he’s doing with Linux though.

Would love your thoughts, please comment.x

Pin It on Pinterest

Share This

Share this post with your friends!