Updates from: 08/31/2021 04:44:51
Category Microsoft Docs article Related commit history on GitHub Change details
compliance App Governance Anomaly Detection Alerts https://github.com/MicrosoftDocs/microsoft-365-docs/commits/public/microsoft-365/compliance/app-governance-anomaly-detection-alerts.md
If you still suspect that an app is suspicious, you can research the app display
This section describes alerts indicating that a malicious actor may be attempting to maintain their foothold in your organization.
-### App with Suspicious OAuth scope creates Inbox Rule
+### App with Suspicious OAuth scope made graph calls to read email and created Inbox Rule
**Severity**: Medium
This detection identifies App consented to high privilege scope, creates suspici
1. Review the scopes granted by the app. 1. Review any inbox rule action created by the app. 1. Review any email search activities done by the app.+
+### App made OneDrive / SharePoint search activities and created inbox rule 
+
+**Severity**: Medium
+
+**MITRE ID’s**: T1137, T1213
+
+This detection identifies that an App consented to high privilege scope, created a suspicious inbox rule, and made unusual SharePoint or OneDrive search activities through Graph API. This can indicate an attempted breach of your organization, such as adversaries attempting to search and collect specific data from SharePoint or OneDrive from your organization through Graph API.ΓÇ»
+
+**TP or FP?**
+
+- **TP**: If you’re able to confirm any specific data from SharePoint or OneDrive search and collection done through Graph API by an OAuth app with high privilege scope, and the app is delivered from unknown source. 
+
+ **Recommended Action**:ΓÇ» Disable and remove the App, reset the password, and remove the inbox rule.ΓÇ»
+
+- **FP**: If you’re able to confirm app has performed specific data from SharePoint or OneDrive search and collection through Graph API by an OAuth app and created an inbox rule to a new or personal external email account for legitimate reasons. 
+
+ **Recommended Action**: Dismiss the alertΓÇ»
+
+**Understand the scope of the breach**
+
+1. Review all activities done by the app.ΓÇ»
+1. Review the scopes granted by the app.ΓÇ»
+1. Review any inbox rule action created by the app.ΓÇ»
+1. Review any SharePoint or OneDrive search activities done by the app.
compliance App Governance Manage App Governance https://github.com/MicrosoftDocs/microsoft-365-docs/commits/public/microsoft-365/compliance/app-governance-manage-app-governance.md
Here's a summary of the integration.
![The integration of app governance with Azure AD and Microsoft Cloud App Security.](..\media\manage-app-protection-governance\mapg-integration.png)
-Additionally, app governance sends its alerts as signals to Microsoft Cloud App Security and Microsoft 365 Defender, and app governance receives alerts from Microsoft Cloud App Security, to enable more detailed analysis of app-based security incidents.
+App governance sends its alerts to Microsoft Cloud App Security and Microsoft 365 Defender, and receives alerts from Microsoft Cloud App Security, to enable more detailed analysis of app-based security incidents.
+- App governance alerts show up in Microsoft 365 Defender alerts list as alerts with the Detection source field set to "MAPG"
+- App governance alerts show up in the MCAS alerts list as alerts with the Policy field set to either
+ - Microsoft 365 OAuth App Governance
+ - Microsoft 365 OAuth Phishing Detection
+ - Microsoft 365 OAuth App Reputation
+- MCAS alerts appear in the app governance alerts list as alerts with Source set to MCAS
-<!--
-Integration of alerts with MCAS and M365 Defender
-Azure AD IP detections in progress to surface in M365 Defender
-
-## Integration with Azure AD
-
-**Feedback from Anand:** We should add some details on how MAPG works with M365 Defender (previously MTP). Also, we should highlight the integration with MCAS and AAD.
-
-Key cross-reference resources:
--- [What is application management in Azure Active Directory](https://docs.microsoft.com/azure/active-directory/manage-apps/what-is-application-management)-- [Common application management scenarios for Azure Active Directory (especially scenarios 3-4)](https://docs.microsoft.com/cloud-app-security/monitor-alerts)-- [Azure Active Directory Identity Governance documentation](https://docs.microsoft.com/azure/active-directory/governance/)-- [Managing access to apps using Azure AD](https://docs.microsoft.com/azure/active-directory/manage-apps/what-is-access-management)-
-## Integration with Microsoft Cloud App Security
-
-Key cross-reference resources:
--- [Cloud App Security anomaly detection alerts investigation guide](https://docs.microsoft.com/cloud-app-security/investigate-anomaly-alerts#unusual-addition-of-credentials-to-an-oauth-app)-- [Monitor alerts raised in Cloud App Security](https://docs.microsoft.com/cloud-app-security/monitor-alerts)-- [Control which third-party cloud OAuth apps get permissions](https://docs.microsoft.com/cloud-app-security/manage-app-permissions)->
+> [!NOTE]
+> Alerts status is currently not being synced between App Governance and Microsoft Cloud App Security.
compliance Privacy Management Data Profile https://github.com/MicrosoftDocs/microsoft-365-docs/commits/public/microsoft-365/compliance/privacy-management-data-profile.md
description: "Learn about the overview and data profile in privacy management an
# Find and visualize personal data in privacy management (preview)
-In this article: learn about the features of the **overview** and **data profile** pages and how they can give insights into your data.
-
-## Purpose of the overview and data profile
- Microsoft 365 privacy management provides you with capabilities to find and visualize the personal data in your environment. The solution automates discovery of personal data assets in Exchange, SharePoint, OneDrive, and Teams, and provides dashboards that give key insights into the data. Your privacy administrators can act upon these insights to strengthen your organization's approach to privacy and reduce risk. ### Overview page
compliance Privacy Management Permissions https://github.com/MicrosoftDocs/microsoft-365-docs/commits/public/microsoft-365/compliance/privacy-management-permissions.md
description: "Learn how to set up privacy management permissions and assign user
# Set user permissions and assign roles in privacy management (preview)
-In this article: learn how to set **permissions** and assign users to **role groups** and **roles**.
- To give members of your organization permissions to use privacy management, assign them to the appropriate role groups in the Microsoft 365 compliance center. Note that roles specific to privacy management will not appear in Azure Active Directory. ## Sign in and set permissions
compliance Privacy Management Policies https://github.com/MicrosoftDocs/microsoft-365-docs/commits/public/microsoft-365/compliance/privacy-management-policies.md
description: "Learn how to create and manage policies for handling your organiza
# Create and manage policies in privacy management (preview)
-In this article: learn how to build and customize **policies** for handling personal data, get **alerts** about policy matches, and remediate **issues**.
-
-## Purpose of policies
- Policies allow you to define the types of privacy risks to look out for in your companyΓÇÖs Microsoft 365 data and establish the preferred outcomes for scenarios where matches are found. Your organization can work from the resulting alerts to review any matching data and remediate issues, all from within the privacy management solution. Privacy management provides templates to give you an easy start on policy building and allows you to fine-tune your approach through extensive customization options. The key scenarios covered by privacy managementΓÇÖs templates include the following:
When setting up a custom policy, you will be asked to select which types of data
- U.S. Patriot Act Enhanced - U.S. Personally Identifiable Information (PII) Data Enhanced - U.S. State Breach Notification Laws Enhanced-- **Individual sensitive info types**: By choosing specific sensitive information types yourself, like Social Security numbers or driverΓÇÖs license information, you can customize your own group or groups of data of to look out for. This wizard allows you to select from the complete list of sensitive information types within privacy management. Each information type has its own properties. Use the info button beside any of them for details and notes about recommended settings. If you create more than one group, the wizard lets you apply Boolean operators to relate them and define their order of operations.
+- **Individual sensitive info types**: By choosing specific sensitive information types yourself, like Social Security numbers or driverΓÇÖs license information, you can customize your own group or groups of data to look out for. This wizard allows you to select from the complete list of sensitive information types within privacy management. Each information type has its own properties. Use the info button beside any of them for details and notes about recommended settings. If you create more than one group, the wizard lets you apply Boolean operators to relate them and define their order of operations.
If you use pre-set classification groups, you cannot also select individual types or create your own groups. For the most flexibility, choose individual sensitive info types. To utilize the most common standards, choose from the classification groups.
compliance Privacy Management Settings https://github.com/MicrosoftDocs/microsoft-365-docs/commits/public/microsoft-365/compliance/privacy-management-settings.md
description: "Learn about the global settings options for privacy management."
# Manage privacy management settings (preview)
-In this article: learn about **settings** options for privacy management.
- The global settings options for privacy management can be found under the gear icon in the upper right corner of the main pages. These options allow you to set high-level preferences and customize key properties. This page provides an overview of the main Settings categories. ## Anonymization
compliance Privacy Management Setup https://github.com/MicrosoftDocs/microsoft-365-docs/commits/public/microsoft-365/compliance/privacy-management-setup.md
description: "Learn how to set up privacy management for your organization, set
# Get started with privacy management (preview)
-In this article: learn how to set up **access to privacy management** for your organization, how to **get started** with evaluating your data, and how to handle important **settings**.
+Privacy management is currently available in public preview. Learn how to set up access for your organization and get started with evaluating your data.
## Who can access privacy management
compliance Privacy Management Subject Rights Requests https://github.com/MicrosoftDocs/microsoft-365-docs/commits/public/microsoft-365/compliance/privacy-management-subject-rights-requests.md
search.appverid: - MOE150 - MET150
-description: "The subject rights request solution in Microsoft privacy management helps you find personal data and collaborate on reviewing content and creating reports."
+description: "The subject rights request area in Microsoft privacy management helps you find personal data and collaborate on reviewing content and creating reports."
# Manage subject rights requests in privacy management (preview)
-In this article: learn about how to use the subject rights request solution to **find personal data** in your environment, **collaborate on reviews**, create **reports**, and **automate** key tasks.
-
-## Purpose of subject rights requests
- Privacy management provides powerful subject rights requests capabilities to help you handle requests from people seeking to manage their personal data within your organization. These requests are sometimes also referred to as data subject requests (DSRs), data subject access requests (DSARs), or consumer rights requests. Privacy management empowers personnel responsible for fulfilling subject rights requests to easily identify data subjects and find their personal information among your organizationΓÇÖs data in Exchange, SharePoint, OneDrive, and Teams. Privacy management is uniquely capable in helping you prioritize items to review within the data you collect for these requests. The solution is aware of Microsoft Information Protection sensitivity labels, which indicate content that is potentially confidential and may necessitate special review, and flags items with these labels. For more information about sensitivity labels, see [Learn about sensitivity labels](sensitivity-labels.md). In addition, privacy management can detect and flag items containing the data of multiple people, where you may need to redact content prior to supplying it to the data subject.
enterprise Assign Roles To User Accounts With Microsoft 365 Powershell https://github.com/MicrosoftDocs/microsoft-365-docs/commits/public/microsoft-365/enterprise/assign-roles-to-user-accounts-with-microsoft-365-powershell.md
You can easily assign roles to user accounts by using PowerShell for Microsoft 3
## Use the Azure Active Directory PowerShell for Graph module
-First, use a global administrator account to [connect to your Microsoft 365 tenant](connect-to-microsoft-365-powershell.md#connect-with-the-azure-active-directory-powershell-for-graph-module).
-
+First, use a **Azure AD DC admin**, **Cloud Application Admin**, or **Global admin** account to [connect to your Microsoft 365 tenant](connect-to-microsoft-365-powershell.md#connect-with-the-azure-active-directory-powershell-for-graph-module).
+
+For more information, see [About admin roles](/microsoft-365/admin/add-users/about-admin-roles?).
+ Next, identify the sign-in name of the user account that you want to add to a role (example: fredsm\@contoso.com). This is also known as the user principal name (UPN). Next, determine the name of the role. See [Azure AD built-in roles](/azure/active-directory/roles/permissions-reference).
$roleChanges=Import-Csv $fileName | ForEach { Add-MsolRoleMember -RoleMemberEmai
- [Manage Microsoft 365 user accounts, licenses, and groups with PowerShell](manage-user-accounts-and-licenses-with-microsoft-365-powershell.md) - [Manage Microsoft 365 with PowerShell](manage-microsoft-365-with-microsoft-365-powershell.md)-- [Get started with PowerShell for Microsoft 365](getting-started-with-microsoft-365-powershell.md)
+- [Get started with PowerShell for Microsoft 365](getting-started-with-microsoft-365-powershell.md)
enterprise Azure Integration https://github.com/MicrosoftDocs/microsoft-365-docs/commits/public/microsoft-365/enterprise/azure-integration.md
For more information about Microsoft 365 and Azure AD, see [Microsoft 365 identi
|**Feature**|**Description**| |:--|:--|
-|Integrated apps <br/> |You can grant individual apps access to your Microsoft 365 data, such as mail, calendars, contacts, users, groups, files, and folders. You can also authorize these apps at global admin level and make them available to your entire company by registering the apps in Azure AD. For more information, see [Integrated Apps and Azure AD for Microsoft 365 administrators](integrated-apps-and-azure-ads.md). <br/> Also see [Single sign-on](/azure/active-directory/manage-apps/what-is-single-sign-on). <br/> |
+|Integrated apps <br/> |You can grant individual apps access to your Microsoft 365 data, such as mail, calendars, contacts, users, groups, files, and folders. You can also authorize these apps at **Azure AD DC admin**, or **Global admin** level and make them available to your entire company by registering the apps in Azure AD. For more information, see [Integrated Apps and Azure AD for Microsoft 365 administrators](integrated-apps-and-azure-ads.md).<br/> For more information, see [About admin roles](/microsoft-365/admin/add-users/about-admin-roles?). <br/> Also see [Single sign-on](/azure/active-directory/manage-apps/what-is-single-sign-on). <br/> |
|Power Apps <br/> | Power Apps are focused apps for mobile devices that can connect to your existing data sources like SharePoint lists and other data apps. See [Create a Power App for a list in SharePoint Online](https://support.office.com/article/9338b2d2-67ac-4b81-8e67-97da27e5e9ab) and the [Power Apps page](https://powerapps.microsoft.com/) for details. <br/> | ## See also
enterprise Contoso Infra Needs https://github.com/MicrosoftDocs/microsoft-365-docs/commits/public/microsoft-365/enterprise/contoso-infra-needs.md
The Contoso IT department determined the following mapping of business needs to
| | Improve productivity for remote and mobile workers | Microsoft 365 workloads and cloud-based data | | | Increase creativity and innovation | Windows Ink, Cortana at Work, PowerPoint | | Security | | |
-| | Identity & access management | Dedicated global administrator accounts with Azure AD Multi-Factor Authentication (MFA) and Azure AD Privileged Identity Management (PIM) <BR> MFA for all user accounts <BR> Conditional Access <BR> Windows Hello <BR> Windows Credential Guard |
+| | Identity & access management | Dedicated global administrator accounts with Azure AD Multi-Factor Authentication (MFA) and Azure AD Privileged Identity Management (PIM) <BR> MFA for all user accounts <BR> Conditional Access <BR> Security Reader <BR> Windows Hello <BR> Windows Credential Guard |
| | Threat protection | Advanced Threat Analytics <BR> Windows Defender <BR> Defender for Office 365 <BR> Microsoft Defender for Office 365 <BR> Microsoft 365 threat investigation and response <BR> | | | Information protection | Azure Information Protection <BR> Data Loss Prevention (DLP) <BR> Windows Information Protection (WIP) <BR> Microsoft Cloud App Security <BR> Microsoft Intune | | | Security management | Azure Defender <BR> Windows Defender Security Center |
enterprise Contoso Security Summary https://github.com/MicrosoftDocs/microsoft-365-docs/commits/public/microsoft-365/enterprise/contoso-security-summary.md
To follow security best practices and Microsoft 365 for enterprise deployment re
Rather than assign the global admin role to everyday user accounts, Contoso created three dedicated global administrator accounts with strong passwords. The accounts are protected by Azure AD Multi-Factor Authentication (MFA) and Azure Active Directory (Azure AD) Privileged Identity Management (PIM). *PIM is only available with Microsoft 365 E5.*
- Signing in with a global administrator account is only done for specific administrative tasks. The passwords are only known to designated staff and can only be used within a time period that's configured in Azure AD PIM.
+ Signing in with a **Azure AD DC admin**, or **Global admin** account is only done for specific administrative tasks. The passwords are only known to designated staff and can only be used within a time period that's configured in Azure AD PIM.
Contoso security administrators assigned lesser admin roles to accounts that are appropriate to that IT worker's job function.
To follow security best practices and Microsoft 365 for enterprise deployment re
MFA adds an additional layer of protection to the sign-in process. It requires users to acknowledge a phone call, text message, or app notification on their smart phone after correctly entering their password. With MFA, Azure AD user accounts are protected against unauthorized sign-in, even if an account password is compromised.
- - To protect against compromise of the Microsoft 365 subscription, Contoso requires MFA on all global administrator accounts.
+ - To protect against compromise of the Microsoft 365 subscription, Contoso requires MFA on all **Azure AD DC admin**, or **Global admin** accounts.
- To protect against phishing attacks, in which an attacker compromises the credentials of a trusted person in the organization and sends malicious emails, Contoso enabled MFA on all user accounts, including managers and executives. - Safer device and application access with Conditional Access policies
To follow security best practices and Microsoft 365 for enterprise deployment re
- Central security dashboard for users with Windows Defender Security Center
- Contoso deployed the [Windows Security app](/windows/security/threat-protection/windows-defender-security-center/windows-defender-security-center) to its PCs and devices running Windows 10 Enterprise so that users can see their security posture at a glance and take action.
+ Contoso deployed the [Windows Security app](/windows/security/threat-protection/windows-defender-security-center/windows-defender-security-center) to its PCs and devices running Windows 10 Enterprise so that users can see their security posture at a glance and take action.
enterprise Cross Tenant Mailbox Migration https://github.com/MicrosoftDocs/microsoft-365-docs/commits/public/microsoft-365/enterprise/cross-tenant-mailbox-migration.md
This section does not include the specific steps required to prepare the MailUse
The cross-tenant mailbox move feature requires [Azure Key Vault](/azure/key-vault/basic-concepts) to establish a tenant pair-specific Azure application to securely store and access the certificate/secret used to authenticate and authorize mailbox migration from one tenant to the other, removing any requirements to share certificates/secrets between tenants.
-Before starting, be sure you have the necessary permissions to run the deployment scripts in order to configure Azure Key Vault, Move Mailbox application, EXO Migration Endpoint, and the EXO Organization Relationship. Typically, Global Admin has permission to perform all configuration steps.
+Before starting, be sure you have the necessary permissions to run the deployment scripts in order to configure Azure Key Vault, Move Mailbox application, EXO Migration Endpoint, and the EXO Organization Relationship. Typically, **Azure AD DC admin**, or **Global admin** has permission to perform all configuration steps.
Additionally, mail-enabled security groups in the source tenant are required prior to running setup. These groups are used to scope the list of mailboxes that can move from source (or sometimes referred to as resource) tenant to the target tenant. This allows the source tenant admin to restrict or scope the specific set of mailboxes that need to be moved, preventing unintended users from being migrated. Nested groups are not supported.
Prepare the source tenant:
7. A URL will be displayed in the Remote PowerShell session. Copy the link provided for your tenant consent and paste it into a Web browser.
-8. Sign in with your Global Admin credentials. When the following screen is presented, select **Accept**.
+8. Sign in with your **Azure AD DC admin**, or **Global admin** credentials. When the following screen is presented, select **Accept**.
:::image type="content" source="../media/tenant-to-tenant-mailbox-move/permissions-requested-dialog.png" alt-text="Accept permissions dialog box.":::
The target admin setup is now complete!
4. Download the SetupCrossTenantRelationshipForResourceTenant.ps1 script for the source tenant setup from the GitHub repository here: [https://github.com/microsoft/cross-tenant/releases/tag/Preview](https://github.com/microsoft/cross-tenant/releases/tag/Preview).
-5. Create a Remote PowerShell connection to the source tenant with your Exchange Administrator permissions. Global Admin permissions are not required to configure the source tenant, only the target tenant because of the Azure application creation process.
+5. Create a Remote PowerShell connection to the source tenant with your Exchange Administrator permissions. **Azure AD DC admin**, or **Global admin** permissions are not required to configure the source tenant, only the target tenant because of the Azure application creation process.
6. Change directory to the script location or verify that the script is currently saved to the location currently in your Remote PowerShell session.
enterprise High Availability Federated Authentication Phase 5 Configure Federated Authentic https://github.com/MicrosoftDocs/microsoft-365-docs/commits/public/microsoft-365/enterprise/high-availability-federated-authentication-phase-5-configure-federated-authentic.md
The Azure AD Connect tool configures the AD FS servers, the web application prox
7. On the **User sign-in** page, click **Federation with AD FS**, and then click **Next**.
-8. On the **Connect to Azure AD** page, type the name and password of a global administrator account for your Microsoft 365 subscription, and then click **Next**.
+8. On the **Connect to Azure AD** page, type the name and password of a **Azure AD DC admin**, or **Global admin** account for your Microsoft 365 subscription, and then click **Next**.
9. On the **Connect your directories** page, ensure that your on-premises Active Directory Domain Services (AD DS) forest is selected in **Forest**, type the name and password of a domain administrator account, click **Add Directory**, and then click **Next**.
Your high availability federated authentication infrastructure for Microsoft 365
[Microsoft 365 solution and architecture center](../solutions/index.yml)
-[Federated identity for Microsoft 365](https://support.office.com/article/Understanding-Office-365-identity-and-Azure-Active-Directory-06a189e7-5ec6-4af2-94bf-a22ea225a7a9#bk_federated)
+[Federated identity for Microsoft 365](https://support.office.com/article/Understanding-Office-365-identity-and-Azure-Active-Directory-06a189e7-5ec6-4af2-94bf-a22ea225a7a9#bk_federated)
enterprise Integrated Apps And Azure Ads https://github.com/MicrosoftDocs/microsoft-365-docs/commits/public/microsoft-365/enterprise/integrated-apps-and-azure-ads.md
search.appverid:
- MOE150 - BCS160 ms.assetid: cb2250e3-451e-416f-bf4e-363549652c2a
-description: Learn how to register and administer Office 365 integrated Apps in Azure AD, allowing for app authorizations at the global administrator level.
+description: Learn how to register and administer Office 365 integrated Apps in Azure AD, allowing for app authorizations at the **Azure AD DC admin**, or **Global admin** level.
# Integrated apps and Azure AD for Microsoft 365 administrators There's more to managing integrated apps than just [managing user consent to apps](../admin/misc/user-consent.md). With the advent of the Microsoft 365 REST APIs, users can grant apps access to their Microsoft 365 data, such as mail, calendars, contacts, users, groups, files, and folders. By default, users need to individually grant permissions to each app.
-But this doesn't scale well if you want to authorize an app once at the global administrator level and roll it out to your whole organization through the app launcher. To do this, you must register the app in Azure Active Directory (Azure AD). There are some steps you need to take before you can register an app in Azure AD and some background information you should know that can help you manage apps in your Microsoft 365 organization.
+But this doesn't scale well if you want to authorize an app once at the **Azure AD DC admin**, or **Global admin** level and roll it out to your whole organization through the app launcher. To do this, you must register the app in Azure Active Directory (Azure AD). There are some steps you need to take before you can register an app in Azure AD and some background information you should know that can help you manage apps in your Microsoft 365 organization.
## Azure AD resources for Microsoft 365 admins
Managing Microsoft 365 apps requires you to have knowledge of apps in Azure AD.
|[Azure AD integration tutorials](/azure/active-directory/saas-apps/tutorial-list) <br/> |The objective of these tutorials is to show you how to configure Azure AD SSO for third-party SaaS applications. <br/> | |[Authentication scenarios for Azure AD](/azure/active-directory/develop/authentication-vs-authorization) <br/> |Azure AD simplifies authentication for developers by providing identity as a service, with support for industry-standard protocols such as OAuth 2.0 and OpenID Connect, as well as open source libraries for different platforms to help you quickly start coding. This document helps you understand the various scenarios Azure AD supports and shows you how to get started. <br/> | |[Application access](/azure/active-directory/manage-apps/what-is-access-management) <br/> |Azure AD enables easy integration to many of today's popular software as a service (SaaS) applications. It provides identity and access management, and it delivers an Access Panel for users where they can discover what application access they have and where they can use SSO to access their applications. This article provides you with links to the related resources that enable you to learn more about the application access enhancements for Azure AD and how you can contribute to them. <br/> |
-|[Personalize your Office 365 experience](https://support.microsoft.com/office/personalize-your-office-365-experience-eb34a21b-52fa-4fbf-a8d5-146132242985) <br/> |You can get quick access to the apps you use every day by adding or removing apps in the Microsoft 365 app launcher. <br/> |
+|[Personalize your Office 365 experience](https://support.microsoft.com/office/personalize-your-office-365-experience-eb34a21b-52fa-4fbf-a8d5-146132242985) <br/> |You can get quick access to the apps you use every day by adding or removing apps in the Microsoft 365 app launcher. <br/> |
enterprise Microsoft 365 Inter Tenant Collaboration https://github.com/MicrosoftDocs/microsoft-365-docs/commits/public/microsoft-365/enterprise/microsoft-365-inter-tenant-collaboration.md
Microsoft 365 inter-tenant collaboration options include using a central locatio
| Sharing goal | Administrative action | How-to information | |:--|:--|:--|
-|Azure AD B2B collaboration - Content sharing by adding external users to a group in an organization's directory | A global admin for one Microsoft 365 tenant can invite people in another Microsoft 365 tenant to join their directory, add those external users to a group, and grant access to content, such as SharePoint sites and libraries for the group. | <ul><li> [What is Azure AD B2B collaboration preview?](/azure/active-directory/active-directory-b2b-what-is-azure-ad-b2b) </li><li> [Azure AD B2B: New updates make cross-business collab easy](https://blogs.technet.microsoft.com/enterprisemobility/2017/02/01/azure-ad-b2b-new-updates-make-cross-business-collab-easy/) </li><li> [External sharing and Azure Active Directory B2B collaboration](/azure/active-directory/active-directory-b2b-o365-external-user) </li><li> [Azure Active Directory B2B collaboration API and customization](/azure/active-directory/active-directory-b2b-api) </li><li> [Azure AD and Identity Show: Azure AD B2B Collaboration (Business to Business](https://channel9.msdn.com/Series/Azure-AD-Identity/AzureADB2B) </li></ul> |
+|Azure AD B2B collaboration - Content sharing by adding external users to a group in an organization's directory | A **Azure AD DC admin**, **Security Admin**, **User Admin**, **Cloud Application Admin**, or **Global admin** for one Microsoft 365 tenant can invite people in another Microsoft 365 tenant to join their directory, add those external users to a group, and grant access to content, such as SharePoint sites and libraries for the group. | <ul><li> [What is Azure AD B2B collaboration preview?](/azure/active-directory/active-directory-b2b-what-is-azure-ad-b2b) </li><li> [Azure AD B2B: New updates make cross-business collab easy](https://blogs.technet.microsoft.com/enterprisemobility/2017/02/01/azure-ad-b2b-new-updates-make-cross-business-collab-easy/) </li><li> [External sharing and Azure Active Directory B2B collaboration](/azure/active-directory/active-directory-b2b-o365-external-user) </li><li> [Azure Active Directory B2B collaboration API and customization](/azure/active-directory/active-directory-b2b-api) </li><li> [Azure AD and Identity Show: Azure AD B2B Collaboration (Business to Business](https://channel9.msdn.com/Series/Azure-AD-Identity/AzureADB2B) </li></ul> |
## Microsoft 365 collaboration options
Microsoft 365 inter-tenant collaboration options include using a central locatio
|Sharing goal|Administrative action|How-to information| |:--|:--|:--|
-|Collaborate in Teams with users external to the organization | A global admin for the inviting Microsoft 365 tenant needs to enable external collaboration in Teams. Global admins and team owners will now be able to invite anyone with an email address to collaborate in Teams. <br/> Admins can also manage and edit Guests already present in their tenant. | <ul><li> [Authorize Guest Access](/microsoftteams/teams-dependencies) </li><li> [Turn Guest Access On or Off in Teams](/microsoftteams/set-up-guests) </li><li> [Use PowerShell to control Guest Access](/microsoftteams/guest-access-powershell) </li><li> [Guest Access Checklist](/microsoftteams/guest-access-checklist) </li><li> [View Guest Users](/microsoftteams/view-guests) </li><li> [Edit guest user information](/microsoftteams/edit-guests-information) </li></ul> |
+|Collaborate in Teams with users external to the organization | A **User Admin**, or **Global admin** for the inviting Microsoft 365 tenant needs to enable external collaboration in Teams. Global admins and team owners will now be able to invite anyone with an email address to collaborate in Teams. <br/> Admins can also manage and edit Guests already present in their tenant. | <ul><li> [Authorize Guest Access](/microsoftteams/teams-dependencies) </li><li> [Turn Guest Access On or Off in Teams](/microsoftteams/set-up-guests) </li><li> [Use PowerShell to control Guest Access](/microsoftteams/guest-access-powershell) </li><li> [Guest Access Checklist](/microsoftteams/guest-access-checklist) </li><li> [View Guest Users](/microsoftteams/view-guests) </li><li> [Edit guest user information](/microsoftteams/edit-guests-information) </li></ul> |
|Team owners can invite and manage how guests collaborate within their teams. |Team owners have additional controls on what the guests can do within their teams. | <ul><li> [Add Guests](https://support.office.com/article/teams-and-channels-df38ae23-8f85-46d3-b071-cb11b9de5499?ui=en-US&amp;rs=en-US&amp;ad=US#bkmk_addingguests&amp;ID0EAABAAA=Add_guests) </li><li> [Add a guest to a team](/microsoftteams/add-guests) </li><li> [Manage Guest Access in Teams](/microsoftteams/manage-guests) </li><li> [See who's on a Team or in a Channel](https://support.office.com/article/see-who-s-on-a-team-or-in-a-channel-5c6be9be-9c45-4a0f-a1a0-f332b23cb6b7?ui=en-US&amp;rs=en-US&amp;ad=US) </li></ul> | |Guests from other tenants can view contents in Teams and collaborate with other members | None. | [The guest access experience](/microsoftteams/guest-experience)|
enterprise Microsoft 365 Secure Sign In https://github.com/MicrosoftDocs/microsoft-365-docs/commits/public/microsoft-365/enterprise/microsoft-365-secure-sign-in.md
For more information, see the [overview of security defaults](/azure/active-dire
Conditional Access policies are a set of rules that specify the conditions under which sign-ins are evaluated and access is granted. For example, you can create a Conditional Access policy that states: -- If the user account name is a member of a group for users that are assigned the Exchange, user, password, security, SharePoint, or global administrator roles, require MFA before allowing access.
+- If the user account name is a member of a group for users that are assigned the Exchange, user, password, security, SharePoint, **Exchange admin**, **SharePoint admin**, or **Global admin** roles, require MFA before allowing access.
This policy allows you to require MFA based on group membership, rather than trying to configure individual user accounts for MFA when they are assigned or unassigned from these administrator roles.
See the [steps to enable Azure AD Identity Protection](/azure/active-directory/a
## Next step
-[Manage your user accounts](manage-microsoft-365-accounts.md)
+[Manage your user accounts](manage-microsoft-365-accounts.md)
enterprise Ms Cloud Germany Transition Add Devices https://github.com/MicrosoftDocs/microsoft-365-docs/commits/public/microsoft-365/enterprise/ms-cloud-germany-transition-add-devices.md
If a Windows 10 device is Azure AD joined, it must be disconnected from Azure AD
[ ![Azure AD Device Re-Join Flow.](../media/ms-cloud-germany-migration-opt-in/AAD-ReJoin-flow.png) ](../media/ms-cloud-germany-migration-opt-in/AAD-ReJoin-flow.png#lightbox)
-If the user is an administrator on the Windows 10 device, the user can unregister the device from Azure AD and re-join it again in three steps.
+If the user is an administrator on the Windows 10 device, the user can unregister the device from Azure AD and rejoin it again in three steps.
### Step 1: Determine if the device is Azure ID joined
If the user is an administrator on the Windows 10 device, the user can unregiste
6. Restart the device. 7. Sign in with the email address and password of your work account.
-If the user is not an administrator of the device, an Azure AD global administrator can create the local administrator account on the device following this configuration path and unjoin the device:
+If the user is not an administrator of the device, an **Azure AD DC admin**, **Cloud Application Admin**, or **Global admin** can create the local administrator account on the device following this configuration path and unjoin the device:
*Settings > Accounts > Other Accounts > Credentials unknown > Add user without Microsoft-Account*
-For re-joining, the credentials of any work account from your organization can be used in this step.
+For more information, see [About admin roles](/microsoft-365/admin/add-users/about-admin-roles?).
-Please consider that the work account used to join the device will be automatically promoted as an Administrator of the device.
+For rejoining, the credentials of any work account from your organization can be used in this step.
+
+Consider that the work account used to join the device will be automatically promoted as an Administrator of the device.
Any other work account from the organization can sign in to the device, but has no administrator privileges. ## Azure AD registered (workplace-joined) Windows 10 devices
For Android, users will need to unregister and re-register their devices. This c
- From the Company Portal, users can go to **Devices** tab and remove the device. After that, re-enroll the device by using Company Portal. -- Users can also unregister and re-register by removing the account from the account settings page and then re-adding the work account.
+- Users can also unregister and re-register by removing the account from the account settings page and then readding the work account.
To unregister and re-register the device on Android by using the Microsoft Authenticator app:
It's critical to your success that you only unregister and re-register your devi
To check whether your devices are registered in the public cloud, you should export and download the list of devices from the Azure AD portal to an Excel spreadsheet. Then, filter the devices that are registered (by using the _registeredTime_ column) after the date when your organization has passed [phase 9 of the migration process](ms-cloud-germany-transition-phases.md#phase-9--10-azure-ad-finalization).
-**Do I still need to add the DNS name as stated in [Create DNS records for Microsoft using Windows-based DNS](/microsoft-365/admin/dns/create-dns-records-using-windows-based-dns?view=o365-worldwide#add-two-cname-records-for-mobile-device-management-mdm-for-microsoft)?**
+**Do I still need to add the DNS name as stated in [Create DNS records for Microsoft using Windows-based DNS](/microsoft-365/admin/dns/create-dns-records-using-windows-based-dns?#add-two-cname-records-for-mobile-device-management-mdm-for-microsoft)?**
This DNS entry is no longer needed for re-registering your device.
enterprise Office 365 Network Mac Perf Cpe https://github.com/MicrosoftDocs/microsoft-365-docs/commits/public/microsoft-365/enterprise/office-365-network-mac-perf-cpe.md
Application experience data (reflected through network quality metrics) is colle
Enabling informed network routing requires multiple steps, some of which will need to be performed within the configuration interface of your SD-WAN solution. Consult your SD-WAN solution vendor for guidance on how to initiate the process of enabling informed network routing within the SD-WAN solution before proceeding with configuration in the Microsoft 365 admin center.
-Once you are ready to enable informed network routing in the Microsoft 365 admin center, ensure you have the necessary global administrator permissions.
+Once you are ready to enable informed network routing in the Microsoft 365 admin center, ensure you have the necessary **User Admin**, or **Global admin** permissions.
>[!IMPORTANT] >In order to provide the necessary tenant-level applications permissions consent for the selected SD-WAN solution to access the informed network routing data sharing channel, you must perform the following steps as a global administrator.
Select **Next**.
### Step 4: Grant permissions to the SD-WAN solution
-This step will initiate a permissions grant request with Azure Active Directory (Azure AD). You will be requested to grant tenant-level permissions that allow your selected SD-WAN solution access to the informed network routing data storage and the service health information associated with your tenant. This action requires global administrator role permissions.
+This step will initiate a permissions grant request with Azure Active Directory (Azure AD). You will be requested to grant tenant-level permissions that allow your selected SD-WAN solution access to the informed network routing data storage and the service health information associated with your tenant. This action requires **Azure AD DC admin**, or **Global admin** role permissions.
Select the **Give permission to this application** link and follow the Azure AD requests.
enterprise Sharepoint 2007 End Of Support https://github.com/MicrosoftDocs/microsoft-365-docs/commits/public/microsoft-365/enterprise/sharepoint-2007-end-of-support.md
You can't migrate directly from SharePoint 2007 to SharePoint Online. Your move
|**Online pro**|**Online con**| |:--|:--| |Microsoft supplies SPO hardware and all hardware administration. <br/> |Available features may differ between SharePoint Server on-premises and SPO. <br/> |
-|You're the global administrator of your subscription and can assign administrators to SPO sites. <br/> |Some actions available to a farm administrator in SharePoint Server on-premises don't exist or aren't necessarily included in the SharePoint Administrator role in Microsoft 365. <br/> |
+|You're the Sharepoint admin or global admin of your subscription and can assign administrators to SPO sites. <br/> |Some actions available to a farm administrator in SharePoint Server on-premises don't exist or aren't necessarily included in the SharePoint Administrator role in Microsoft 365. <br/> |
|Microsoft applies patches, fixes, and updates to underlying hardware and software. <br/> |Because there's no access to the underlying file system in the service, customization is limited. <br/> | |Microsoft publishes [Service level agreements](/office365/servicedescriptions/office-365-platform-service-description/service-level-agreement) and moves quickly to resolve service-level incidents. <br/> |Backup and restore and other recovery options are automated by the service in SharePoint Online. Backups are overwritten if not used. <br/> | |Security testing and server performance tuning are carried out on an ongoing basis in the service by Microsoft. <br/> |Changes to the user interface and other SharePoint features are installed by the service and may need to be toggled on or off. <br/> |
enterprise Subscriptions Licenses Accounts And Tenants For Microsoft Cloud Offerings https://github.com/MicrosoftDocs/microsoft-365-docs/commits/public/microsoft-365/enterprise/subscriptions-licenses-accounts-and-tenants-for-microsoft-cloud-offerings.md
The following table describes how you can combine multiple Microsoft cloud offer
An easy way to add subscriptions to your organization for Microsoft SaaS-based services is through the admin center:
-1. Sign in to the Microsoft 365 admin center ([https://admin.microsoft.com](https://admin.microsoft.com)) with your global administrator account.
+1. Sign in to the Microsoft 365 admin center ([https://admin.microsoft.com](https://admin.microsoft.com)) with your **User Admin**, or **Global admin** account.
2. From the left navigation of the **Admin center** home page, click **Billing**, and then **Purchase services**.
The admin center assigns the organization and Azure AD tenant of your Microsoft
To add an Azure subscription with the same organization and Azure AD tenant as your Microsoft 365 subscription:
-1. Sign in to the Azure portal ([https://portal.azure.com](https://portal.azure.com)) with your Microsoft 365 global administrator account.
+1. Sign in to the Azure portal ([https://portal.azure.com](https://portal.azure.com)) with your Microsoft 365 **Azure AD DC admin**, or **Global admin** account.
2. In the left navigation, click **Subscriptions**, and then click **Add**.
enterprise Upgrade From Sharepoint 2010 https://github.com/MicrosoftDocs/microsoft-365-docs/commits/public/microsoft-365/enterprise/upgrade-from-sharepoint-2010.md
If you upgrade to SharePoint Server 2013 or SharePoint Server 2016 and decide to
|SharePoint Online advantage|SharePoint Online disadvantage| ||| |Microsoft supplies SPO hardware and all hardware administration.|Available features may differ between SharePoint Server on-premises and SPO.|
-|You're the global administrator of your subscription and can assign administrators to SPO sites.|Some actions available to a farm administrator in SharePoint Server on-premises don't exist (or aren't necessary) in the SharePoint Administrator role in Microsoft 365. But SharePoint Administration, Site Collection Administration, and Site Ownership are local to your org.|
+|You're the Sharepoint admin or global admin of your subscription and can assign administrators to SPO sites.|Some actions available to a farm administrator in SharePoint Server on-premises don't exist (or aren't necessary) in the SharePoint Administrator role in Microsoft 365. But SharePoint Administration, Site Collection Administration, and Site Ownership are local to your org.|
|Microsoft applies patches, fixes, and updates to underlying hardware and software, including SQL servers on which SharePoint Online runs.|Because there's no access to the underlying file system in the service, customization is limited.| |Microsoft publishes [service level agreements](/office365/servicedescriptions/office-365-platform-service-description/service-level-agreement) and moves quickly to resolve service-level incidents.|Backup and restore and other recovery options are automated by the service in SharePoint Online. Backups are overwritten if not used.| |Security testing and server performance tuning are carried out continuously in the service by Microsoft.|Changes to the user interface and other SharePoint features are installed by the service and may need to be toggled on or off.|
You can also [download](https://github.com/MicrosoftDocs/microsoft-365-docs/raw/
[Updated Product Servicing Policy for SharePoint 2013](/SharePoint/product-servicing-policy/updated-product-servicing-policy-for-sharepoint-2013)
-[Updated Product Servicing Policy for SharePoint Server 2016](/SharePoint/product-servicing-policy/updated-product-servicing-policy-for-sharepoint-server-2016)
+[Updated Product Servicing Policy for SharePoint Server 2016](/SharePoint/product-servicing-policy/updated-product-servicing-policy-for-sharepoint-server-2016)
enterprise Use Lean Popouts To Reduce Memory Used When Reading Mail Messages https://github.com/MicrosoftDocs/microsoft-365-docs/commits/public/microsoft-365/enterprise/use-lean-popouts-to-reduce-memory-used-when-reading-mail-messages.md
This article contains information for improving message download performance in Outlook on the web. This article is part of the [Network planning and performance tuning for Office 365](./network-planning-and-performance.md) project.
-As an Office 365 global administrator, you can configure Outlook on the web to deliver _lean popouts_, a smaller, less memory-intensive version of certain email messages in Microsoft Edge or Internet Explorer. When lean popouts are configured for Outlook on the web, server-side rendered components are loaded that optimize performance.
+As an Office 365 **Application Admin**, **Global admin**, or **User Admin**, you can configure Outlook on the web to deliver _lean popouts_, a smaller, less memory-intensive version of certain email messages in Microsoft Edge or Internet Explorer. When lean popouts are configured for Outlook on the web, server-side rendered components are loaded that optimize performance.
> [!NOTE] > As of March 2018, lean popouts are not available for messages that specify usage rights restrictions, such as Information Rights Management (IRM).
These features will continue to work in the main window but are not available in
```powershell Set-OrganizationConfig -LeanPopoutEnabled $false
- ```
+ ```
enterprise Use The Centralized Deployment Powershell Cmdlets To Manage Add Ins https://github.com/MicrosoftDocs/microsoft-365-docs/commits/public/microsoft-365/enterprise/use-the-centralized-deployment-powershell-cmdlets-to-manage-add-ins.md
Before you can use the Centralized Deployment cmdlets, you need to sign in.
Connect-OrganizationAddInService ```
-3. In the **Enter Credentials** page, enter your Microsoft 365 global admin credentials. Alternately, you can enter your credentials directly into the cmdlet.
+3. In the **Enter Credentials** page, enter your Microsoft 365 **User Admin**, or **Global admin** credentials. Alternately, you can enter your credentials directly into the cmdlet.
Run the following cmdlet specifying your company admin credentials as a PSCredential object.
You can look at detailed help for each cmdlet by using the Get-help cmdlet. For
```powershell Get-help Remove-OrganizationAddIn -Full
-```
+```
includes Microsoft 365 Content Updates https://github.com/MicrosoftDocs/microsoft-365-docs/commits/public/microsoft-365/includes/microsoft-365-content-updates.md
<!-- This file is generated automatically each week. Changes made to this file will be overwritten.-->----
-## Week of May 10, 2021
--
-| Published On |Topic title | Change |
-|||--|
-| 5/10/2021 | [Microsoft 365 usage analytics](/microsoft-365/admin/usage-analytics/usage-analytics?view=o365-21vianet) | modified |
-| 5/10/2021 | [Get started with sensitivity labels](/microsoft-365/compliance/get-started-with-sensitivity-labels?view=o365-21vianet) | modified |
-| 5/10/2021 | [Step 1. Use SharePoint Syntex to identify contract files and extract data](/microsoft-365/contentunderstanding/solution-manage-contracts-step1) | modified |
-| 5/10/2021 | [Step 2. Use Microsoft Teams to create your contract management channel](/microsoft-365/contentunderstanding/solution-manage-contracts-step2) | modified |
-| 5/10/2021 | [Use Microsoft Search to find topics in Microsoft Viva Topics](/microsoft-365/knowledge/search) | modified |
-| 5/10/2021 | [Topic center overview in Microsoft Viva Topics](/microsoft-365/knowledge/topic-center-overview) | modified |
-| 5/10/2021 | [Microsoft Viva Topics overview](/microsoft-365/knowledge/topic-experiences-overview) | modified |
-| 5/10/2021 | [How to control USB devices and other removable media using Intune (Windows 10)](/microsoft-365/security/defender-endpoint/control-usb-devices-using-intune?view=o365-21vianet) | modified |
-| 5/10/2021 | [Endpoint detection and response in block mode](/microsoft-365/security/defender-endpoint/edr-in-block-mode?view=o365-21vianet) | modified |
-| 5/10/2021 | [Turn on network protection](/microsoft-365/security/defender-endpoint/enable-network-protection?view=o365-21vianet) | modified |
-| 5/10/2021 | [What's new in Microsoft Defender for Endpoint on iOS](/microsoft-365/security/defender-endpoint/ios-whatsnew?view=o365-21vianet) | modified |
-| 5/10/2021 | [Manage Microsoft Defender Antivirus updates and apply baselines](/microsoft-365/security/defender-endpoint/manage-updates-baselines-microsoft-defender-antivirus?view=o365-21vianet) | modified |
-| 5/10/2021 | [Microsoft Defender Antivirus compatibility with other security products](/microsoft-365/security/defender-endpoint/microsoft-defender-antivirus-compatibility?view=o365-21vianet) | modified |
-| 5/10/2021 | [Microsoft Defender for Endpoint on Mac](/microsoft-365/security/defender-endpoint/microsoft-defender-endpoint-mac?view=o365-21vianet) | modified |
-| 5/10/2021 | [Configure Microsoft Defender Antivirus with Group Policy](/microsoft-365/security/defender-endpoint/use-group-policy-microsoft-defender-antivirus?view=o365-21vianet) | modified |
-| 5/10/2021 | [Web content filtering](/microsoft-365/security/defender-endpoint/web-content-filtering?view=o365-21vianet) | modified |
-| 5/10/2021 | [Redirecting accounts from Microsoft Defender for Office 365 to the new Microsoft 365 security center](/microsoft-365/security/defender/microsoft-365-security-mdo-redirection?view=o365-21vianet) | modified |
-| 5/10/2021 | [Microsoft 365 auditing solutions](/microsoft-365/compliance/auditing-solutions-overview?view=o365-21vianet) | added |
-| 5/10/2021 | [Content search reference](/microsoft-365/compliance/content-search-reference?view=o365-21vianet) | added |
-| 5/10/2021 | [Preview the results of an eDiscovery search](/microsoft-365/compliance/preview-ediscovery-search-results?view=o365-21vianet) | added |
-| 5/10/2021 | [Set up Advanced Audit in Microsoft 365](/microsoft-365/compliance/set-up-advanced-audit?view=o365-21vianet) | added |
-| 5/10/2021 | [Set up Basic auditing in Microsoft 365](/microsoft-365/compliance/set-up-basic-auditing?view=o365-21vianet) | added |
-| 5/10/2021 | [Check your search query for errors](/microsoft-365/compliance/check-your-content-search-query-for-errors?view=o365-21vianet) | modified |
-| 5/10/2021 | [Close, reopen, and delete Core eDiscovery cases](/microsoft-365/compliance/close-reopen-delete-core-ediscovery-cases?view=o365-21vianet) | modified |
-| 5/10/2021 | [Create and run a Content search in the Microsoft 365 compliance center](/microsoft-365/compliance/content-search?view=o365-21vianet) | modified |
-| 5/10/2021 | [Create and manage Advanced eDiscovery cases in Microsoft 365](/microsoft-365/compliance/create-and-manage-advanced-ediscoveryv2-case?view=o365-21vianet) | modified |
-| 5/10/2021 | [Create eDiscovery holds in a Core eDiscovery case](/microsoft-365/compliance/create-ediscovery-holds?view=o365-21vianet) | modified |
-| 5/10/2021 | [Prepare a CSV file for an ID list Content search](/microsoft-365/compliance/csv-file-for-an-id-list-content-search?view=o365-21vianet) | modified |
-| 5/10/2021 | [Manage mailbox auditing](/microsoft-365/compliance/enable-mailbox-auditing?view=o365-21vianet) | modified |
-| 5/10/2021 | [Export a Content Search report](/microsoft-365/compliance/export-a-content-search-report?view=o365-21vianet) | modified |
-| 5/10/2021 | [Export and download content from a Core eDiscovery case](/microsoft-365/compliance/export-content-in-core-ediscovery?view=o365-21vianet) | modified |
-| 5/10/2021 | [Export Content search results](/microsoft-365/compliance/export-search-results?view=o365-21vianet) | modified |
-| 5/10/2021 | [Get started with Core eDiscovery cases in Microsoft 365](/microsoft-365/compliance/get-started-core-ediscovery?view=o365-21vianet) | modified |
-| 5/10/2021 | [Investigating partially indexed items in eDiscovery](/microsoft-365/compliance/investigating-partially-indexed-items-in-ediscovery?view=o365-21vianet) | modified |
-| 5/10/2021 | [Keyword queries and search conditions for eDiscovery](/microsoft-365/compliance/keyword-queries-and-search-conditions?view=o365-21vianet) | modified |
-| 5/10/2021 | [Limits in core eDiscovery case](/microsoft-365/compliance/limits-core-ediscovery?view=o365-21vianet) | modified |
-| 5/10/2021 | [Limits for Content search and Core eDiscovery in the compliance center](/microsoft-365/compliance/limits-for-content-search?view=o365-21vianet) | modified |
-| 5/10/2021 | [Migrate legacy eDiscovery searches and holds to the Microsoft 365 compliance center](/microsoft-365/compliance/migrate-legacy-ediscovery-searches-and-holds?view=o365-21vianet) | modified |
-| 5/10/2021 | [Retry a Content Search to resolve a content location error](/microsoft-365/compliance/retry-failed-content-search?view=o365-21vianet) | modified |
-| 5/10/2021 | [Search for Teams chat data for on-premises users](/microsoft-365/compliance/search-cloud-based-mailboxes-for-on-premises-users?view=o365-21vianet) | modified |
-| 5/10/2021 | [Search for content in a core eDiscovery case](/microsoft-365/compliance/search-for-content-in-core-ediscovery?view=o365-21vianet) | modified |
-| 5/10/2021 | [Enable sensitivity labels for Office files in SharePoint and OneDrive](/microsoft-365/compliance/sensitivity-labels-sharepoint-onedrive-files?view=o365-21vianet) | modified |
-| 5/10/2021 | [Set up compliance boundaries for eDiscovery investigations](/microsoft-365/compliance/set-up-compliance-boundaries?view=o365-21vianet) | modified |
-| 5/10/2021 | [Use Content search for targeted collections](/microsoft-365/compliance/use-content-search-for-targeted-collections?view=o365-21vianet) | modified |
-| 5/10/2021 | [View statistics for eDiscovery search results](/microsoft-365/compliance/view-keyword-statistics-for-content-search?view=o365-21vianet) | modified |
-| 5/10/2021 | [Content stored in Exchange Online mailboxes](/microsoft-365/compliance/what-is-stored-in-exo-mailbox?view=o365-21vianet) | modified |
-| 5/10/2021 | [Troubleshoot installation issues for Microsoft Defender for Endpoint on Linux](/microsoft-365/security/defender-endpoint/linux-support-install?view=o365-21vianet) | modified |
-| 5/10/2021 | [Run a detection test on a newly onboarded Microsoft Defender for Endpoint device](/microsoft-365/security/defender-endpoint/run-detection-test?view=o365-21vianet) | modified |
-| 5/10/2021 | [Troubleshoot SIEM tool integration issues in Microsoft Defender for Endpoint](/microsoft-365/security/defender-endpoint/troubleshoot-siem?view=o365-21vianet) | modified |
-| 5/11/2021 | [Use Microsoft Teams classes in your Learning Management System](/microsoft-365/lti/teams-classes-lms?view=o365-21vianet) | added |
-| 5/11/2021 | [Use OneDrive Learning Tools Interoperability](/microsoft-365/lti/use-onedrive-with-lms?view=o365-21vianet) | added |
-| 5/11/2021 | [Add custom tiles to the app launcher](/microsoft-365/admin/manage/customize-the-app-launcher?view=o365-21vianet) | modified |
-| 5/11/2021 | [Manage add-ins in the admin center](/microsoft-365/admin/manage/manage-addins-in-the-admin-center?view=o365-21vianet) | modified |
-| 5/11/2021 | [Get support](/microsoft-365/business-video/get-help-support?view=o365-21vianet) | modified |
-| 5/11/2021 | [Migrate to Microsoft 365 Business from Office 365 E3](/microsoft-365/business/migrate-from-e3?view=o365-21vianet) | modified |
-| 5/11/2021 | [Add licenses to a subscription purchased through the Volume Licensing Service Center](/microsoft-365/commerce/licenses/add-licenses-bought-through-vlsc?view=o365-21vianet) | modified |
-| 5/11/2021 | [Add licenses to or extend a subscription paid for using a product key](/microsoft-365/commerce/licenses/add-licenses-using-product-key?view=o365-21vianet) | modified |
-| 5/11/2021 | [Allotment basics](/microsoft-365/commerce/licenses/allotment-basics?view=o365-21vianet) | modified |
-| 5/11/2021 | [Buy or remove licenses](/microsoft-365/commerce/licenses/buy-licenses?view=o365-21vianet) | modified |
-| 5/11/2021 | [Manage auto-claim policies](/microsoft-365/commerce/licenses/manage-auto-claim-policies?view=o365-21vianet) | modified |
-| 5/11/2021 | [Verify academic eligibility for Microsoft 365 Education subscriptions](/microsoft-365/commerce/subscriptions/verify-academic-eligibility?view=o365-21vianet) | modified |
-| 5/11/2021 | [What happens to my data and access when my subscription ends?](/microsoft-365/commerce/subscriptions/what-if-my-subscription-expires?view=o365-21vianet) | modified |
-| 5/11/2021 | [Automatically apply a sensitivity label to content in Microsoft 365](/microsoft-365/compliance/apply-sensitivity-label-automatically?view=o365-21vianet) | modified |
-| 5/11/2021 | [Delete items in the Recoverable Items folder of cloud mailbox's on hold](/microsoft-365/compliance/delete-items-in-the-recoverable-items-folder-of-mailboxes-on-hold?view=o365-21vianet) | modified |
-| 5/11/2021 | [Keyword queries and search conditions for eDiscovery](/microsoft-365/compliance/keyword-queries-and-search-conditions?view=o365-21vianet) | modified |
-| 5/11/2021 | [Manage sensitivity labels in Office apps](/microsoft-365/compliance/sensitivity-labels-office-apps?view=o365-21vianet) | modified |
-| 5/11/2021 | [Enable sensitivity labels for Office files in SharePoint and OneDrive](/microsoft-365/compliance/sensitivity-labels-sharepoint-onedrive-files?view=o365-21vianet) | modified |
-| 5/11/2021 | [Manage topics in the topic center in Microsoft Viva Topics](/microsoft-365/knowledge/manage-topics) | modified |
-| 5/11/2021 | [Use attack surface reduction rules to prevent malware infection](/microsoft-365/security/defender-endpoint/attack-surface-reduction?view=o365-21vianet) | modified |
-| 5/11/2021 | [Customize controlled folder access](/microsoft-365/security/defender-endpoint/customize-controlled-folders?view=o365-21vianet) | modified |
-| 5/11/2021 | [Enable attack surface reduction rules](/microsoft-365/security/defender-endpoint/enable-attack-surface-reduction?view=o365-21vianet) | modified |
-| 5/11/2021 | [McAfee to Microsoft Defender for Endpoint - Onboard](/microsoft-365/security/defender-endpoint/mcafee-to-microsoft-defender-onboard?view=o365-21vianet) | modified |
-| 5/11/2021 | [McAfee to Microsoft Defender for Endpoint - Prepare](/microsoft-365/security/defender-endpoint/mcafee-to-microsoft-defender-prepare?view=o365-21vianet) | modified |
-| 5/11/2021 | [McAfee to Microsoft Defender for Endpoint - Setup](/microsoft-365/security/defender-endpoint/mcafee-to-microsoft-defender-setup?view=o365-21vianet) | modified |
-| 5/11/2021 | [Supported managed security service providers](/microsoft-365/security/defender-endpoint/mssp-list?view=o365-21vianet) | modified |
-| 5/11/2021 | [Make the switch from a non-Microsoft endpoint solution to Microsoft Defender for Endpoint](/microsoft-365/security/defender-endpoint/switch-to-microsoft-defender-migration?view=o365-21vianet) | modified |
-| 5/11/2021 | [Switch to Microsoft Defender for Endpoint - Onboard](/microsoft-365/security/defender-endpoint/switch-to-microsoft-defender-onboard?view=o365-21vianet) | modified |
-| 5/11/2021 | [Switch to Microsoft Defender for Endpoint - Prepare](/microsoft-365/security/defender-endpoint/switch-to-microsoft-defender-prepare?view=o365-21vianet) | modified |
-| 5/11/2021 | [Switch to Microsoft Defender for Endpoint - Setup](/microsoft-365/security/defender-endpoint/switch-to-microsoft-defender-setup?view=o365-21vianet) | modified |
-| 5/11/2021 | [Symantec to Microsoft Defender for Endpoint - Phase 3, Onboarding](/microsoft-365/security/defender-endpoint/symantec-to-microsoft-defender-atp-onboard?view=o365-21vianet) | modified |
-| 5/11/2021 | [Symantec to Microsoft Defender for Endpoint - Phase 1, Preparing](/microsoft-365/security/defender-endpoint/symantec-to-microsoft-defender-atp-prepare?view=o365-21vianet) | modified |
-| 5/11/2021 | [Symantec to Microsoft Defender for Endpoint - Phase 2, Setting Up](/microsoft-365/security/defender-endpoint/symantec-to-microsoft-defender-atp-setup?view=o365-21vianet) | modified |
-| 5/11/2021 | [Migrate from Symantec to Microsoft Defender for Endpoint](/microsoft-365/security/defender-endpoint/symantec-to-microsoft-defender-endpoint-migration?view=o365-21vianet) | modified |
-| 5/11/2021 | [Supported operating systems platforms and capabilities](/microsoft-365/security/defender-endpoint/tvm-supported-os?view=o365-21vianet) | modified |
-| 5/11/2021 | [What's new in Microsoft Compliance Manager](/microsoft-365/compliance/compliance-manager-whats-new?view=o365-21vianet) | added |
-| 5/11/2021 | [Manage topics at scale in Microsoft Viva Topics](/microsoft-365/knowledge/scale-topics) | added |
-| 5/11/2021 | [Configure email forwarding](/microsoft-365/admin/email/configure-email-forwarding?view=o365-21vianet) | modified |
-| 5/11/2021 | [Remove license from shared mailbox](/microsoft-365/admin/email/remove-license-from-shared-mailbox?view=o365-21vianet) | modified |
-| 5/11/2021 | [Change nameservers to set up Microsoft 365 with any domain registrar](/microsoft-365/admin/get-help-with-domains/change-nameservers-at-any-domain-registrar?view=o365-21vianet) | modified |
-| 5/11/2021 | [Manage domains # < 60 chars](/microsoft-365/admin/get-help-with-domains/index?view=o365-21vianet) | modified |
-| 5/11/2021 | [Set up your domain](/microsoft-365/admin/get-help-with-domains/set-up-your-domain-host-specific-instructions?view=o365-21vianet) | modified |
-| 5/11/2021 | [Assign licenses to users](/microsoft-365/admin/manage/assign-licenses-to-users?view=o365-21vianet) | modified |
-| 5/11/2021 | [Change your organization's address, technical contact, and more](/microsoft-365/admin/manage/change-address-contact-and-more?view=o365-21vianet) | modified |
-| 5/11/2021 | [Unassign licenses from users](/microsoft-365/admin/manage/remove-licenses-from-users?view=o365-21vianet) | modified |
-| 5/11/2021 | [Send email as a distribution list](/microsoft-365/admin/manage/send-email-as-distribution-list?view=o365-21vianet) | modified |
-| 5/11/2021 | [Upgrade distribution lists to Microsoft 365 Groups in Outlook](/microsoft-365/admin/manage/upgrade-distribution-lists?view=o365-21vianet) | modified |
-| 5/11/2021 | [Using self-service sign-up in your organization](/microsoft-365/admin/misc/self-service-sign-up?view=o365-21vianet) | modified |
-| 5/11/2021 | [Apply for a Fapiao for Office 365 operated by 21Vianet](/microsoft-365/admin/services-in-china/apply-for-a-fapiao?view=o365-21vianet) | modified |
-| 5/11/2021 | [Download perpetual software and product license keys bought through the Cloud Solution Provider (CSP) program](/microsoft-365/admin/setup/download-software-licenses-csp?view=o365-21vianet) | modified |
-| 5/11/2021 | Microsoft Bookings Frequently Asked Questions | removed |
-| 5/11/2021 | [Comparison chart: Bookings web app vs. Bookings Teams app](/microsoft-365/bookings/compari21vianet) | modified |
-| 5/11/2021 | [Microsoft 365 admin center - Overview](/microsoft-365/businer-overview?view=o365-worldwide) | modified |
-| 5/11/2021 | [Buy new licenses](/microsoft-365/business-video/buy-licenses?view=o365-worldwide) | modi
-| 5/11/2021 | [Move users to different subscriptions](/microsoft-365/business-video/change-subscription?view=o365-worldwide) | modified |
-| 5/11/2021 | [About registration numbers and under review notifications](/microsoft-365/commerce/about-registration-numbers?view=o365-21vianet) | modified |
-| 5/11/2021 | [Add storage space for your subscription](/microsoft-365/commerce/add-storage-space?view=o365-21vianet) | modified |
-| 5/11/2021 | [Change your billing frequency](/microsoft-365/commerce/billing-and-payments/change-payment-frequency?view=o365-21vianet) | modified |
-| 5/11/2021 | [Change your billing addresses](/microsoft-365/commerce/billing-and-payments/change-your-billing-addresses?view=o365-21vianet) | modified |
-| 5/11/2021 | [Manage billing notifications and invoice attachments](/microsoft-365/commerce/billing-and-payments/manage-billing-notifications?view=o365-21vianet) | modified |
-| 5/11/2021 | [Understand billing profiles](/microsoft-365/commerce/billing-and-payments/manage-billing-profiles?view=o365-21vianet) | modified |
-| 5/11/2021 | [Manage payment methods](/microsoft-365/commerce/billing-and-payments/manage-payment-methods?view=o365-21vianet) | modified |
-| 5/11/2021 | [Billing information for Microsoft 365 for business in Mexico](/microsoft-365/commerce/billing-and-payments/mexico-billing-info?view=o365-worldwide) | modified |
-| 5/11/2021 | [Paying for your subscription with a billing profile](/microsoft-365/commerce/billing-and-payments/pay-for-subscription-billing-profile?view=o365-21vianet) | modified |
-| 5/11/2021 | [Paying for your subscription](/microsoft-365/commerce/billing-and-payments/pay-for-your-subscription?view=o365-21vianet) | modified |
-| 5/11/2021 | [Payment Services Directive 2 and Strong Customer Authentication for commercial customers](/microsoft-365/commerce/billing-and-payments/psd2?view=o365-21vianet) | modified |
-| 5/11/2021 | [Tax Information](/microsoft-365/commerce/billing-and-payments/tax-information?view=o365-21vianet) | modified |
-| 5/11/2021 | [Understand your bill or invoice](/microsoft-365/commerce/billing-and-payments/understand-your-invoice?view=o365-21vianet) | modified |
-| 5/11/2021 | [Understand your bill or invoice for Microsoft 365 for business](/microsoft-365/commerce/billing-and-payments/understand-your-invoice2?view=o365-21vianet) | modified |
-| 5/11/2021 | [View your bill or invoice](/microsoft-365/commerce/billing-and-payments/view-your-bill-or-invoice?view=o365-21vianet) | modified |
-| 5/11/2021 | [Request a credit for Withholding Tax on your account (India customers)](/microsoft-365/commerce/billing-and-payments/withholding-tax-credit-india?view=o365-worldwide) | modified |
-| 5/11/2021 | [Buy or manage add-ons](/microsoft-365/commerce/buy-or-edit-an-add-on?view=o365-21vianet) | modified |
-| 5/11/2021 | [Close your account](/microsoft-365/commerce/close-your-account?view=o365-21vianet) | modified |
-| 5/11/2021 | [Enter your product key for Microsoft 365 Business Standard](/microsoft-365/commerce/enter-your-product-key?view=o365-21vianet) | modified |
-| 5/11/2021 | [Business subscriptions and billing documentation # < 60 chars](/microsoft-365/commerce/index?view=o365-21vianet) | modified |
-| 5/11/2021 | [Manage license requests](/microsoft-365/commerce/licenses/manage-license-requests?view=o365-21vianet) | modified |
-| 5/11/2021 | [Manage licenses for devices](/microsoft-365/commerce/licenses/manage-licenses-for-devices?view=o365-21vianet) | modified |
-| 5/11/2021 | [Understand subscriptions and licenses in Microsoft 365 for business](/microsoft-365/commerce/licenses/subscriptions-and-licenses?view=o365-21vianet) | modified |
-| 5/11/2021 | [Manage billing accounts](/microsoft-365/commerce/manage-billing-accounts?view=o365-21vianet) | modified |
-| 5/11/2021 | [Manage partner relationships](/microsoft-365/commerce/manage-partners?view=o365-21vianet) | modified |
-| 5/11/2021 | [Manage software-as-a-service apps for your organization](/microsoft-365/commerce/manage-saas-apps?view=o365-21vianet) | modified |
-| 5/11/2021 | [Microsoft Home Use Program frequently-asked questions (FAQ)](/microsoft-365/commerce/microsoft-home-use-program-faq?view=o365-21vianet) | modified |
-| 5/11/2021 | [Problems with your Microsoft 365 for business product key?](/microsoft-365/commerce/product-key-errors-and-solutions?view=o365-21vianet) | modified |
-| 5/11/2021 | [Enter your product key purchased from Microsoft Open](/microsoft-365/commerce/purchases-from-microsoft-open?view=o365-21vianet) | modified |
-| 5/11/2021 | [Use AllowSelfServicePurchase for the MSCommerce PowerShell module](/microsoft-365/commerce/subscriptions/allowselfservicepurchase-powershell?view=o365-21vianet) | modified |
-| 5/11/2021 | [Back up data before changing plans](/microsoft-365/commerce/subscriptions/back-up-data-before-switching-plans?view=o365-21vianet) | modified |
-| 5/11/2021 | [Cancel your subscription](/microsoft-365/commerce/subscriptions/cancel-your-subscription?view=o365-21vianet) | modified |
-| 5/11/2021 | [Change Microsoft 365 for business plans manually](/microsoft-365/commerce/subscriptions/change-plans-manually?view=o365-21vianet) | modified |
-| 5/11/2021 | [Important information for Office 365 E4 customers](/microsoft-365/commerce/subscriptions/important-information-e4?view=o365-21vianet) | modified |
-| 5/11/2021 | [Manage self-service purchases (Admins)](/microsoft-365/commerce/subscriptions/manage-self-service-purchases-admins?view=o365-21vianet) | modified |
-| 5/11/2021 | [Manage self-service purchases (Users)](/microsoft-365/commerce/subscriptions/manage-self-service-purchases-users?view=o365-21vianet) | modified |
-| 5/11/2021 | [Manage self-service sign-up subscriptions](/microsoft-365/commerce/subscriptions/manage-self-service-signup-subscriptions?view=o365-21vianet) | modified |
-| 5/11/2021 | [Move users to a different subscription](/microsoft-365/commerce/subscriptions/move-users-different-subscription?view=o365-21vianet) | modified |
-| 5/11/2021 | [Reactivate your subscription](/microsoft-365/commerce/subscriptions/reactivate-your-subscription?view=o365-21vianet) | modified |
-| 5/11/2021 | [Renew Microsoft 365 for business](/microsoft-365/commerce/subscriptions/renew-your-subscription?view=o365-21vianet) | modified |
-| 5/11/2021 | [Self-service purchase FAQ](/microsoft-365/commerce/subscriptions/self-service-purchase-faq?view=o365-21vianet) | modified |
-| 5/11/2021 | [Upgrade from an Office 365 E4 subscription](/microsoft-365/commerce/subscriptions/upgrade-office-365-e4?view=o365-21vianet) | modified |
-| 5/11/2021 | [Upgrade from Microsoft Teams Free to Microsoft 365 for business](/microsoft-365/commerce/subscriptions/upgrade-from-teams-free?view=o365-21vianet) | modified |
-| 5/11/2021 | [Upgrade to a different business plan](/microsoft-365/commerce/subscriptions/upgrade-to-different-plan?view=o365-21vianet) | modified |
-| 5/11/2021 | [Try or buy a Microsoft 365 for business subscription](/microsoft-365/commerce/try-or-buy-microsoft-365?view=o365-21vianet) | modified |
-| 5/11/2021 | [Understand the proposal workflow](/microsoft-365/commerce/understand-proposal-workflow?view=o365-21vianet) | modified |
-| 5/11/2021 | [Use your promo code to reduce price](/microsoft-365/commerce/use-a-promo-code?view=o365-21vianet) | modified |
-| 5/11/2021 | [Microsoft Compliance Manager templates list](/microsoft-365/compliance/compliance-manager-templates-list?view=o365-21vianet) | modified |
-| 5/11/2021 | [Feature reference for Content search](/microsoft-365/compliance/content-search-reference?view=o365-21vianet) | modified |
-| 5/11/2021 | [Create and run a Content search in the Microsoft 365 compliance center](/microsoft-365/compliance/content-search?view=o365-21vianet) | modified |
-| 5/11/2021 | [Get started with Microsoft 365 Endpoint data loss prevention](/microsoft-365/compliance/endpoint-dlp-getting-started?view=o365-21vianet) | modified |
-| 5/11/2021 | [Microsoft Information Protection in Microsoft 365](/microsoft-365/compliance/information-protection?view=o365-21vianet) | modified |
-| 5/11/2021 | [Search for content](/microsoft-365/compliance/search-for-content?view=o365-21vianet) | modified |
-| 5/11/2021 | [Enable co-authoring for documents encrypted by sensitivity labels in Microsoft 365](/microsoft-365/compliance/sensitivity-labels-coauthoring?view=o365-21vianet) | modified |
-| 5/11/2021 | [Disabling TLS 1.0 and 1.1 for Microsoft 365](/microsoft-365/compliance/tls-1.0-and-1.1-deprecation-for-office-365?view=o365-21vianet) | modified |
-| 5/11/2021 | [Topic center overview in Microsoft Viva Topics](/microsoft-365/knowledge/topic-center-overview) | modified |
-| 5/11/2021 | [Coming soon: Configure SharePoint as a learning content source for Microsoft Viva Learning (Preview)](/microsoft-365/learning/configure-sharepoint-content-source?view=o365-21vianet) | modified |
-| 5/11/2021 | [Configure learning content sources for Microsoft Viva Learning (Preview) in the Microsoft 365 admin center](/microsoft-365/learning/content-sources-365-admin-center?view=o365-21vianet) | modified |
-| 5/11/2021 | [Introduction to Microsoft Viva Learning (Preview)](/microsoft-365/learning/index?view=o365-21vianet) | modified |
-| 5/11/2021 | [Overview of Microsoft Viva Learning (Preview)](/microsoft-365/learning/overview-viva-learning?view=o365-21vianet) | modified |
-| 5/11/2021 | [Set up Microsoft Viva Learning (Preview) in the Teams admin center](/microsoft-365/learning/set-up-teams-admin-center?view=o365-21vianet) | modified |
-| 5/11/2021 | [Turn on exploit protection to help mitigate against attacks](/microsoft-365/security/defender-endpoint/enable-exploit-protection?view=o365-21vianet) | modified |
-| 5/11/2021 | [Microsoft Defender for Endpoint for US Government customers](/microsoft-365/security/defender-endpoint/gov?view=o365-21vianet) | modified |
-| 5/11/2021 | Anti-malware protection FAQ | removed |
-| 5/11/2021 | [Anti-malware protection](/microsoft-365/security/office-365-security/anti-malware-protection?view=o365-21vianet) | modified |
-| 5/11/2021 | [Anti-spam and anti-malware protection](/microsoft-365/security/office-365-security/anti-spam-and-anti-malware-protection?view=o365-21vianet) | modified |
-| 5/11/2021 | Anti-spam protection FAQ | removed |
-| 5/11/2021 | Anti-spoofing protection FAQ | removed |
-| 5/11/2021 | [Configure outbound spam filtering](/microsoft-365/security/office-365-security/configure-the-outbound-spam-policy?view=o365-21vianet) | modified |
-| 5/11/2021 | [Create blocked sender lists](/microsoft-365/security/office-365-security/create-block-sender-lists-in-office-365?view=o365-21vianet) | modified |
-| 5/11/2021 | Delegated administration FAQ | removed |
-| 5/11/2021 | [EOP features](/microsoft-365/security/office-365-security/eop-features?view=o365-21vianet) | modified |
-| 5/11/2021 | EOP general FAQ | removed |
-| 5/11/2021 | EOP queued, deferred, and bounced messages FAQ | removed |
-| 5/11/2021 | [Quarantined email messages](/microsoft-365/security/office-365-security/quarantine-email-messages?view=o365-21vianet) | modified |
-| 5/11/2021 | Quarantined messages FAQ | removed |
-| 5/11/2021 | [End of lifecycle options for groups, teams, and Yammer](/microsoft-365/solutions/e-teams-sites-yammer?view=o365-21vianet) | modified |
-| 5/12/2021 | [Microsoft Productivity Score](/microsoft-365/admin/productivity/productivity-score?view=o365-worldwide) | modified |
-| 5/12/2021 | [Change Microsoft 365 for business plans manually](/microsoft-365/commerce/subscriptions/change-plans-manually?view=o365-21vianet) | modified |
-| 5/12/2021 | [Important information for Office 365 E4 customers](/microsoft-365/commerce/subscriptions/important-information-e4?view=o365-21vianet) | modified |
-| 5/12/2021 | [Manage self-service sign-up subscriptions](/microsoft-365/commerce/subscriptions/manage-self-service-signup-subscriptions?view=o365-21vianet) | modified |
-| 5/12/2021 | [Reactivate your subscription](/microsoft-365/commerce/subscriptions/reactivate-your-subscription?view=o365-21vianet) | modified |
-| 5/12/2021 | [Renew Microsoft 365 for business](/microsoft-365/commerce/subscriptions/renew-your-subscription?view=o365-21vianet) | modified |
-| 5/12/2021 | [Upgrade from an Office 365 E4 subscription](/microsoft-365/commerce/subscriptions/upgrade-office-365-e4?view=o365-21vianet) | modified |
-| 5/12/2021 | [Upgrade from Microsoft Teams Free to Microsoft 365 for business](/microsoft-365/commerce/subscriptions/upgrade-from-teams-free?view=o365-21vianet) | modified |
-| 5/12/2021 | [Upgrade to a different business plan](/microsoft-365/commerce/subscriptions/upgrade-to-different-plan?view=o365-21vianet) | modified |
-| 5/12/2021 | [Try or buy a Microsoft 365 for business subscription](/microsoft-365/commerce/try-or-buy-microsoft-365?view=o365-21vianet) | modified |
-| 5/12/2021 | [Understand the proposal workflow](/microsoft-365/commerce/understand-proposal-workflow?view=o365-21vianet) | modified |
-| 5/12/2021 | [Use your promo code to reduce price](/microsoft-365/commerce/use-a-promo-code?view=o365-21vianet) | modified |
-| 5/12/2021 | [Roll or rotate a Customer Key or an availability key](/microsoft-365/compliance/customer-key-availability-key-roll?view=o365-21vianet) | modified |
-| 5/12/2021 | [Learn about the availability key for Customer Key](/microsoft-365/compliance/customer-key-availability-key-understand?view=o365-21vianet) | modified |
-| 5/12/2021 | [Manage Customer Key](/microsoft-365/compliance/customer-key-manage?view=o365-21vianet) | modified |
-| 5/12/2021 | [Service encryption with Customer Key](/microsoft-365/compliance/customer-key-overview?view=o365-21vianet) | modified |
-| 5/12/2021 | [Set up Customer Key](/microsoft-365/compliance/customer-key-set-up?view=o365-21vianet) | modified |
-| 5/12/2021 | Customer Key for Microsoft 365 at the tenant level (public preview) | removed |
-| 5/12/2021 | [Disposition of content](/microsoft-365/compliance/disposition?view=o365-21vianet) | modified |
-| 5/12/2021 | [Query the data in a review set](/microsoft-365/compliance/review-set-search?view=o365-21vianet) | modified |
-| 5/12/2021 | [Manage sensitivity labels in Office apps](/microsoft-365/compliance/sensitivity-labels-office-apps?view=o365-21vianet) | modified |
-| 5/12/2021 | [Pre-migration activities for the migration from Microsoft Cloud Deutschland](/microsoft-365/enterprise/ms-cloud-germany-transition-add-pre-work?view=o365-21vianet) | modified |
-| 5/12/2021 | [Migration phases actions and impacts for the migration from Microsoft Cloud Deutschland)](/microsoft-365/enterprise/ms-cloud-germany-transition-phases?view=o365-21vianet) | modified |
-| 5/12/2021 | [Migration from Microsoft Cloud Deutschland to Office 365 services in the new German datacenter regions](/microsoft-365/enterprise/ms-cloud-germany-transition?view=o365-21vianet) | modified |
-| 5/12/2021 | [Use attack surface reduction rules to prevent malware infection](/microsoft-365/security/defender-endpoint/attack-surface-reduction?view=o365-21vianet) | modified |
-| 5/12/2021 | [Enable attack surface reduction rules](/microsoft-365/security/defender-endpoint/enable-attack-surface-reduction?view=o365-21vianet) | modified |
-| 5/12/2021 | [Configure and validate exclusions for Microsoft Defender for Endpoint on Linux](/microsoft-365/security/defender-endpoint/linux-exclusions?view=o365-21vianet) | modified |
-| 5/12/2021 | [Set preferences for Microsoft Defender for Endpoint on Linux](/microsoft-365/security/defender-endpoint/linux-preferences?view=o365-21vianet) | modified |
-| 5/12/2021 | [Intune-based deployment for Microsoft Defender for Endpoint on Mac](/microsoft-365/security/defender-endpoint/mac-install-with-intune?view=o365-21vianet) | modified |
-| 5/12/2021 | [Set preferences for Microsoft Defender for Endpoint on Mac](/microsoft-365/security/defender-endpoint/mac-preferences?view=o365-21vianet) | modified |
-| 5/12/2021 | [Resources for Microsoft Defender for Endpoint on Mac](/microsoft-365/security/defender-endpoint/mac-resources?view=o365-21vianet) | modified |
-| 5/12/2021 | [Switch to Microsoft Defender for Endpoint - Onboard](/microsoft-365/security/defender-endpoint/switch-to-microsoft-defender-onboard?view=o365-21vianet) | modified |
-| 5/12/2021 | [Switch to Microsoft Defender for Endpoint - Prepare](/microsoft-365/security/defender-endpoint/switch-to-microsoft-defender-prepare?view=o365-21vianet) | modified |
-| 5/12/2021 | [Switch to Microsoft Defender for Endpoint - Setup](/microsoft-365/security/defender-endpoint/switch-to-microsoft-defender-setup?view=o365-21vianet) | modified |
-| 5/12/2021 | [Common identity and device access policies - Microsoft 365 for enterprise \| Microsoft Docs](/microsoft-365/security/office-365-security/identity-access-policies?view=o365-21vianet) | modified |
-| 5/12/2021 | [Secure by default in Office 365](/microsoft-365/security/office-365-security/secure-by-default?view=o365-21vianet) | modified |
-| 5/12/2021 | [End of lifecycle options for groups, teams, and Yammer](/microsoft-365/solutions/end-life-cycle-groups-teams-sites-yammer?view=o365-21vianet) | modified |
-| 5/12/2021 | [What is a domain?](/microsoft-365/admin/get-help-with-domains/what-is-a-domain?view=o365-21vianet) | modified |
-| 5/12/2021 | [Determine if Centralized Deployment of add-ins works for your organization](/microsoft-365/admin/manage/centralized-deployment-of-add-ins?view=o365-21vianet) | modified |
-| 5/12/2021 | [Manage Microsoft Rewards](/microsoft-365/admin/manage/manage-microsoft-rewards?view=o365-21vianet) | modified |
-| 5/12/2021 | [Install Microsoft Office apps](/microsoft-365/business-video/install-office?view=o365-21vianet) | modified |
-| 5/12/2021 | [Create a shared calendar](/microsoft-365/business-video/shared-calendar?view=o365-21vianet) | modified |
-| 5/12/2021 | [Create custom sensitive information types with Exact Data Match](/microsoft-365/compliance/create-custom-sensitive-information-types-with-exact-data-match-based-classification?view=o365-21vianet) | modified |
-| 5/12/2021 | [Azure ExpressRoute for Office 365](/microsoft-365/enterprise/azure-expressroute?view=o365-21vianet) | modified |
-| 5/12/2021 | [Microsoft 365 Network Connectivity Location Services (preview)](/microsoft-365/enterprise/ac-location-services?view=o365-21vianet) | modified |
-| 5/12/2021 | [Microsoft 365 admin center - Overview](/microsoft-365/business-video/admin-center-overview?view=o365-worldwide) | modified |
-| 5/12/2021 | [Microsoft 365 Network Connectivity Location Services](/microsoft-365/enterprise/office-365-network-mac-location-services?view=o365-21vianet) | modified |
-| 5/12/2021 | [Microsoft 365 Network Insights](/microsoft-365/enterprise/office-365-network-mac-perf-insights?view=o365-21vianet) | modified |
-| 5/12/2021 | [Microsoft 365 network connectivity test tool](/microsoft-365/enterprise/office-365-network-mac-perf-onboarding-tool?view=o365-21vianet) | modified |
-| 5/12/2021 | [Network connectivity in the Microsoft 365 Admin Center](/microsoft-365/enterprise/office-365-network-mac-perf-overview?view=o365-21vianet) | modified |
-| 5/12/2021 | [Microsoft 365 network assessment](/microsoft-365/enterprise/office-365-network-mac-perf-score?view=o365-21vianet) | modified |
-| 5/12/2021 | AppFileEvents table in the advanced hunting schema | removed |
-| 5/12/2021 | [Get expert training on advanced hunting](/microsoft-365/security/defender/advanced-hunting-expert-training?view=o365-21vianet) | modified |
-| 5/12/2021 | [Migrate advanced hunting queries from Microsoft Defender for Endpoint](/microsoft-365/security/defender/advanced-hunting-migrate-from-mde?view=o365-21vianet) | modified |
-| 5/12/2021 | [Naming changes in the Microsoft 365 Defender advanced hunting schema](/microsoft-365/security/defender/advanced-hunting-schema-changes?view=o365-21vianet) | modified |
-| 5/12/2021 | [Data tables in the Microsoft 365 Defender advanced hunting schema](/microsoft-365/security/defender/advanced-hunting-schema-tables?view=o365-21vianet) | modified |
-| 5/13/2021 | [Set up Basic Audit in Microsoft 365](/microsoft-365/compliance/set-up-basic-audit?view=o365-21vianet) | renamed |
-| 5/13/2021 | [Remove license from shared mailbox](/microsoft-365/admin/email/remove-license-from-shared-mailbox?view=o365-21vianet) | modified |
-| 5/13/2021 | [Buy a domain name](/microsoft-365/admin/get-help-with-domains/buy-a-domain-name?view=o365-21vianet) | modified |
-| 5/13/2021 | [Assign licenses to users](/microsoft-365/admin/manage/assign-licenses-to-users?view=o365-21vianet) | modified |
-| 5/13/2021 | [Message center](/microsoft-365/admin/manage/message-center?view=o365-21vianet) | modified |
-| 5/13/2021 | [Unassign licenses from users](/microsoft-365/admin/manage/remove-licenses-from-users?view=o365-21vianet) | modified |
-| 5/13/2021 | [Set the password expiration policy for your organization](/microsoft-365/admin/manage/set-password-expiration-policy?view=o365-21vianet) | modified |
-| 5/13/2021 | [Quick help Deleted user](/microsoft-365/admin/misc/deleted-user?view=o365-21vianet) | modified |
-| 5/13/2021 | [Power BI in your organization](/microsoft-365/admin/misc/power-bi-in-your-organization?view=o365-21vianet) | modified |
-| 5/13/2021 | [Top 10 ways to secure Microsoft 365 for business plans](/microsoft-365/admin/security-and-compliance/secure-your-business-data?view=o365-21vianet) | modified |
-| 5/13/2021 | [Azure Information Protection support for Office 365 operated by 21Vianet](/microsoft-365/admin/services-in-china/parity-between-azure-information-protection?view=o365-21vianet) | modified |
-| 5/13/2021 | [Add a domain to Microsoft 365](/microsoft-365/admin/setup/add-domain?view=o365-21vianet) | modified |
-| 5/13/2021 | [Create distribution groups](/microsoft-365/admin/setup/create-distribution-lists?view=o365-21vianet) | modified |
-| 5/13/2021 | [Set up Microsoft 365 Apps for business](/microsoft-365/admin/setup/setup-apps-for-business?view=o365-21vianet) | modified |
-| 5/13/2021 | [Set up Microsoft 365 Business Basic](/microsoft-365/admin/setup/setup-business-basic?view=o365-21vianet) | modified |
-| 5/13/2021 | [Manage license requests](/microsoft-365/commerce/licenses/manage-license-requests?view=o365-21vianet) | modified |
-| 5/13/2021 | Microsoft Home Use Program frequently-asked questions (FAQ) | removed |
-| 5/13/2021 | [Use AllowSelfServicePurchase for the MSCommerce PowerShell module](/microsoft-365/commerce/subscriptions/allowselfservicepurchase-powershell?view=o365-21vianet) | modified |
-| 5/13/2021 | [Manage self-service purchases (Admins)](/microsoft-365/commerce/subscriptions/manage-self-service-purchases-admins?view=o365-21vianet) | modified |
-| 5/13/2021 | [Manage self-service purchases (Users)](/microsoft-365/commerce/subscriptions/manage-self-service-purchases-users?view=o365-21vianet) | modified |
-| 5/13/2021 | [Manage self-service sign-up subscriptions](/microsoft-365/commerce/subscriptions/manage-self-service-signup-subscriptions?view=o365-21vianet) | modified |
-| 5/13/2021 | Self-service purchase FAQ | removed |
-| 5/13/2021 | [Microsoft 365 auditing solutions](/microsoft-365/compliance/auditing-solutions-overview?view=o365-21vianet) | modified |
-| 5/13/2021 | [Keyword queries and search conditions for eDiscovery](/microsoft-365/compliance/keyword-queries-and-search-conditions?view=o365-21vianet) | modified |
-| 5/13/2021 | [Manage topics at scale in Microsoft Viva Topics](/microsoft-365/knowledge/scale-topics) | modified |
-| 5/13/2021 | [Step 1 - Stop an employee from logging in to Microsoft 365](/microsoft-365/admin/add-users/remove-former-employee-step-1?view=o365-21vianet) | modified |
-| 5/13/2021 | [Step 7 - Delete a former employee's user account](/microsoft-365/admin/add-users/remove-former-employee-step-7?view=o365-21vianet) | modified |
-| 5/13/2021 | [Remove a former employee - Overview](/microsoft-365/admin/add-users/remove-former-employee?view=o365-21vianet) | modified |
-| 5/13/2021 | [Get started with Teams](/microsoft-365/business-video/get-started-teams-small-business?view=o365-21vianet) | modified |
-| 5/13/2021 | [Payment information for Afghanistan](/microsoft-365/commerce/pay/afghanistan?view=o365-21vianet) | modified |
-| 5/13/2021 | [Payment information for Albania](/microsoft-365/commerce/pay/albania?view=o365-21vianet) | modified |
-| 5/13/2021 | [Payment information for Algeria](/microsoft-365/commerce/pay/algeria?view=o365-21vianet) | modified |
-| 5/13/2021 | [Payment information for Angola](/microsoft-365/commerce/pay/angola?view=o365-21vianet) | modified |
-| 5/13/2021 | [Payment information for Argentina](/microsoft-365/commerce/pay/argentina?view=o365-21vianet) | modified |
-| 5/13/2021 | [Payment information for Armenia](/microsoft-365/commerce/pay/armenia?view=o365-21vianet) | modified |
-| 5/13/2021 | [Payment information for Australia](/microsoft-365/commerce/pay/australia?view=o365-21vianet) | modified |
-| 5/13/2021 | [Payment information for Austria](/microsoft-365/commerce/pay/austria?view=o365-21vianet) | modified |
-| 5/13/2021 | [Payment information for Azerbaijan](/microsoft-365/commerce/pay/azerbaijan?view=o365-21vianet) | modified |
-| 5/13/2021 | [Payment information for Bahamas](/microsoft-365/commerce/pay/bahamas?view=o365-21vianet) | modified |
-| 5/13/2021 | [Payment information for Bahrain](/microsoft-365/commerce/pay/bahrain?view=o365-21vianet) | modified |
-| 5/13/2021 | [Payment information for Bangladesh](/microsoft-365/commerce/pay/bangladesh?view=o365-21vianet) | modified |
-| 5/13/2021 | [Payment information for Barbados](/microsoft-365/commerce/pay/barbados?view=o365-21vianet) | modified |
-| 5/13/2021 | [Payment information for Belarus](/microsoft-365/commerce/pay/belarus?view=o365-21vianet) | modified |
-| 5/13/2021 | [Payment information for Belgium](/microsoft-365/commerce/pay/belgium?view=o365-21vianet) | modified |
-| 5/13/2021 | [Payment information for Belize](/microsoft-365/commerce/pay/belize?view=o365-21vianet) | modified |
-| 5/13/2021 | [Payment information for Bermuda](/microsoft-365/commerce/pay/bermuda?view=o365-21vianet) | modified |
-| 5/13/2021 | [Payment information for Bolivia](/microsoft-365/commerce/pay/bolivia?view=o365-21vianet) | modified |
-| 5/13/2021 | [Payment information for Bosnia and Herzegovina](/microsoft-365/commerce/pay/bosnia-and-herzegovina?view=o365-21vianet) | modified |
-| 5/13/2021 | [Payment information for Botswana](/microsoft-365/commerce/pay/botswana?view=o365-21vianet) | modified |
-| 5/13/2021 | [Payment information for Brazil](/microsoft-365/commerce/pay/brazil?view=o365-21vianet) | modified |
-| 5/13/2021 | [Payment information for Brunei](/microsoft-365/commerce/pay/brunei?view=o365-21vianet) | modified |
-| 5/13/2021 | [Payment information for Bulgaria](/microsoft-365/commerce/pay/bulgaria?view=o365-21vianet) | modified |
-| 5/13/2021 | [Payment information for Cameroon](/microsoft-365/commerce/pay/cameroon?view=o365-21vianet) | modified |
-| 5/13/2021 | [Payment information for Canada](/microsoft-365/commerce/pay/canada?view=o365-21vianet) | modified |
-| 5/13/2021 | [Payment information for Cape Verde](/microsoft-365/commerce/pay/cape-verde?view=o365-21vianet) | modified |
-| 5/13/2021 | [Payment information for Cayman Islands](/microsoft-365/commerce/pay/cayman-islands?view=o365-21vianet) | modified |
-| 5/13/2021 | [Payment information for Chile](/microsoft-365/commerce/pay/chile?view=o365-21vianet) | modified |
-| 5/13/2021 | [Payment information for China (PRC)](/microsoft-365/commerce/pay/china-prc?view=o365-21vianet) | modified |
-| 5/13/2021 | [Payment information for Colombia](/microsoft-365/commerce/pay/colombia?view=o365-21vianet) | modified |
-| 5/13/2021 | [Payment information for Costa Rica](/microsoft-365/commerce/pay/costa-rica?view=o365-21vianet) | modified |
-| 5/13/2021 | [Payment information for C├┤te d'Ivoire](/microsoft-365/commerce/pay/cote-divoire?view=o365-21vianet) | modified |
-| 5/13/2021 | [Payment information for Croatia](/microsoft-365/commerce/pay/croatia?view=o365-21vianet) | modified |
-| 5/13/2021 | [Payment information for Curacao](/microsoft-365/commerce/pay/curacao?view=o365-21vianet) | modified |
-| 5/13/2021 | [Payment information for Cyprus](/microsoft-365/commerce/pay/cyprus?view=o365-21vianet) | modified |
-| 5/13/2021 | [Payment information for Czech Republic](/microsoft-365/commerce/pay/czech-republic?view=o365-21vianet) | modified |
-| 5/13/2021 | [Payment information for Democratic Republic of Congo](/microsoft-365/commerce/pay/democratic-republic-of-congo?view=o365-21vianet) | modified |
-| 5/13/2021 | [Payment information for Denmark](/microsoft-365/commerce/pay/denmark?view=o365-21vianet) | modified |
-| 5/13/2021 | [Payment information for Dominican Republic](/microsoft-365/commerce/pay/dominican-republic?view=o365-21vianet) | modified |
-| 5/13/2021 | [Payment information for Ecuador](/microsoft-365/commerce/pay/ecuador?view=o365-21vianet) | modified |
-| 5/13/2021 | [Payment information for Egypt](/microsoft-365/commerce/pay/egypt?view=o365-21vianet) | modified |
-| 5/13/2021 | [Payment information for El Salvador](/microsoft-365/commerce/pay/el-salvador?view=o365-21vianet) | modified |
-| 5/13/2021 | [Payment information for Estonia](/microsoft-365/commerce/pay/estonia?view=o365-21vianet) | modified |
-| 5/13/2021 | [Payment information for Ethiopia](/microsoft-365/commerce/pay/ethiopia?view=o365-21vianet) | modified |
-| 5/13/2021 | [Payment information for Faroe Islands](/microsoft-365/commerce/pay/faroe-islands?view=o365-21vianet) | modified |
-| 5/13/2021 | [Payment information for Fiji](/microsoft-365/commerce/pay/fiji?view=o365-21vianet) | modified |
-| 5/13/2021 | [Payment information for Finland](/microsoft-365/commerce/pay/finland?view=o365-21vianet) | modified |
-| 5/13/2021 | [Payment information for France](/microsoft-365/commerce/pay/france?view=o365-21vianet) | modified |
-| 5/13/2021 | [Payment information for French Guiana](/microsoft-365/commerce/pay/french-guiana?view=o365-21vianet) | modified |
-| 5/13/2021 | [Payment information for Georgia](/microsoft-365/commerce/pay/georgia?view=o365-21vianet) | modified |
-| 5/13/2021 | [Payment information for Germany](/microsoft-365/commerce/pay/germany?view=o365-21vianet) | modified |
-| 5/13/2021 | [Payment information for Ghana](/microsoft-365/commerce/pay/ghana?view=o365-21vianet) | modified |
-| 5/13/2021 | [Payment information for Greece](/microsoft-365/commerce/pay/greece?view=o365-21vianet) | modified |
-| 5/13/2021 | [Payment information for Grenada](/microsoft-365/commerce/pay/grenada?view=o365-21vianet) | modified |
-| 5/13/2021 | [Payment information for Guadeloupe](/microsoft-365/commerce/pay/guadeloupe?view=o365-21vianet) | modified |
-| 5/13/2021 | [Payment information for Guam](/microsoft-365/commerce/pay/guam?view=o365-21vianet) | modified |
-| 5/13/2021 | [Payment information for Guatemala](/microsoft-365/commerce/pay/guatemala?view=o365-21vianet) | modified |
-| 5/13/2021 | [Payment information for Guyana](/microsoft-365/commerce/pay/guyana?view=o365-21vianet) | modified |
-| 5/13/2021 | [Payment information for Haiti](/microsoft-365/commerce/pay/haiti?view=o365-21vianet) | modified |
-| 5/13/2021 | [Payment information for Honduras](/microsoft-365/commerce/pay/honduras?view=o365-21vianet) | modified |
-| 5/13/2021 | [Payment information for Hong Kong](/microsoft-365/commerce/pay/hong-kong?view=o365-21vianet) | modified |
-| 5/13/2021 | [Payment information for Hungary](/microsoft-365/commerce/pay/hungary?view=o365-21vianet) | modified |
-| 5/13/2021 | [Payment information for Iceland](/microsoft-365/commerce/pay/iceland?view=o365-21vianet) | modified |
-| 5/13/2021 | [Payment information for India](/microsoft-365/commerce/pay/india?view=o365-21vianet) | modified |
-| 5/13/2021 | [Payment information for Indonesia](/microsoft-365/commerce/pay/indonesia?view=o365-21vianet) | modified |
-| 5/13/2021 | [Payment information for Iraq](/microsoft-365/commerce/pay/iraq?view=o365-21vianet) | modified |
-| 5/13/2021 | [Payment information for Ireland](/microsoft-365/commerce/pay/ireland?view=o365-21vianet) | modified |
-| 5/13/2021 | [Payment information for Israel](/microsoft-365/commerce/pay/israel?view=o365-21vianet) | modified |
-| 5/13/2021 | [Payment information for Italy](/microsoft-365/commerce/pay/italy?view=o365-21vianet) | modified |
-| 5/13/2021 | [Payment information for Jamaica](/microsoft-365/commerce/pay/jamaica?view=o365-21vianet) | modified |
-| 5/13/2021 | [Payment information for Japan](/microsoft-365/commerce/pay/japan?view=o365-21vianet) | modified |
-| 5/13/2021 | [Payment information for Jordan](/microsoft-365/commerce/pay/jordan?view=o365-21vianet) | modified |
-| 5/13/2021 | [Payment information for Kazakhstan](/microsoft-365/commerce/pay/kazakhstan?view=o365-21vianet) | modified |
-| 5/13/2021 | [Payment information for Kenya](/microsoft-365/commerce/pay/kenya?view=o365-21vianet) | modified |
-| 5/13/2021 | [Payment information for Korea](/microsoft-365/commerce/pay/korea?view=o365-21vianet) | modified |
-| 5/13/2021 | [Payment information for Kuwait](/microsoft-365/commerce/pay/kuwait?view=o365-21vianet) | modified |
-| 5/13/2021 | [Payment information for Kyrgyzstan](/microsoft-365/commerce/pay/kyrgyzstan?view=o365-21vianet) | modified |
-| 5/13/2021 | [Payment information for Latvia](/microsoft-365/commerce/pay/latvia?view=o365-21vianet) | modified |
-| 5/13/2021 | [Payment information for Lebanon](/microsoft-365/commerce/pay/lebanon?view=o365-21vianet) | modified |
-| 5/13/2021 | [Payment information for Libya](/microsoft-365/commerce/pay/libya?view=o365-21vianet) | modified |
-| 5/13/2021 | [Payment information for Liechtenstein](/microsoft-365/commerce/pay/liechtenstein?view=o365-21vianet) | modified |
-| 5/13/2021 | [Payment information for Lithuania](/microsoft-365/commerce/pay/lithuania?view=o365-21vianet) | modified |
-| 5/13/2021 | [Payment information for Luxembourg](/microsoft-365/commerce/pay/luxembourg?view=o365-21vianet) | modified |
-| 5/13/2021 | [Payment information for Macao](/microsoft-365/commerce/pay/macao?view=o365-21vianet) | modified |
-| 5/13/2021 | [Payment information for Macedonia, Former Yugoslav Republic of](/microsoft-365/commerce/pay/macedonia?view=o365-21vianet) | modified |
-| 5/13/2021 | [Payment information for Malaysia](/microsoft-365/commerce/pay/malaysia?view=o365-21vianet) | modified |
-| 5/13/2021 | [Payment information for Malta](/microsoft-365/commerce/pay/malta?view=o365-21vianet) | modified |
-| 5/13/2021 | [Payment information for Mauritius](/microsoft-365/commerce/pay/mauritius?view=o365-21vianet) | modified |
-| 5/13/2021 | [Payment information for Mexico](/microsoft-365/commerce/pay/mexico?view=o365-21vianet) | modified |
-| 5/13/2021 | [Payment information for Moldova](/microsoft-365/commerce/pay/moldova?view=o365-21vianet) | modified |
-| 5/13/2021 | [Payment information for Monaco](/microsoft-365/commerce/pay/monaco?view=o365-21vianet) | modified |
-| 5/13/2021 | [Payment information for Mongolia](/microsoft-365/commerce/pay/mongolia?view=o365-21vianet) | modified |
-| 5/13/2021 | [Payment information for Montenegro](/microsoft-365/commerce/pay/montenegro?view=o365-21vianet) | modified |
-| 5/13/2021 | [Payment information for Morocco](/microsoft-365/commerce/pay/morocco?view=o365-21vianet) | modified |
-| 5/13/2021 | [Payment information for Namibia](/microsoft-365/commerce/pay/namibia?view=o365-21vianet) | modified |
-| 5/13/2021 | [Payment information for Nepal](/microsoft-365/commerce/pay/nepal?view=o365-21vianet) | modified |
-| 5/13/2021 | [Payment information for Netherlands](/microsoft-365/commerce/pay/netherlands?view=o365-21vianet) | modified |
-| 5/13/2021 | [Payment information for New Zealand](/microsoft-365/commerce/pay/new-zealand?view=o365-21vianet) | modified |
-| 5/13/2021 | [Payment information for Nicaragua](/microsoft-365/commerce/pay/nicaragua?view=o365-21vianet) | modified |
-| 5/13/2021 | [Payment information for Nigeria](/microsoft-365/commerce/pay/nigeria?view=o365-21vianet) | modified |
-| 5/13/2021 | [Payment information for Norway](/microsoft-365/commerce/pay/norway?view=o365-21vianet) | modified |
-| 5/13/2021 | [Payment information for Oman](/microsoft-365/commerce/pay/oman?view=o365-21vianet) | modified |
-| 5/13/2021 | [Payment information for Pakistan](/microsoft-365/commerce/pay/pakistan?view=o365-21vianet) | modified |
-| 5/13/2021 | [Payment information for Palestinian Authority](/microsoft-365/commerce/pay/palestinian-authority?view=o365-21vianet) | modified |
-| 5/13/2021 | [Payment information for Panama](/microsoft-365/commerce/pay/panama?view=o365-21vianet) | modified |
-| 5/13/2021 | [Payment information for Paraguay](/microsoft-365/commerce/pay/paraguay?view=o365-21vianet) | modified |
-| 5/13/2021 | [Payment information for Peru](/microsoft-365/commerce/pay/peru?view=o365-21vianet) | modified |
-| 5/13/2021 | [Payment information for Philippines](/microsoft-365/commerce/pay/philippines?view=o365-21vianet) | modified |
-| 5/13/2021 | [Payment information for Poland](/microsoft-365/commerce/pay/poland?view=o365-21vianet) | modified |
-| 5/13/2021 | [Payment information for Portugal](/microsoft-365/commerce/pay/portugal?view=o365-21vianet) | modified |
-| 5/13/2021 | [Payment information for Puerto Rico](/microsoft-365/commerce/pay/puerto-rico?view=o365-21vianet) | modified |
-| 5/13/2021 | [Payment information for Qatar](/microsoft-365/commerce/pay/qatar?view=o365-21vianet) | modified |
-| 5/13/2021 | [Payment information for Romania](/microsoft-365/commerce/pay/romania?view=o365-21vianet) | modified |
-| 5/13/2021 | [Payment information for Russia](/microsoft-365/commerce/pay/russia?view=o365-21vianet) | modified |
-| 5/13/2021 | [Payment information for Rwanda](/microsoft-365/commerce/pay/rwanda?view=o365-21vianet) | modified |
-| 5/13/2021 | [Payment information for Saint Kitts and Nevis](/microsoft-365/commerce/pay/saint-kitts-and-nevis?view=o365-21vianet) | modified |
-| 5/13/2021 | [Payment information for Saint Lucia](/microsoft-365/commerce/pay/saint-lucia?view=o365-21vianet) | modified |
-| 5/13/2021 | [Payment information for Saint Vincent and the Grenadines](/microsoft-365/commerce/pay/saint-vincent-and-the-grenadines?view=o365-21vianet) | modified |
-| 5/13/2021 | [Payment information for Saudi Arabia](/microsoft-365/commerce/pay/saudi-arabia?view=o365-21vianet) | modified |
-| 5/13/2021 | [Payment information for Senegal](/microsoft-365/commerce/pay/senegal?view=o365-21vianet) | modified |
-| 5/13/2021 | [Payment information for Serbia](/microsoft-365/commerce/pay/serbia?view=o365-21vianet) | modified |
-| 5/13/2021 | [Payment information for Singapore](/microsoft-365/commerce/pay/singapore?view=o365-21vianet) | modified |
-| 5/13/2021 | [Payment information for Slovakia](/microsoft-365/commerce/pay/slovakia?view=o365-21vianet) | modified |
-| 5/13/2021 | [Payment information for Slovenia](/microsoft-365/commerce/pay/slovenia?view=o365-21vianet) | modified |
-| 5/13/2021 | [Payment information for South Africa](/microsoft-365/commerce/pay/south-africa?view=o365-21vianet) | modified |
-| 5/13/2021 | [Payment information for Spain](/microsoft-365/commerce/pay/spain?view=o365-21vianet) | modified |
-| 5/13/2021 | [Payment information for Sri Lanka](/microsoft-365/commerce/pay/sri-lanka?view=o365-21vianet) | modified |
-| 5/13/2021 | [Payment information for Suriname](/microsoft-365/commerce/pay/suriname?view=o365-21vianet) | modified |
-| 5/13/2021 | [Payment information for Sweden](/microsoft-365/commerce/pay/sweden?view=o365-21vianet) | modified |
-| 5/13/2021 | [Payment information for Switzerland](/microsoft-365/commerce/pay/switzerland?view=o365-21vianet) | modified |
-| 5/13/2021 | [Payment information for Taiwan](/microsoft-365/commerce/pay/taiwan?view=o365-21vianet) | modified |
-| 5/13/2021 | [Payment information for Tajikistan](/microsoft-365/commerce/pay/tajikistan?view=o365-21vianet) | modified |
-| 5/13/2021 | [Payment information for Tanzania](/microsoft-365/commerce/pay/tanzania?view=o365-21vianet) | modified |
-| 5/13/2021 | [Payment information for Thailand](/microsoft-365/commerce/pay/thailand?view=o365-21vianet) | modified |
-| 5/13/2021 | [Payment information for Trinidad and Tobago](/microsoft-365/commerce/pay/trinidad-and-tobago?view=o365-21vianet) | modified |
-| 5/13/2021 | [Payment information for Tunisia](/microsoft-365/commerce/pay/tunisia?view=o365-21vianet) | modified |
-| 5/13/2021 | [Payment information for Turkey](/microsoft-365/commerce/pay/turkey?view=o365-21vianet) | modified |
-| 5/13/2021 | [Payment information for Turkmenistan](/microsoft-365/commerce/pay/turkmenistan?view=o365-21vianet) | modified |
-| 5/13/2021 | [Payment information for Uganda](/microsoft-365/commerce/pay/uganda?view=o365-21vianet) | modified |
-| 5/13/2021 | [Payment information for Ukraine](/microsoft-365/commerce/pay/ukraine?view=o365-21vianet) | modified |
-| 5/13/2021 | [Payment information for United Arab Emirates](/microsoft-365/commerce/pay/united-arab-emirates?view=o365-21vianet) | modified |
-| 5/13/2021 | [Payment information for United Kingdom](/microsoft-365/commerce/pay/united-kingdom?view=o365-21vianet) | modified |
-| 5/13/2021 | [Payment information for United States](/microsoft-365/commerce/pay/united-states?view=o365-21vianet) | modified |
-| 5/13/2021 | [Payment information for Uruguay](/microsoft-365/commerce/pay/uruguay?view=o365-21vianet) | modified |
-| 5/13/2021 | [Payment information for Uzbekistan](/microsoft-365/commerce/pay/uzbekistan?view=o365-21vianet) | modified |
-| 5/13/2021 | [Payment information for Venezuela](/microsoft-365/commerce/pay/venezuela?view=o365-21vianet) | modified |
-| 5/13/2021 | [Payment information for Vietnam](/microsoft-365/commerce/pay/vietnam?view=o365-21vianet) | modified |
-| 5/13/2021 | [Payment information for Virgin Islands, US](/microsoft-365/commerce/pay/virgin-islands?view=o365-21vianet) | modified |
-| 5/13/2021 | [Payment information for Yemen](/microsoft-365/commerce/pay/yemen?view=o365-21vianet) | modified |
-| 5/13/2021 | [Payment information for Zambia](/microsoft-365/commerce/pay/zambia?view=o365-21vianet) | modified |
-| 5/13/2021 | [Payment information for Zimbabwe](/microsoft-365/commerce/pay/zimbabwe?view=o365-21vianet) | modified |
-| 5/13/2021 | [Disposition of content](/microsoft-365/compliance/disposition?view=o365-21vianet) | modified |
-| 5/13/2021 | [Manage Microsoft Defender Antivirus updates and apply baselines](/microsoft-365/security/defender-endpoint/manage-updates-baselines-microsoft-defender-antivirus?view=o365-21vianet) | modified |
-| 5/13/2021 | [Microsoft Defender Antivirus on Windows Server](/microsoft-365/security/defender-endpoint/microsoft-defender-antivirus-on-windows-server?view=o365-21vianet) | modified |
-| 5/13/2021 | [Switch to Microsoft Defender for Endpoint - Onboard](/microsoft-365/security/defender-endpoint/switch-to-microsoft-defender-onboard?view=o365-21vianet) | modified |
-| 5/13/2021 | [Switch to Microsoft Defender for Endpoint - Prepare](/microsoft-365/security/defender-endpoint/switch-to-microsoft-defender-prepare?view=o365-21vianet) | modified |
-| 5/13/2021 | [Switch to Microsoft Defender for Endpoint - Setup](/microsoft-365/security/defender-endpoint/switch-to-microsoft-defender-setup?view=o365-21vianet) | modified |
-| 5/14/2021 | [Delete a user from your organization](/microsoft-365/admin/add-users/delete-a-user?view=o365-21vianet) | modified |
-| 5/14/2021 | [Find and fix issues after adding your domain or DNS records](/microsoft-365/admin/get-help-with-domains/find-and-fix-issues?view=o365-21vianet) | modified |
-| 5/14/2021 | [Assign licenses to users](/microsoft-365/admin/manage/assign-licenses-to-users?view=o365-21vianet) | modified |
-| 5/14/2021 | [Unassign licenses from users](/microsoft-365/admin/manage/remove-licenses-from-users?view=o365-21vianet) | modified |
-| 5/14/2021 | [Search for tasks or documentation in the Microsoft 365 admin center](/microsoft-365/admin/manage/search-in-the-mac?view=o365-21vianet) | modified |
-| 5/14/2021 | [Add, change, or delete a subscription advisor partner](/microsoft-365/admin/misc/add-partner?view=o365-21vianet) | modified |
-| 5/14/2021 | [Cortana in Microsoft 365](/microsoft-365/admin/misc/cortana-integration?view=o365-21vianet) | modified |
-| 5/14/2021 | [Quick help Deleted user](/microsoft-365/admin/misc/deleted-user?view=o365-21vianet) | modified |
-| 5/14/2021 | [Manage and monitor priority accounts](/microsoft-365/admin/setup/priority-accounts?view=o365-21vianet) | modified |
-| 5/14/2021 | [What's new in the Microsoft 365 admin center?](/microsoft-365/admin/whats-new-in-preview?v modified |
-| 5/14/2021 | [Microsoft 365 admin center - Overview](/microsoft-365/business-video/admin-center-orldwide) | modified |
-| 5/14/2021 | [Create sensitivity labels](/microsoft-365/business-video/create-sensitivity-labels?view=o365-worldwide) | modified |
-| 5/14/2021 | [Manage payment methods](/microsoft-365/commerce/billing-and-payments/manage-payment-methods?view=o365-21vianet) | modified |
-| 5/14/2021 | [Close your account](/microsoft-365/commerce/close-your-account?view=o365-21vianet) | modified |
-| 5/14/2021 | [Buy or remove licenses](/microsoft-365/commerce/licenses/buy-licenses?view=o365-21vianet) | modified |
-| 5/14/2021 | [Manage licenses for devices](/microsoft-365/commerce/licenses/manage-licenses-for-devices?view=o365-21vianet) | modified |
-| 5/14/2021 | [Cancel your subscription](/microsoft-365/commerce/subscriptions/cancel-your-subscription?view=o365-21vianet) | modified |
-| 5/14/2021 | [Change Microsoft 365 for business plans manually](/microsoft-365/commerce/subscriptions/change-plans-manually?view=o365-21vianet) | modified |
-| 5/14/2021 | [Manage self-service purchases (Users)](/microsoft-365/commerce/subscriptions/manage-self-service-purchases-users?view=o365-21vianet) | modified |
-| 5/14/2021 | [Reactivate your subscription](/microsoft-365/commerce/subscriptions/reactivate-your-subscription?view=o365-21vianet) | modified |
-| 5/14/2021 | [Feature reference for Content search](/microsoft-365/compliance/content-search-reference?view=o365-21vianet) | modified |
-| 5/14/2021 | [Differences between estimated and actual eDiscovery search results](/microsoft-365/compliance/differences-between-estimated-and-actual-ediscovery-search-results?view=o365-21vianet) | modified |
-| 5/14/2021 | [Troubleshoot eDiscovery hold errors](/microsoft-365/compliance/hold-distribution-errors?view=o365-21vianet) | modified |
-| 5/14/2021 | [Partially indexed items in Content Search and other eDiscovery tools](/microsoft-365/compliance/partially-indexed-items-in-content-search?view=o365-21vianet) | modified |
-| 5/14/2021 | [Preview the results of an eDiscovery search](/microsoft-365/compliance/preview-ediscovery-search-results?view=o365-21vianet) | modified |
-| 5/14/2021 | [Search for and delete email messages in your organization](/microsoft-365/compliance/search-for-and-delete-messages-in-your-organization?view=o365-21vianet) | modified |
-| 5/14/2021 | [Monitor Microsoft 365 connectivity](/microsoft-365/enterprise/monitor-connectivity?view=o365-21vianet) | modified |
-| 5/14/2021 | [What's new in Microsoft Defender for Endpoint on Linux](/microsoft-365/security/defender-endpoint/linux-whatsnew?view=o365-21vianet) | modified |
-| 5/14/2021 | [End of lifecycle options for groups, teams, and Yammer](/microsoft-365/solutions/end-life-cycle-groups-teams-sites-yammer?view=o365-21vianet) | modified |
-| 5/14/2021 | [Plan organization and lifecycle governance for Microsoft 365 groups and Microsoft Teams](/microsoft-365/solutions/plan-organization-lifecycle-governance?view=o365-21vianet) | modified |
-| 5/14/2021 | [What subscription do I have?](/microsoft-365/admin/admin-overview/what-subscription-do-i-have?view=o365-21vianet) | modified |
-| 5/14/2021 | [Office 365 is now Microsoft 365](/microsoft-365/admin/new-subscription-names?view=o365-21vianet) | modified |
-| 5/14/2021 | [Change your billing frequency](/microsoft-365/commerce/billing-and-payments/change-payment-frequency?view=o365-21vianet) | modified |
-| 5/14/2021 | [Understand billing profiles](/microsoft-365/commerce/billing-and-payments/manage-billing-profiles?view=o365-21vianet) | modified |
-| 5/14/2021 | [Understand your bill or invoice](/microsoft-365/commerce/billing-and-payments/understand-your-invoice?view=o365-21vianet) | modified |
-| 5/14/2021 | [Understand your bill or invoice for Microsoft 365 for business](/microsoft-365/commerce/billing-and-payments/understand-your-invoice2?view=o365-21vianet) | modified |
-| 5/14/2021 | [Business subscriptions and billing documentation # < 60 chars](/microsoft-365/commerce/index?view=o365-21vianet) | modified |
-| 5/14/2021 | [Understand billing accounts](/microsoft-365/commerce/manage-billing-accounts?view=o365-21vianet) | modified |
-| 5/14/2021 | [Use AllowSelfServicePurchase for the MSCommerce PowerShell module](/microsoft-365/commerce/subscriptions/allowselfservicepurchase-powershell?view=o365-21vianet) | modified |
-| 5/14/2021 | [Automatically apply a sensitivity label to content in Microsoft 365](/microsoft-365/compliance/apply-sensitivity-label-automatically?view=o365-21vianet) | modified |
-| 5/14/2021 | [Microsoft 365 auditing solutions](/microsoft-365/compliance/auditing-solutions-overview?view=o365-21vianet) | modified |
-| 5/14/2021 | [Close, reopen, and delete Core eDiscovery cases](/microsoft-365/compliance/close-reopen-delete-core-ediscovery-cases?view=o365-21vianet) | modified |
-| 5/14/2021 | [Create a custom sensitive information type using PowerShell](/microsoft-365/compliance/create-a-custom-sensitive-information-type-in-scc-powershell?view=o365-21vianet) | modified |
-| 5/14/2021 | [Create, test, and tune a DLP policy](/microsoft-365/compliance/create-test-tune-dlp-policy?view=o365-21vianet) | modified |
-| 5/14/2021 | [Export Content search results](/microsoft-365/compliance/export-search-results?view=o365-21vianet) | modified |
-| 5/14/2021 | [Limits for Content search and Core eDiscovery in the compliance center](/microsoft-365/compliance/limits-for-content-search?view=o365-21vianet) | modified |
-| 5/14/2021 | [Search the audit log in the Security & Compliance Center](/microsoft-365/compliance/search-the-audit-log-in-security-and-compliance?view=o365-21vianet) | modified |
-| 5/14/2021 | [Introduction to Microsoft SharePoint Syntex](/microsoft-365/contentunderstanding/index) | modified |
-| 5/14/2021 | [Introduction to Microsoft Viva Topics](/microsoft-365/knowledge/index) | modified |
-| 5/14/2021 | [Use attack surface reduction rules to prevent malware infection](/microsoft-365/security/defender-endpoint/attack-surface-reduction?view=o365-21vianet) | modified |
-| 5/14/2021 | [Configure scanning options for Microsoft Defender Antivirus](/microsoft-365/security/defender-endpoint/configure-advanced-scan-types-microsoft-defender-antivirus?view=o365-21vianet) | modified |
-| 5/14/2021 | [Enable attack surface reduction rules](/microsoft-365/security/defender-endpoint/enable-attack-surface-reduction?view=o365-21vianet) | modified |
-| 5/14/2021 | [Migrate from McAfee to Microsoft Defender for Endpoint](/microsoft-365/security/defender-endpoint/mcafee-to-microsoft-defender-migration?view=o365-21vianet) | modified |
-| 5/14/2021 | [McAfee to Microsoft Defender for Endpoint - Onboard](/microsoft-365/security/defender-endpoint/mcafee-to-microsoft-defender-onboard?view=o365-21vianet) | modified |
-| 5/14/2021 | [McAfee to Microsoft Defender for Endpoint - Prepare](/microsoft-365/security/defender-endpoint/mcafee-to-microsoft-defender-prepare?view=o365-21vianet) | modified |
-| 5/14/2021 | [McAfee to Microsoft Defender for Endpoint - Setup](/microsoft-365/security/defender-endpoint/mcafee-to-microsoft-defender-setup?view=o365-21vianet) | modified |
-| 5/14/2021 | [Microsoft Defender Antivirus on Windows Server](/microsoft-365/security/defender-endpoint/microsoft-defender-antivirus-on-windows-server?view=o365-21vianet) | modified |
-| 5/14/2021 | [Make the switch from a non-Microsoft endpoint solution to Microsoft Defender for Endpoint](/microsoft-365/security/defender-endpoint/switch-to-microsoft-defender-migration?view=o365-21vianet) | modified |
-| 5/14/2021 | [Switch to Microsoft Defender for Endpoint - Onboard](/microsoft-365/security/defender-endpoint/switch-to-microsoft-defender-onboard?view=o365-21vianet) | modified |
-| 5/14/2021 | [Switch to Microsoft Defender for Endpoint - Prepare](/microsoft-365/security/defender-endpoint/switch-to-microsoft-defender-prepare?view=o365-21vianet) | modified |
-| 5/14/2021 | [Switch to Microsoft Defender for Endpoint - Setup](/microsoft-365/security/defender-endpoint/switch-to-microsoft-defender-setup?view=o365-21vianet) | modified |
-| 5/14/2021 | [Symantec to Microsoft Defender for Endpoint - Phase 3, Onboarding](/microsoft-365/security/defender-endpoint/symantec-to-microsoft-defender-atp-onboard?view=o365-21vianet) | modified |
-| 5/14/2021 | [Symantec to Microsoft Defender for Endpoint - Phase 1, Preparing](/microsoft-365/security/defender-endpoint/symantec-to-microsoft-defender-atp-prepare?view=o365-21vianet) | modified |
-| 5/14/2021 | [Symantec to Microsoft Defender for Endpoint - Phase 2, Setting Up](/microsoft-365/security/defender-endpoint/symantec-to-microsoft-defender-atp-setup?view=o365-21vianet) | modified |
-| 5/14/2021 | [Migrate from Symantec to Microsoft Defender for Endpoint](/microsoft-365/security/defender-endpoint/symantec-to-microsoft-defender-endpoint-migration?view=o365-21vianet) | modified |
--
-## Week of May 03, 2021
--
-| Published On |Topic title | Change |
-|||--|
-| 5/3/2021 | [Request a credit for Withholding Tax on your account (India customers)](/microsoft-365/commerce/billing-and-payments/withholding-tax-credit-india?view=o365-worldwide) | added |
-| 5/3/2021 | [Validate new devices](/microsoft-365/managed-desktop/get-started/valida21vianet) | added |
-| 5/3/2021 | [Find docs and training](/microsoft-365/business-video/find-65-worldwide) | modified |
-| 5/3/2021 | [Get support](/microsoft-365/business-video/get-help-support?view=o365-worldwide) | modified |
-| 5/3/2021 | [Microsoft 365 small business training # < 60 chars](/microsoft-365/business-video/index?view=o365-21vianet) | modified |
-| 5/3/2021 | [Get started with records management in Microsoft 365](/microsoft-365/compliance/get-started-with-records-management?view=o365-21vianet) | modified |
-| 5/3/2021 | [Get started with retention policies and retention labels](/microsoft-365/compliance/get-started-with-retention?view=o365-21vianet) | modified |
-| 5/3/2021 | [Records Management in Microsoft 365](/microsoft-365/compliance/records-management?view=o365-21vianet) | modified |
-| 5/3/2021 | [Learn about retention policies & labels to automatically retain or delete content](/microsoft-365/compliance/retention?view=o365-21vianet) | modified |
-| 5/3/2021 | [Office 365 US Government DOD endpoints](/microsoft-365/enterprise/microsoft-365-u-s-government-dod-endpoints?view=o365-21vianet) | modified |
-| 5/3/2021 | [Office 365 URLs and IP address ranges](/microsoft-365/enterprise/urls-and-ip-address-ranges?view=o365-21vianet) | modified |
-| 5/3/2021 | [Order devices in Microsoft Managed Desktop](/microsoft-365/managed-desktop/get-started/devices?view=o365-21vianet) | modified |
-| 5/3/2021 | [Register new devices yourself](/microsoft-365/managed-desktop/get-started/register-devices-self?view=o365-21vianet) | modified |
-| 5/3/2021 | [Set up devices for Microsoft Managed Desktop](/microsoft-365/managed-desktop/get-started/set-up-devices?view=o365-21vianet) | modified |
-| 5/3/2021 | [Is Microsoft Managed Desktop right for you?](/microsoft-365/managed-desktop/intro/index?view=o365-21vianet) | modified |
-| 5/3/2021 | [Exceptions to the service plan](/microsoft-365/managed-desktop/service-description/customizing?view=o365-21vianet) | modified |
-| 5/3/2021 | [Device images](/microsoft-365/managed-desktop/service-description/device-images?view=o365-21vianet) | modified |
-| 5/3/2021 | [Microsoft Managed Desktop product lifecycle](/microsoft-365/managed-desktop/service-description/device-lifecycle?view=o365-21vianet) | modified |
-| 5/3/2021 | [Microsoft Managed Desktop devices](/microsoft-365/managed-desktop/service-description/device-list?view=o365-21vianet) | modified |
-| 5/3/2021 | [Device requirements](/microsoft-365/managed-desktop/service-description/device-requirements?view=o365-21vianet) | modified |
-| 5/3/2021 | [Microsoft Managed Desktop device services](/microsoft-365/managed-desktop/service-description/device-services?view=o365-21vianet) | modified |
-| 5/3/2021 | [Service changes and communication](/microsoft-365/managed-desktop/service-description/servicechanges?view=o365-21vianet) | modified |
-| 5/3/2021 | [Microsoft Defender for Endpoint API release notes](/microsoft-365/security/defender-endpoint/api-release-notes?view=o365-21vianet) | modified |
-| 5/3/2021 | [Supported Microsoft Defender for Endpoint APIs](/microsoft-365/security/defender-endpoint/exposed-apis-list?view=o365-21vianet) | modified |
-| 5/3/2021 | [List all remediation activities](/microsoft-365/security/defender-endpoint/get-remediation-all-activities?view=o365-21vianet) | modified |
-| 5/3/2021 | [List exposed devices of one remediation activity](/microsoft-365/security/defender-endpoint/get-remediation-exposed-devices-activities?view=o365-21vianet) | modified |
-| 5/3/2021 | [Remediation activity methods and properties](/microsoft-365/security/defender-endpoint/get-remediation-methods-properties?view=o365-21vianet) | modified |
-| 5/3/2021 | [Get one remediation activity by Id](/microsoft-365/security/defender-endpoint/get-remediation-one-activity?view=o365-21vianet) | modified |
-| 5/3/2021 | [Advanced hunting quotas and usage parameters in Microsoft 365 Defender](/microsoft-365/security/defender/advanced-hunting-limits?view=o365-21vianet) | modified |
-| 5/3/2021 | [Go to the Action center to view and approve your automated investigation and remediation tasks](/microsoft-365/security/defender/m365d-action-center?view=o365-21vianet) | modified |
-| 5/3/2021 | [View and manage actions in the Action center](/microsoft-365/security/defender/m365d-autoir-actions?view=o365-21vianet) | modified |
-| 5/3/2021 | [Handle false positives or false negatives in AIR in Microsoft 365 Defender](/microsoft-365/security/defender/m365d-autoir-report-false-positives-negatives?view=o365-21vianet) | modified |
-| 5/3/2021 | [Details and results of an automated investigation](/microsoft-365/security/defender/m365d-autoir-results?view=o365-21vianet) | modified |
-| 5/3/2021 | [Automated investigation and response in Microsoft 365 Defender](/microsoft-365/security/defender/m365d-autoir?view=o365-21vianet) | modified |
-| 5/3/2021 | [Configure automated investigation and response capabilities in Microsoft 365 Defender](/microsoft-365/security/defender/m365d-configure-auto-investigation-response?view=o365-21vianet) | modified |
-| 5/3/2021 | [Remediation actions in Microsoft 365 Defender](/microsoft-365/security/defender/m365d-remediation-actions?view=o365-21vianet) | modified |
-| 5/3/2021 | [Microsoft cloud architecture models - enterprise resource planning](/microsoft-365/solutions/cloud-architecture-models?view=o365-21vianet) | modified |
-| 5/3/2021 | [Top 10 ways to secure Microsoft 365 for business plans](/microsoft-365/admin/security-and-compliance/secua?view=o365-21vianet) | modified |
-| 5/3/2021 | [Overview of Microsoft 365 Business Premium Security](/microsoft-365/business-video/overview-m365-security?view=o365-worldwide) | modified |
-| 5/3/2021 | [What is Microsoft 365 Business Premium](/microsoft-365/business-video/what-is-microsoft-365?view=o365-21vianet) | modified |
-| 5/3/2021 | [Microsoft 365 for smaller businesses and campaigns](/microsoft-365/campaigns/index?view=o365-21vianet) | modified |
-| 5/3/2021 | Microsoft Defender for Endpoint on Mac - system extensions (Preview) | removed |
-| 5/3/2021 | [Contoso's COVID-19 response and support for remote and onsite work](/microsoft-365/solutions/contoso-remote-onsite-work?view=o365-21vianet) | modified |
-| 5/3/2021 | [Set up your infrastructure for remote work with Microsoft 365](/microsoft-365/solutions/empower-people-to-work-remotely?view=o365-21vianet) | modified |
-| 5/4/2021 | [Compare groups](/microsoft-365/admin/create-groups/compare-groups?view=o365-21vianet) | modified |
-| 5/4/2021 | [Manage payment methods](/microsoft-365/commerce/billing-and-payments/manage-payment-methods?view=o365-21vianet) | modified |
-| 5/4/2021 | [Paying for your subscription](/microsoft-365/commerce/billing-and-payments/pay-for-your-subscription?view=o365-21vianet) | modified |
-| 5/4/2021 | [Understand your bill or invoice](/microsoft-365/commerce/billing-and-payments/understand-your-invoice?view=o365-21vianet) | modified |
-| 5/4/2021 | [Understand your bill or invoice for Microsoft 365 for business](/microsoft-365/commerce/billing-and-payments/understand-your-invoice2?view=o365-21vianet) | modified |
-| 5/4/2021 | [Renew Microsoft 365 for business](/microsoft-365/commerce/subscriptions/renew-your-subscription?view=o365-21vianet) | modified |
-| 5/4/2021 | [Create and publish sensitivity labels](/microsoft-365/compliance/create-sensitivity-labels?view=o365-21vianet) | modified |
-| 5/4/2021 | [Microsoft 365 Network Insights (preview)](/microsoft-365/enterprise/office-365-network-mac-perf-insights?view=o365-21vianet) | modified |
-| 5/4/2021 | [Network connectivity in the Microsoft 365 Admin Center (preview)](/microsoft-365/enterprise/office-365-network-mac-perf-overview?view=o365-21vianet) | modified |
-| 5/4/2021 | [Coming soon: Configure SharePoint as a learning content source for Microsoft Viva Learning (Preview)](/microsoft-365/learning/configure-sharepoint-content-source?view=o365-21vianet) | modified |
-| 5/4/2021 | [Configure learning content sources for Microsoft Viva Learning (Preview) in the Microsoft 365 admin center](/microsoft-365/learning/content-sources-365-admin-center?view=o365-21vianet) | modified |
-| 5/4/2021 | [Set up devices for Microsoft Managed Desktop](/microsoft-365/managed-desktop/get-started/set-up-devices?view=o365-21vianet) | modified |
-| 5/4/2021 | [Is Microsoft Managed Desktop right for you?](/microsoft-365/managed-desktop/intro/index?view=o365-21vianet) | modified |
-| 5/4/2021 | [Microsoft Managed Desktop device services](/microsoft-365/managed-desktop/service-description/device-services?view=o365-21vianet) | modified |
-| 5/4/2021 | [Device inventory report](/microsoft-365/managed-desktop/working-with-managed-desktop/device-inventory-report?view=o365-21vianet) | modified |
-| 5/4/2021 | [Troubleshoot issues on Microsoft Defender for Endpoint on Android](/microsoft-365/security/defender-endpoint/android-support-signin?view=o365-21vianet) | modified |
-| 5/4/2021 | [List all remediation activities](/microsoft-365/security/defender-endpoint/get-remediation-all-activities?view=o365-21vianet) | modified |
-| 5/4/2021 | [List exposed devices of one remediation activity](/microsoft-365/security/defender-endpoint/get-remediation-exposed-devices-activities?view=o365-21vianet) | modified |
-| 5/4/2021 | [Get one remediation activity by Id](/microsoft-365/security/defender-endpoint/get-remediation-one-activity?view=o365-21vianet) | modified |
-| 5/4/2021 | [Configure Microsoft Defender for Endpoint on iOS features](/microsoft-365/security/defender-endpoint/ios-configure-features?view=o365-21vianet) | modified |
-| 5/4/2021 | [App-based deployment for Microsoft Defender for Endpoint on iOS](/microsoft-365/security/defender-endpoint/ios-install?view=o365-21vianet) | modified |
-| 5/4/2021 | [Manage Microsoft Defender Antivirus updates and apply baselines](/microsoft-365/security/defender-endpoint/manage-updates-baselines-microsoft-defender-antivirus?view=o365-21vianet) | modified |
-| 5/4/2021 | [Microsoft Defender for Endpoint on Android](/microsoft-365/security/defender-endpoint/microsoft-defender-endpoint-android?view=o365-21vianet) | modified |
-| 5/4/2021 | [Microsoft Defender for Endpoint on iOS](/microsoft-365/security/defender-endpoint/microsoft-defender-endpoint-ios?view=o365-21vianet) | modified |
-| 5/4/2021 | [Deploy threat protection capabilities across Microsoft 365](/microsoft-365/solutions/deploy-threat-protection?view=o365-21vianet) | modified |
-| 5/4/2021 | [Step 1 - Stop an employee from logging in to Microsoft 365](/microsoft-365/admin/add-users/remove-former-employee-step-1?view=o365-21vianet) | added |
-| 5/4/2021 | [Step 2 - Save the contents of a former employee's mailbox](/microsoft-365/admin/add-users/remove-former-employee-step-2?view=o365-21vianet) | added |
-| 5/4/2021 | [Step 3 - Forward a former employee's email to another employee or convert to a shared mailbox](/microsoft-365/admin/add-users/remove-former-employee-step-3?view=o365-21vianet) | added |
-| 5/4/2021 | [Step 4 - Give another employee access to OneDrive and Outlook data](/microsoft-365/admin/add-users/remove-former-employee-step-4?view=o365-21vianet) | renamed |
-| 5/4/2021 | [Step 5 - Wipe and block a former employee's mobile device](/microsoft-365/admin/add-users/remove-former-employee-step-5?view=o365-21vianet) | added |
-| 5/4/2021 | [Step 6 - Remove and delete the Microsoft 365 license from a former employee](/microsoft-365/admin/add-users/remove-former-employee-step-6?view=o365-21vianet) | added |
-| 5/4/2021 | [Step 7 - Delete a former employee's user account](/microsoft-365/admin/add-users/remove-former-employee-step-7?view=o365-21vianet) | added |
-| 5/4/2021 | [Remove a former employee - Overview](/microsoft-365/admin/add-users/remove-former-employee?view=o365-21vianet) | modified |
-| 5/4/2021 | [Payment information for Mexico](/microsoft-365/commerce/pay/mexico?view=o365-21vianet) | modified |
-| 5/4/2021 | [How to configure Exchange Server on-premises to use Hybrid Modern Authentication](/microsoft-365/enterprise/configure-exchange-server-for-hybrid-modern-authentication?view=o365-21vianet) | modified |
-| 5/4/2021 | [Set up SPF to help prevent spoofing](/microsoft-365/security/office-365-security/set-up-spf-in-office-365-to-help-prevent-spoofing?view=o365-21vianet) | modified |
-| 5/4/2021 | [Message center](/microsoft-365/admin/manage/message-center?view=o365-21vianet) | modified |
-| 5/4/2021 | [How to use DKIM for email in your custom domain](/microsoft-365/security/office-365-security/use-dkim-to-validate-outbound-email?view=o365-21vianet) | modified |
-| 5/5/2021 | [Document metadata fields in Advanced eDiscovery](/microsoft-365/compliance/document-metadata-fields-in-advanced-ediscovery?view=o365-21vianet) | modified |
-| 5/5/2021 | [Export documents from a review set](/microsoft-365/compliance/export-documents-from-review-set?view=o365-21vianet) | modified |
-| 5/5/2021 | [Advanced eDiscovery limits](/microsoft-365/compliance/limits-ediscovery20?view=o365-21vianet) | modified |
-| 5/5/2021 | [Limits for content search and Core eDiscovery in the compliance center](/microsoft-365/compliance/limits-for-content-search?view=o365-21vianet) | modified |
-| 5/5/2021 | [Configure permissions filtering for Content Search](/microsoft-365/compliance/permissions-filtering-for-content-search?view=o365-21vianet) | modified |
-| 5/5/2021 | [Enable sensitivity labels for Office files in SharePoint and OneDrive](/microsoft-365/compliance/sensitivity-labels-sharepoint-onedrive-files?view=o365-21vianet) | modified |
-| 5/5/2021 | [Investigate entities on devices using live response in Microsoft Defender for Endpoint](/microsoft-365/security/defender-endpoint/live-response?view=o365-21vianet) | modified |
-| 5/5/2021 | [Troubleshoot license issues for Microsoft Defender for Endpoint on Mac](/microsoft-365/security/defender-endpoint/mac-support-license?view=o365-21vianet) | modified |
-| 5/5/2021 | [Manage Microsoft Defender Antivirus updates and apply baselines](/microsoft-365/security/defender-endpoint/manage-updates-baselines-microsoft-defender-antivirus?view=o365-21vianet) | modified |
-| 5/5/2021 | [Switch to Microsoft Defender for Endpoint - Setup](/microsoft-365/security/defender-endpoint/switch-to-microsoft-defender-setup?view=o365-21vianet) | modified |
-| 5/5/2021 | [Symantec to Microsoft Defender for Endpoint - Phase 2, Setting Up](/microsoft-365/security/defender-endpoint/symantec-to-microsoft-defender-atp-setup?view=o365-21vianet) | modified |
-| 5/5/2021 | [Get expert training on advanced hunting](/microsoft-365/security/defender/advanced-hunting-expert-training?view=o365-21vianet) | modified |
-| 5/5/2021 | [Safe Links](/microsoft-365/security/office-365-security/safe-links?view=o365-21vianet) | modified |
-| 5/5/2021 | [Compliance options for Microsoft 365 groups, Teams, and SharePoint collaboration](/microsoft-365/solutions/groups-teams-compliance-governance?view=o365-21vianet) | modified |
-| 5/5/2021 | [Let users reset their own passwords](/microsoft-365/admin/add-users/let-users-reset-passwords?view=o365-21vianet) | modified |
-| 5/5/2021 | [Remove a former employee - Overview](/microsoft-365/admin/add-users/remove-former-employee?view=o365-21vianet) | modified |
-| 5/5/2021 | [Resend a user's password - Admin Help](/microsoft-365/admin/add-users/resend-user-password?view=o365-21vianet) | modified |
-| 5/5/2021 | [Reset passwords](/microsoft-365/admin/add-users/reset-passwords?view=o365-21vianet) | modified |
-| 5/5/2021 | [Restore a user](/microsoft-365/admin/add-users/restore-user?view=o365-21vianet) | modified |
-| 5/5/2021 | [About the Microsoft 365 admin center](/microsoft-365/admin/admin-overview/about-the-admin-center?view=o365-21vianet) | modified |
-| 5/5/2021 | [What subscription do I have?](/microsoft-365/admin/admin-overview/what-subscription-do-i-have?view=o365-21vianet) | modified |
-| 5/5/2021 | [Create a group in the admin center](/microsoft-365/admin/create-groups/create-groups?view=o365-21vianet) | modified |
-| 5/5/2021 | [Add another email alias for a user](/microsoft-365/admin/email/add-another-email-alias-for-a-user?view=o365-21vianet) | modified |
-| 5/5/2021 | [Add a user or contact to a distribution group](/microsoft-365/admin/email/add-user-or-contact-to-distribution-list?view=o365-21vianet) | modified |
-| 5/5/2021 | [Configure shared mailbox settings](/microsoft-365/admin/email/configure-a-shared-mailbox?view=o365-21vianet) | modified |
-| 5/5/2021 | [Configure email forwarding](/microsoft-365/admin/email/configure-email-forwarding?view=o365-21vianet) | modified |
-| 5/5/2021 | [Manage self-service purchases (Admins)](/microsoft-365/commerce/subscriptions/manage-self-service-purchases-admins?view=o365-21vianet) | modified |
-| 5/5/2021 | [Enable co-authoring for documents encrypted by sensitivity labels in Microsoft 365](/microsoft-365/compliance/sensitivity-labels-coauthoring?view=o365-21vianet) | modified |
-| 5/5/2021 | [Configure advanced features in Microsoft Defender for Endpoint](/microsoft-365/security/defender-endpoint/advanced-features?view=o365-21vianet) | modified |
-| 5/5/2021 | [Device discovery frequently asked questions](/microsoft-365/security/defender-endpoint/device-discovery-faq?view=o365-21vianet) | modified |
-| 5/5/2021 | [Device discovery overview](/microsoft-365/security/defender-endpoint/device-discovery?view=o365-21vianet) | modified |
-| 5/5/2021 | [Endpoint detection and response in block mode](/microsoft-365/security/defender-endpoint/edr-in-block-mode?view=o365-21vianet) | modified |
-| 5/5/2021 | [Microsoft Defender Antivirus compatibility with other security products](/microsoft-365/security/defender-endpoint/microsoft-defender-antivirus-compatibility?view=o365-21vianet) | modified |
-| 5/5/2021 | [Microsoft Defender Antivirus on Windows Server](/microsoft-365/security/defender-endpoint/microsoft-defender-antivirus-on-windows-server?view=o365-21vianet) | modified |
-| 5/5/2021 | [Minimum requirements for Microsoft Defender for Endpoint](/microsoft-365/security/defender-endpoint/minimum-requirements?view=o365-21vianet) | modified |
-| 5/5/2021 | [Microsoft Defender for Endpoint preview features](/microsoft-365/security/defender-endpoint/preview?view=o365-21vianet) | modified |
-| 5/5/2021 | [Run and customize on-demand scans in Microsoft Defender Antivirus](/microsoft-365/security/defender-endpoint/run-scan-microsoft-defender-antivirus?view=o365-21vianet) | modified |
-| 5/5/2021 | [Schedule regular quick and full scans with Microsoft Defender Antivirus](/microsoft-365/security/defender-endpoint/scheduled-catch-up-scans-microsoft-defender-antivirus?view=o365-21vianet) | modified |
-| 5/5/2021 | [What's new in Microsoft Defender for Endpoint](/microsoft-365/security/defender-endpoint/whats-new-in-microsoft-defender-atp?view=o365-21vianet) | modified |
-| 5/5/2021 | [Microsoft Defender for Office 365 in the Microsoft 365 security center](/microsoft-365/security/defender/microsoft-365-security-center-mdo?view=o365-21vianet) | modified |
-| 5/5/2021 | [Configure global settings for Safe Links settings in Defender for Office 365](/microsoft-365/security/office-365-security/configure-global-settings-for-safe-links?view=o365-21vianet) | modified |
-| 5/5/2021 | [Safe Attachments](/microsoft-365/security/office-365-security/safe-attachments?view=o365-21vianet) | modified |
-| 5/5/2021 | [Security dashboard overview](/microsoft-365/security/office-365-security/security-dashboard?view=o365-21vianet) | modified |
-| 5/5/2021 | [Threat Explorer and Real-time detections](/microsoft-365/security/office-365-security/threat-explorer?view=o365-21vianet) | modified |
-| 5/5/2021 | [View mail flow reports in the Reports dashboard](/microsoft-365/security/office-365-security/view-mail-flow-reports?view=o365-21vianet) | modified |
-| 5/5/2021 | [Choose a Microsoft 365 subscription](/microsoft-365/business-video/choose-subscription?view=o365-21vianet) | modified |
-| 5/5/2021 | [Microsoft Compliance Configuration Analyzer for Compliance Manager](/microsoft-365/compliance/compliance-manager-mcca?view=o365-21vianet) | modified |
-| 5/6/2021 | [Automatically apply a sensitivity label to content in Microsoft 365](/microsoft-365/compliance/apply-sensitivity-label-automatically?view=o365-21vianet) | modified |
-| 5/6/2021 | [Document metadata fields in Advanced eDiscovery](/microsoft-365/compliance/document-metadata-fields-in-advanced-ediscovery?view=o365-21vianet) | modified |
-| 5/6/2021 | [Microsoft Information Protection in Microsoft 365](/microsoft-365/compliance/information-protection?view=o365-21vianet) | modified |
-| 5/6/2021 | [Insider risk management settings](/microsoft-365/compliance/insider-risk-management-settings?view=o365-21vianet) | modified |
-| 5/6/2021 | [How to configure Exchange Server on-premises to use Hybrid Modern Authentication](/microsoft-365/enterprise/configure-exchange-server-for-hybrid-modern-authentication?view=o365-21vianet) | modified |
-| 5/6/2021 | [Overview: VPN split tunneling with Office 365](/microsoft-365/enterprise/microsoft-365-vpn-split-tunnel?view=o365-21vianet) | modified |
-| 5/6/2021 | [Prepare for directory synchronization to Microsoft 365](/microsoft-365/enterprise/prepare-for-directory-synchronization?view=o365-21vianet) | modified |
-| 5/6/2021 | [Is Microsoft Managed Desktop right for you?](/microsoft-365/managed-desktop/intro/index?view=o365-21vianet) | modified |
-| 5/6/2021 | [Deploy Microsoft Defender for Endpoint on Linux manually](/microsoft-365/security/defender-endpoint/linux-install-manually?view=o365-21vianet) | modified |
-| 5/6/2021 | [Microsoft Defender Antivirus compatibility with other security products](/microsoft-365/security/defender-endpoint/microsoft-defender-antivirus-compatibility?view=o365-21vianet) | modified |
-| 5/6/2021 | [Prioritize incidents in Microsoft 365 Defender](/microsoft-365/security/defender/incident-queue?view=o365-21vianet) | modified |
-| 5/6/2021 | [Analyze incidents in Microsoft 365 Defender](/microsoft-365/security/defender/investigate-incidents?view=o365-21vianet) | modified |
-| 5/6/2021 | [Automated investigation and response in Microsoft 365 Defender](/microsoft-365/security/defender/m365d-autoir?view=o365-21vianet) | modified |
-| 5/6/2021 | [Configure automated investigation and response capabilities in Microsoft 365 Defender](/microsoft-365/security/defender/m365d-configure-auto-investigation-response?view=o365-21vianet) | modified |
-| 5/6/2021 | [Microsoft 365 Defender prerequisites](/microsoft-365/security/defender/prerequisites?view=o365-21vianet) | modified |
-| 5/6/2021 | [Get started with Microsoft 365 Endpoint data loss prevention](/microsoft-365/compliance/endpoint-dlp-getting-started?view=o365-21vianet) | modified |
-| 5/6/2021 | [Using Endpoint data loss prevention](/microsoft-365/compliance/endpoint-dlp-using?view=o365-21vianet) | modified |
-| 5/6/2021 | [Endpoint detection and response in block mode](/microsoft-365/security/defender-endpoint/edr-in-block-mode?view=o365-21vianet) | modified |
-| 5/6/2021 | [Create and manage device groups in Microsoft Defender for Endpoint](/microsoft-365/security/defender-endpoint/machine-groups?view=o365-21vianet) | modified |
-| 5/6/2021 | [Diagnostic logs](/microsoft-365/managed-desktop/service-description/diagnostic-logs?view=o365-21vianet) | added |
-| 5/6/2021 | [Add users and assign licenses](/microsoft-365/admin/add-users/add-users?view=o365-21vianet) | modified |
-| 5/6/2021 | [Assign licenses to users](/microsoft-365/admin/manage/assign-licenses-to-users?view=o365-21vianet) | modified |
-| 5/6/2021 | [Office 365 operated by 21Vianet](/microsoft-365/admin/services-in-china/services-in-china?view=o365-21vianet) | modified |
-| 5/6/2021 | [Set up file storage and sharing](/microsoft-365/admin/setup/set-up-file-storage-and-sharing?view=o365-21vianet) | modified |
-| 5/6/2021 | [Payment information for Afghanistan](/microsoft-365/commerce/pay/afghanistan?view=o365-21vianet) | modified |
-| 5/6/2021 | [Payment information for Albania](/microsoft-365/commerce/pay/albania?view=o365-21vianet) | modified |
-| 5/6/2021 | [Payment information for Algeria](/microsoft-365/commerce/pay/algeria?view=o365-21vianet) | modified |
-| 5/6/2021 | [Payment information for Angola](/microsoft-365/commerce/pay/angola?view=o365-21vianet) | modified |
-| 5/6/2021 | [Payment information for Argentina](/microsoft-365/commerce/pay/argentina?view=o365-21vianet) | modified |
-| 5/6/2021 | [Payment information for Armenia](/microsoft-365/commerce/pay/armenia?view=o365-21vianet) | modified |
-| 5/6/2021 | [Payment information for Australia](/microsoft-365/commerce/pay/australia?view=o365-21vianet) | modified |
-| 5/6/2021 | [Payment information for Austria](/microsoft-365/commerce/pay/austria?view=o365-21vianet) | modified |
-| 5/6/2021 | [Payment information for Azerbaijan](/microsoft-365/commerce/pay/azerbaijan?view=o365-21vianet) | modified |
-| 5/6/2021 | [Payment information for Bahamas](/microsoft-365/commerce/pay/bahamas?view=o365-21vianet) | modified |
-| 5/6/2021 | [Payment information for Bahrain](/microsoft-365/commerce/pay/bahrain?view=o365-21vianet) | modified |
-| 5/6/2021 | [Payment information for Bangladesh](/microsoft-365/commerce/pay/bangladesh?view=o365-21vianet) | modified |
-| 5/6/2021 | [Payment information for Barbados](/microsoft-365/commerce/pay/barbados?view=o365-21vianet) | modified |
-| 5/6/2021 | [Payment information for Belarus](/microsoft-365/commerce/pay/belarus?view=o365-21vianet) | modified |
-| 5/6/2021 | [Payment information for Belgium](/microsoft-365/commerce/pay/belgium?view=o365-21vianet) | modified |
-| 5/6/2021 | [Payment information for Belize](/microsoft-365/commerce/pay/belize?view=o365-21vianet) | modified |
-| 5/6/2021 | [Payment information for Bermuda](/microsoft-365/commerce/pay/bermuda?view=o365-21vianet) | modified |
-| 5/6/2021 | [Payment information for Bolivia](/microsoft-365/commerce/pay/bolivia?view=o365-21vianet) | modified |
-| 5/6/2021 | [Payment information for Bosnia and Herzegovina](/microsoft-365/commerce/pay/bosnia-and-herzegovina?view=o365-21vianet) | modified |
-| 5/6/2021 | [Payment information for Botswana](/microsoft-365/commerce/pay/botswana?view=o365-21vianet) | modified |
-| 5/6/2021 | [Payment information for Brazil](/microsoft-365/commerce/pay/brazil?view=o365-21vianet) | modified |
-| 5/6/2021 | [Payment information for Brunei](/microsoft-365/commerce/pay/brunei?view=o365-21vianet) | modified |
-| 5/6/2021 | [Payment information for Bulgaria](/microsoft-365/commerce/pay/bulgaria?view=o365-21vianet) | modified |
-| 5/6/2021 | [Payment information for Cameroon](/microsoft-365/commerce/pay/cameroon?view=o365-21vianet) | modified |
-| 5/6/2021 | [Payment information for Canada](/microsoft-365/commerce/pay/canada?view=o365-21vianet) | modified |
-| 5/6/2021 | [Payment information for Cape Verde](/microsoft-365/commerce/pay/cape-verde?view=o365-21vianet) | modified |
-| 5/6/2021 | [Payment information for Cayman Islands](/microsoft-365/commerce/pay/cayman-islands?view=o365-21vianet) | modified |
-| 5/6/2021 | [Payment information for Chile](/microsoft-365/commerce/pay/chile?view=o365-21vianet) | modified |
-| 5/6/2021 | [Payment information for China (PRC)](/microsoft-365/commerce/pay/china-prc?view=o365-21vianet) | modified |
-| 5/6/2021 | [Payment information for Colombia](/microsoft-365/commerce/pay/colombia?view=o365-21vianet) | modified |
-| 5/6/2021 | [Payment information for Costa Rica](/microsoft-365/commerce/pay/costa-rica?view=o365-21vianet) | modified |
-| 5/6/2021 | [Payment information for C├┤te d'Ivoire](/microsoft-365/commerce/pay/cote-divoire?view=o365-21vianet) | modified |
-| 5/6/2021 | [Payment information for Croatia](/microsoft-365/commerce/pay/croatia?view=o365-21vianet) | modified |
-| 5/6/2021 | [Payment information for Curacao](/microsoft-365/commerce/pay/curacao?view=o365-21vianet) | modified |
-| 5/6/2021 | [Payment information for Cyprus](/microsoft-365/commerce/pay/cyprus?view=o365-21vianet) | modified |
-| 5/6/2021 | [Payment information for Czech Republic](/microsoft-365/commerce/pay/czech-republic?view=o365-21vianet) | modified |
-| 5/6/2021 | [Payment information for Democratic Republic of Congo](/microsoft-365/commerce/pay/democratic-republic-of-congo?view=o365-21vianet) | modified |
-| 5/6/2021 | [Payment information for Denmark](/microsoft-365/commerce/pay/denmark?view=o365-21vianet) | modified |
-| 5/6/2021 | [Payment information for Dominican Republic](/microsoft-365/commerce/pay/dominican-republic?view=o365-21vianet) | modified |
-| 5/6/2021 | [Payment information for Ecuador](/microsoft-365/commerce/pay/ecuador?view=o365-21vianet) | modified |
-| 5/6/2021 | [Payment information for Egypt](/microsoft-365/commerce/pay/egypt?view=o365-21vianet) | modified |
-| 5/6/2021 | [Payment information for El Salvador](/microsoft-365/commerce/pay/el-salvador?view=o365-21vianet) | modified |
-| 5/6/2021 | [Payment information for Estonia](/microsoft-365/commerce/pay/estonia?view=o365-21vianet) | modified |
-| 5/6/2021 | [Payment information for Ethiopia](/microsoft-365/commerce/pay/ethiopia?view=o365-21vianet) | modified |
-| 5/6/2021 | [Payment information for Faroe Islands](/microsoft-365/commerce/pay/faroe-islands?view=o365-21vianet) | modified |
-| 5/6/2021 | [Payment information for Fiji](/microsoft-365/commerce/pay/fiji?view=o365-21vianet) | modified |
-| 5/6/2021 | [Payment information for Finland](/microsoft-365/commerce/pay/finland?view=o365-21vianet) | modified |
-| 5/6/2021 | [Payment information for France](/microsoft-365/commerce/pay/france?view=o365-21vianet) | modified |
-| 5/6/2021 | [Payment information for French Guiana](/microsoft-365/commerce/pay/french-guiana?view=o365-21vianet) | modified |
-| 5/6/2021 | [Payment information for Georgia](/microsoft-365/commerce/pay/georgia?view=o365-21vianet) | modified |
-| 5/6/2021 | [Payment information for Germany](/microsoft-365/commerce/pay/germany?view=o365-21vianet) | modified |
-| 5/6/2021 | [Payment information for Ghana](/microsoft-365/commerce/pay/ghana?view=o365-21vianet) | modified |
-| 5/6/2021 | [Payment information for Greece](/microsoft-365/commerce/pay/greece?view=o365-21vianet) | modified |
-| 5/6/2021 | [Payment information for Grenada](/microsoft-365/commerce/pay/grenada?view=o365-21vianet) | modified |
-| 5/6/2021 | [Payment information for Guadeloupe](/microsoft-365/commerce/pay/guadeloupe?view=o365-21vianet) | modified |
-| 5/6/2021 | [Payment information for Guam](/microsoft-365/commerce/pay/guam?view=o365-21vianet) | modified |
-| 5/6/2021 | [Payment information for Guatemala](/microsoft-365/commerce/pay/guatemala?view=o365-21vianet) | modified |
-| 5/6/2021 | [Payment information for Guyana](/microsoft-365/commerce/pay/guyana?view=o365-21vianet) | modified |
-| 5/6/2021 | [Payment information for Haiti](/microsoft-365/commerce/pay/haiti?view=o365-21vianet) | modified |
-| 5/6/2021 | [Payment information for Honduras](/microsoft-365/commerce/pay/honduras?view=o365-21vianet) | modified |
-| 5/6/2021 | [Payment information for Hong Kong](/microsoft-365/commerce/pay/hong-kong?view=o365-21vianet) | modified |
-| 5/6/2021 | [Payment information for Hungary](/microsoft-365/commerce/pay/hungary?view=o365-21vianet) | modified |
-| 5/6/2021 | [Payment information for Iceland](/microsoft-365/commerce/pay/iceland?view=o365-21vianet) | modified |
-| 5/6/2021 | [Payment information for India](/microsoft-365/commerce/pay/india?view=o365-21vianet) | modified |
-| 5/6/2021 | [Payment information for Indonesia](/microsoft-365/commerce/pay/indonesia?view=o365-21vianet) | modified |
-| 5/6/2021 | [Payment information for Iraq](/microsoft-365/commerce/pay/iraq?view=o365-21vianet) | modified |
-| 5/6/2021 | [Payment information for Ireland](/microsoft-365/commerce/pay/ireland?view=o365-21vianet) | modified |
-| 5/6/2021 | [Payment information for Israel](/microsoft-365/commerce/pay/israel?view=o365-21vianet) | modified |
-| 5/6/2021 | [Payment information for Italy](/microsoft-365/commerce/pay/italy?view=o365-21vianet) | modified |
-| 5/6/2021 | [Payment information for Jamaica](/microsoft-365/commerce/pay/jamaica?view=o365-21vianet) | modified |
-| 5/6/2021 | [Payment information for Japan](/microsoft-365/commerce/pay/japan?view=o365-21vianet) | modified |
-| 5/6/2021 | [Payment information for Jordan](/microsoft-365/commerce/pay/jordan?view=o365-21vianet) | modified |
-| 5/6/2021 | [Payment information for Kazakhstan](/microsoft-365/commerce/pay/kazakhstan?view=o365-21vianet) | modified |
-| 5/6/2021 | [Payment information for Kenya](/microsoft-365/commerce/pay/kenya?view=o365-21vianet) | modified |
-| 5/6/2021 | [Payment information for Korea](/microsoft-365/commerce/pay/korea?view=o365-21vianet) | modified |
-| 5/6/2021 | [Payment information for Kuwait](/microsoft-365/commerce/pay/kuwait?view=o365-21vianet) | modified |
-| 5/6/2021 | [Payment information for Kyrgyzstan](/microsoft-365/commerce/pay/kyrgyzstan?view=o365-21vianet) | modified |
-| 5/6/2021 | [Payment information for Latvia](/microsoft-365/commerce/pay/latvia?view=o365-21vianet) | modified |
-| 5/6/2021 | [Payment information for Lebanon](/microsoft-365/commerce/pay/lebanon?view=o365-21vianet) | modified |
-| 5/6/2021 | [Payment information for Libya](/microsoft-365/commerce/pay/libya?view=o365-21vianet) | modified |
-| 5/6/2021 | [Payment information for Liechtenstein](/microsoft-365/commerce/pay/liechtenstein?view=o365-21vianet) | modified |
-| 5/6/2021 | [Payment information for Lithuania](/microsoft-365/commerce/pay/lithuania?view=o365-21vianet) | modified |
-| 5/6/2021 | [Payment information for Luxembourg](/microsoft-365/commerce/pay/luxembourg?view=o365-21vianet) | modified |
-| 5/6/2021 | [Payment information for Macao](/microsoft-365/commerce/pay/macao?view=o365-21vianet) | modified |
-| 5/6/2021 | [Payment information for Macedonia, Former Yugoslav Republic of](/microsoft-365/commerce/pay/macedonia?view=o365-21vianet) | modified |
-| 5/6/2021 | [Payment information for Malaysia](/microsoft-365/commerce/pay/malaysia?view=o365-21vianet) | modified |
-| 5/6/2021 | [Payment information for Malta](/microsoft-365/commerce/pay/malta?view=o365-21vianet) | modified |
-| 5/6/2021 | [Payment information for Mauritius](/microsoft-365/commerce/pay/mauritius?view=o365-21vianet) | modified |
-| 5/6/2021 | [Payment information for Mexico](/microsoft-365/commerce/pay/mexico?view=o365-21vianet) | modified |
-| 5/6/2021 | [Payment information for Moldova](/microsoft-365/commerce/pay/moldova?view=o365-21vianet) | modified |
-| 5/6/2021 | [Payment information for Monaco](/microsoft-365/commerce/pay/monaco?view=o365-21vianet) | modified |
-| 5/6/2021 | [Payment information for Mongolia](/microsoft-365/commerce/pay/mongolia?view=o365-21vianet) | modified |
-| 5/6/2021 | [Payment information for Montenegro](/microsoft-365/commerce/pay/montenegro?view=o365-21vianet) | modified |
-| 5/6/2021 | [Payment information for Morocco](/microsoft-365/commerce/pay/morocco?view=o365-21vianet) | modified |
-| 5/6/2021 | [Payment information for Namibia](/microsoft-365/commerce/pay/namibia?view=o365-21vianet) | modified |
-| 5/6/2021 | [Payment information for Nepal](/microsoft-365/commerce/pay/nepal?view=o365-21vianet) | modified |
-| 5/6/2021 | [Payment information for Netherlands](/microsoft-365/commerce/pay/netherlands?view=o365-21vianet) | modified |
-| 5/6/2021 | [Payment information for New Zealand](/microsoft-365/commerce/pay/new-zealand?view=o365-21vianet) | modified |
-| 5/6/2021 | [Payment information for Nicaragua](/microsoft-365/commerce/pay/nicaragua?view=o365-21vianet) | modified |
-| 5/6/2021 | [Payment information for Nigeria](/microsoft-365/commerce/pay/nigeria?view=o365-21vianet) | modified |
-| 5/6/2021 | [Payment information for Norway](/microsoft-365/commerce/pay/norway?view=o365-21vianet) | modified |
-| 5/6/2021 | [Payment information for Oman](/microsoft-365/commerce/pay/oman?view=o365-21vianet) | modified |
-| 5/6/2021 | [Payment information for Pakistan](/microsoft-365/commerce/pay/pakistan?view=o365-21vianet) | modified |
-| 5/6/2021 | [Payment information for Palestinian Authority](/microsoft-365/commerce/pay/palestinian-authority?view=o365-21vianet) | modified |
-| 5/6/2021 | [Payment information for Panama](/microsoft-365/commerce/pay/panama?view=o365-21vianet) | modified |
-| 5/6/2021 | [Payment information for Paraguay](/microsoft-365/commerce/pay/paraguay?view=o365-21vianet) | modified |
-| 5/6/2021 | [Payment information for Peru](/microsoft-365/commerce/pay/peru?view=o365-21vianet) | modified |
-| 5/6/2021 | [Payment information for Philippines](/microsoft-365/commerce/pay/philippines?view=o365-21vianet) | modified |
-| 5/6/2021 | [Payment information for Poland](/microsoft-365/commerce/pay/poland?view=o365-21vianet) | modified |
-| 5/6/2021 | [Payment information for Portugal](/microsoft-365/commerce/pay/portugal?view=o365-21vianet) | modified |
-| 5/6/2021 | [Payment information for Puerto Rico](/microsoft-365/commerce/pay/puerto-rico?view=o365-21vianet) | modified |
-| 5/6/2021 | [Payment information for Qatar](/microsoft-365/commerce/pay/qatar?view=o365-21vianet) | modified |
-| 5/6/2021 | [Payment information for Romania](/microsoft-365/commerce/pay/romania?view=o365-21vianet) | modified |
-| 5/6/2021 | [Payment information for Russia](/microsoft-365/commerce/pay/russia?view=o365-21vianet) | modified |
-| 5/6/2021 | [Payment information for Rwanda](/microsoft-365/commerce/pay/rwanda?view=o365-21vianet) | modified |
-| 5/6/2021 | [Payment information for Saint Kitts and Nevis](/microsoft-365/commerce/pay/saint-kitts-and-nevis?view=o365-21vianet) | modified |
-| 5/6/2021 | [Payment information for Saint Lucia](/microsoft-365/commerce/pay/saint-lucia?view=o365-21vianet) | modified |
-| 5/6/2021 | [Payment information for Saint Vincent and the Grenadines](/microsoft-365/commerce/pay/saint-vincent-and-the-grenadines?view=o365-21vianet) | modified |
-| 5/6/2021 | [Payment information for Saudi Arabia](/microsoft-365/commerce/pay/saudi-arabia?view=o365-21vianet) | modified |
-| 5/6/2021 | [Payment information for Senegal](/microsoft-365/commerce/pay/senegal?view=o365-21vianet) | modified |
-| 5/6/2021 | [Payment information for Serbia](/microsoft-365/commerce/pay/serbia?view=o365-21vianet) | modified |
-| 5/6/2021 | [Payment information for Singapore](/microsoft-365/commerce/pay/singapore?view=o365-21vianet) | modified |
-| 5/6/2021 | [Payment information for Slovakia](/microsoft-365/commerce/pay/slovakia?view=o365-21vianet) | modified |
-| 5/6/2021 | [Payment information for Slovenia](/microsoft-365/commerce/pay/slovenia?view=o365-21vianet) | modified |
-| 5/6/2021 | [Payment information for South Africa](/microsoft-365/commerce/pay/south-africa?view=o365-21vianet) | modified |
-| 5/6/2021 | [Payment information for Spain](/microsoft-365/commerce/pay/spain?view=o365-21vianet) | modified |
-| 5/6/2021 | [Payment information for Sri Lanka](/microsoft-365/commerce/pay/sri-lanka?view=o365-21vianet) | modified |
-| 5/6/2021 | [Payment information for Suriname](/microsoft-365/commerce/pay/suriname?view=o365-21vianet) | modified |
-| 5/6/2021 | [Payment information for Sweden](/microsoft-365/commerce/pay/sweden?view=o365-21vianet) | modified |
-| 5/6/2021 | [Payment information for Switzerland](/microsoft-365/commerce/pay/switzerland?view=o365-21vianet) | modified |
-| 5/6/2021 | [Payment information for Taiwan](/microsoft-365/commerce/pay/taiwan?view=o365-21vianet) | modified |
-| 5/6/2021 | [Payment information for Tajikistan](/microsoft-365/commerce/pay/tajikistan?view=o365-21vianet) | modified |
-| 5/6/2021 | [Payment information for Tanzania](/microsoft-365/commerce/pay/tanzania?view=o365-21vianet) | modified |
-| 5/6/2021 | [Payment information for Thailand](/microsoft-365/commerce/pay/thailand?view=o365-21vianet) | modified |
-| 5/6/2021 | [Payment information for Trinidad and Tobago](/microsoft-365/commerce/pay/trinidad-and-tobago?view=o365-21vianet) | modified |
-| 5/6/2021 | [Payment information for Tunisia](/microsoft-365/commerce/pay/tunisia?view=o365-21vianet) | modified |
-| 5/6/2021 | [Payment information for Turkey](/microsoft-365/commerce/pay/turkey?view=o365-21vianet) | modified |
-| 5/6/2021 | [Payment information for Turkmenistan](/microsoft-365/commerce/pay/turkmenistan?view=o365-21vianet) | modified |
-| 5/6/2021 | [Payment information for Uganda](/microsoft-365/commerce/pay/uganda?view=o365-21vianet) | modified |
-| 5/6/2021 | [Payment information for Ukraine](/microsoft-365/commerce/pay/ukraine?view=o365-21vianet) | modified |
-| 5/6/2021 | [Payment information for United Arab Emirates](/microsoft-365/commerce/pay/united-arab-emirates?view=o365-21vianet) | modified |
-| 5/6/2021 | [Payment information for United Kingdom](/microsoft-365/commerce/pay/united-kingdom?view=o365-21vianet) | modified |
-| 5/6/2021 | [Payment information for United States](/microsoft-365/commerce/pay/united-states?view=o365-21vianet) | modified |
-| 5/6/2021 | [Payment information for Uruguay](/microsoft-365/commerce/pay/uruguay?view=o365-21vianet) | modified |
-| 5/6/2021 | [Payment information for Uzbekistan](/microsoft-365/commerce/pay/uzbekistan?view=o365-21vianet) | modified |
-| 5/6/2021 | [Payment information for Venezuela](/microsoft-365/commerce/pay/venezuela?view=o365-21vianet) | modified |
-| 5/6/2021 | [Payment information for Vietnam](/microsoft-365/commerce/pay/vietnam?view=o365-21vianet) | modified |
-| 5/6/2021 | [Payment information for Virgin Islands, US](/microsoft-365/commerce/pay/virgin-islands?view=o365-21vianet) | modified |
-| 5/6/2021 | [Payment information for Yemen](/microsoft-365/commerce/pay/yemen?view=o365-21vianet) | modified |
-| 5/6/2021 | [Payment information for Zambia](/microsoft-365/commerce/pay/zambia?view=o365-21vianet) | modified |
-| 5/6/2021 | [Payment information for Zimbabwe](/microsoft-365/commerce/pay/zimbabwe?view=o365-21vianet) | modified |
-| 5/6/2021 | [Create and configure retention policies to automatically retain or delete content](/microsoft-365/compliance/create-retention-policies?view=o365-21vianet) | modified |
-| 5/6/2021 | [Download existing reports in the Security &amp; Compliance Center](/microsoft-365/compliance/download-existing-reports?view=o365-21vianet) | modified |
-| 5/6/2021 | [Launch your portal using the Portal launch scheduler](/microsoft-365/enterprise/portallaunchscheduler?view=o365-21vianet) | modified |
-| 5/6/2021 | [Microsoft Viva Topics overview](/microsoft-365/knowledge/topic-experiences-overview) | modified |
-| 5/6/2021 | [Network configuration for Microsoft Managed Desktop](/microsoft-365/managed-desktop/get-ready/network?view=o365-21vianet) | modified |
-| 5/6/2021 | Scheduler for Microsoft 365 # < 60 chars | removed |
-| 5/6/2021 | Scheduler for Microsoft 365 FAQs | removed |
-| 5/6/2021 | Scheduler for Microsoft 365 Overview | removed |
-| 5/6/2021 | Setting up Scheduler for Microsoft 365. | removed |
-| 5/6/2021 | Understanding Trust and Privacy in Scheduler for Microsoft 365. | removed |
-| 5/6/2021 | Using Scheduler for Microsoft 365 | removed |
-| 5/6/2021 | [Visit the Action center to see remediation actions](/microsoft-365/security/defender-endpoint/auto-investigation-action-center?view=o365-21vianet) | modified |
-| 5/6/2021 | [View the details and results of an automated investigation](/microsoft-365/security/defender-endpoint/autoir-investigation-results?view=o365-21vianet) | modified |
-| 5/6/2021 | [Use automated investigations to investigate and remediate threats](/microsoft-365/security/defender-endpoint/automated-investigations?view=o365-21vianet) | modified |
-| 5/6/2021 | [Automation levels in automated investigation and remediation](/microsoft-365/security/defender-endpoint/automation-levels?view=o365-21vianet) | modified |
-| 5/6/2021 | [Cloud-delivered protection and Microsoft Defender Antivirus](/microsoft-365/security/defender-endpoint/cloud-protection-microsoft-defender-antivirus?view=o365-21vianet) | modified |
-| 5/6/2021 | [Collect diagnostic data for Update Compliance and Windows Defender Microsoft Defender Antivirus](/microsoft-365/security/defender-endpoint/collect-diagnostic-data-update-compliance?view=o365-21vianet) | modified |
-| 5/6/2021 | [Collect diagnostic data of Microsoft Defender Antivirus](/microsoft-365/security/defender-endpoint/collect-diagnostic-data?view=o365-21vianet) | modified |
-| 5/6/2021 | [Use the command line to manage Microsoft Defender Antivirus](/microsoft-365/security/defender-endpoint/command-line-arguments-microsoft-defender-antivirus?view=o365-21vianet) | modified |
-| 5/6/2021 | [Common mistakes to avoid when defining exclusions](/microsoft-365/security/defender-endpoint/common-exclusion-mistakes-microsoft-defender-antivirus?view=o365-21vianet) | modified |
-| 5/6/2021 | [Manage Windows Defender in your business](/microsoft-365/security/defender-endpoint/configuration-management-reference-microsoft-defender-antivirus?view=o365-21vianet) | modified |
-| 5/6/2021 | [Configure scanning options for Microsoft Defender Antivirus](/microsoft-365/security/defender-endpoint/configure-advanced-scan-types-microsoft-defender-antivirus?view=o365-21vianet) | modified |
-| 5/6/2021 | [Configure automated investigation and remediation capabilities](/microsoft-365/security/defender-endpoint/configure-automated-investigations-remediation?view=o365-21vianet) | modified |
-| 5/6/2021 | [Enable block at first sight to detect malware in seconds](/microsoft-365/security/defender-endpoint/configure-block-at-first-sight-microsoft-defender-antivirus?view=o365-21vianet) | modified |
-| 5/6/2021 | [Configure the Microsoft Defender Antivirus cloud block timeout period](/microsoft-365/security/defender-endpoint/configure-cloud-block-timeout-period-microsoft-defender-antivirus?view=o365-21vianet) | modified |
-| 5/6/2021 | [Configure how users can interact with Microsoft Defender Antivirus](/microsoft-365/security/defender-endpoint/configure-end-user-interaction-microsoft-defender-antivirus?view=o365-21vianet) | modified |
-| 5/6/2021 | [Set up exclusions for Microsoft Defender Antivirus scans](/microsoft-365/security/defender-endpoint/configure-exclusions-microsoft-defender-antivirus?view=o365-21vianet) | modified |
-| 5/6/2021 | [Configure and validate exclusions based on extension, name, or location](/microsoft-365/security/defender-endpoint/configure-extension-file-exclusions-microsoft-defender-antivirus?view=o365-21vianet) | modified |
-| 5/6/2021 | [Configure local overrides for Microsoft Defender AV settings](/microsoft-365/security/defender-endpoint/configure-local-policy-overrides-microsoft-defender-antivirus?view=o365-21vianet) | modified |
-| 5/6/2021 | [Configure Microsoft Defender Antivirus features](/microsoft-365/security/defender-endpoint/configure-microsoft-defender-antivirus-features?view=o365-21vianet) | modified |
-| 5/6/2021 | [Configure and validate Microsoft Defender Antivirus network connections](/microsoft-365/security/defender-endpoint/configure-network-connections-microsoft-defender-antivirus?view=o365-21vianet) | modified |
-| 5/6/2021 | [Configure Microsoft Defender Antivirus notifications](/microsoft-365/security/defender-endpoint/configure-notifications-microsoft-defender-antivirus?view=o365-21vianet) | modified |
-| 5/6/2021 | [Configure exclusions for files opened by specific processes](/microsoft-365/security/defender-endpoint/configure-process-opened-file-exclusions-microsoft-defender-antivirus?view=o365-21vianet) | modified |
-| 5/6/2021 | [Enable and configure Microsoft Defender Antivirus protection features](/microsoft-365/security/defender-endpoint/configure-protection-features-microsoft-defender-antivirus?view=o365-21vianet) | modified |
-| 5/6/2021 | [Enable and configure Microsoft Defender Antivirus protection capabilities](/microsoft-365/security/defender-endpoint/configure-real-time-protection-microsoft-defender-antivirus?view=o365-21vianet) | modified |
-| 5/6/2021 | [Configure remediation for Microsoft Defender Antivirus detections](/microsoft-365/security/defender-endpoint/configure-remediation-microsoft-defender-antivirus?view=o365-21vianet) | modified |
-| 5/6/2021 | [Configure Microsoft Defender Antivirus exclusions on Windows Server](/microsoft-365/security/defender-endpoint/configure-server-exclusions-microsoft-defender-antivirus?view=o365-21vianet) | modified |
-| 5/6/2021 | [Run and customize scheduled and on-demand scans](/microsoft-365/security/defender-endpoint/customize-run-review-remediate-scans-microsoft-defender-antivirus?view=o365-21vianet) | modified |
-| 5/6/2021 | Run and customize scheduled and on-demand scans | removed |
-| 5/6/2021 | [Antivirus solution compatibility with Defender for Endpoint](/microsoft-365/security/defender-endpoint/defender-compatibility?view=o365-21vianet) | modified |
-| 5/6/2021 | [Deploy, manage, and report on Microsoft Defender Antivirus](/microsoft-365/security/defender-endpoint/deploy-manage-report-microsoft-defender-antivirus?view=o365-21vianet) | modified |
-| 5/6/2021 | [Deploy and enable Microsoft Defender Antivirus](/microsoft-365/security/defender-endpoint/deploy-microsoft-defender-antivirus?view=o365-21vianet) | modified |
-| 5/6/2021 | [Microsoft Defender Antivirus Virtual Desktop Infrastructure deployment guide](/microsoft-365/security/defender-endpoint/deployment-vdi-microsoft-defender-antivirus?view=o365-21vianet) | modified |
-| 5/6/2021 | [Block potentially unwanted applications with Microsoft Defender Antivirus](/microsoft-365/security/defender-endpoint/detect-block-potentially-unwanted-apps-microsoft-defender-antivirus?view=o365-21vianet) | modified |
-| 5/6/2021 | [Turn on cloud-delivered protection in Microsoft Defender Antivirus](/microsoft-365/security/defender-endpoint/enable-cloud-protection-microsoft-defender-antivirus?view=o365-21vianet) | modified |
-| 5/6/2021 | [Evaluate Microsoft Defender Antivirus](/microsoft-365/security/defender-endpoint/evaluate-microsoft-defender-antivirus?view=o365-21vianet) | modified |
-| 5/6/2021 | [Enable the limited periodic Microsoft Defender Antivirus scanning feature](/microsoft-365/security/defender-endpoint/limited-periodic-scanning-microsoft-defender-antivirus?view=o365-21vianet) | modified |
-| 5/6/2021 | [Deploy updates for Microsoft Defender for Endpoint on Linux](/microsoft-365/security/defender-endpoint/linux-updates?view=o365-21vianet) | modified |
-| 5/6/2021 | [Review remediation actions following automated investigations](/microsoft-365/security/defender-endpoint/manage-auto-investigation?view=o365-21vianet) | modified |
-| 5/6/2021 | [Apply Microsoft Defender Antivirus updates after certain events](/microsoft-365/security/defender-endpoint/manage-event-based-updates-microsoft-defender-antivirus?view=o365-21vianet) | modified |
-| 5/6/2021 | [Apply Microsoft Defender AV protection updates to out of date endpoints](/microsoft-365/security/defender-endpoint/manage-outdated-endpoints-microsoft-defender-antivirus?view=o365-21vianet) | modified |
-| 5/6/2021 | [Schedule Microsoft Defender Antivirus protection updates](/microsoft-365/security/defender-endpoint/manage-protection-update-schedule-microsoft-defender-antivirus?view=o365-21vianet) | modified |
-| 5/6/2021 | [Manage how and where Microsoft Defender Antivirus receives updates](/microsoft-365/security/defender-endpoint/manage-protection-updates-microsoft-defender-antivirus?view=o365-21vianet) | modified |
-| 5/6/2021 | [Manage Microsoft Defender Antivirus updates and apply baselines](/microsoft-365/security/defender-endpoint/manage-updates-baselines-microsoft-defender-antivirus?view=o365-21vianet) | modified |
-| 5/6/2021 | [Define how mobile devices are updated by Microsoft Defender Antivirus](/microsoft-365/security/defender-endpoint/manage-updates-mobile-devices-vms-microsoft-defender-antivirus?view=o365-21vianet) | modified |
-| 5/6/2021 | [Next-generation protection](/microsoft-365/security/defender-endpoint/microsoft-defender-antivirus-in-windows-10?view=o365-21vianet) | modified |
-| 5/6/2021 | [Microsoft Defender Antivirus on Windows Server](/microsoft-365/security/defender-endpoint/microsoft-defender-antivirus-on-windows-server?view=o365-21vianet) | modified |
-| 5/6/2021 | [Microsoft Defender for Endpoint on Linux](/microsoft-365/security/defender-endpoint/microsoft-defender-endpoint-linux?view=o365-21vianet) | modified |
-| 5/6/2021 | [Microsoft Defender Offline in Windows 10](/microsoft-365/security/defender-endpoint/microsoft-defender-offline?view=o365-21vianet) | modified |
-| 5/6/2021 | [Microsoft Defender Antivirus in the Windows Security app](/microsoft-365/security/defender-endpoint/microsoft-defender-security-center-antivirus?view=o365-21vianet) | modified |
-| 5/6/2021 | [Better together - Microsoft Defender Antivirus and Office 365 (including OneDrive) - better protection from ransomware and cyberthreats](/microsoft-365/security/defender-endpoint/office-365-microsoft-defender-antivirus?view=o365-21vianet) | modified |
-| 5/6/2021 | [Protect security settings with tamper protection](/microsoft-365/security/defender-endpoint/prevent-changes-to-security-settings-with-tamper-protection?view=o365-21vianet) | modified |
-| 5/6/2021 | [Hide the Microsoft Defender Antivirus interface](/microsoft-365/security/defender-endpoint/prevent-end-user-interaction-microsoft-defender-antivirus?view=o365-21vianet) | modified |
-| 5/6/2021 | [Monitor and report on Microsoft Defender Antivirus protection](/microsoft-365/security/defender-endpoint/report-monitor-microsoft-defender-antivirus?view=o365-21vianet) | modified |
-| 5/6/2021 | [Restore quarantined files in Microsoft Defender AV](/microsoft-365/security/defender-endpoint/restore-quarantined-files-microsoft-defender-antivirus?view=o365-21vianet) | modified |
-| 5/6/2021 | [Review the results of Microsoft Defender AV scans](/microsoft-365/security/defender-endpoint/review-scan-results-microsoft-defender-antivirus?view=o365-21vianet) | modified |
-| 5/6/2021 | [Run and customize on-demand scans in Microsoft Defender Antivirus](/microsoft-365/security/defender-endpoint/run-scan-microsoft-defender-antivirus?view=o365-21vianet) | modified |
-| 5/6/2021 | [Schedule regular quick and full scans with Microsoft Defender Antivirus](/microsoft-365/security/defender-endpoint/scheduled-catch-up-scans-microsoft-defender-antivirus?view=o365-21vianet) | modified |
-| 5/6/2021 | [Specify the cloud-delivered protection level for Microsoft Defender Antivirus](/microsoft-365/security/defender-endpoint/specify-cloud-protection-level-microsoft-defender-antivirus?view=o365-21vianet) | modified |
-| 5/6/2021 | [Switch to Microsoft Defender for Endpoint - Setup](/microsoft-365/security/defender-endpoint/switch-to-microsoft-defender-setup?view=o365-21vianet) | modified |
-| 5/6/2021 | [Microsoft Defender AV event IDs and error codes](/microsoft-365/security/defender-endpoint/troubleshoot-microsoft-defender-antivirus?view=o365-21vianet) | modified |
-| 5/6/2021 | [Troubleshoot problems with reporting tools for Microsoft Defender AV](/microsoft-365/security/defender-endpoint/troubleshoot-reporting?view=o365-21vianet) | modified |
-| 5/6/2021 | [Configure Microsoft Defender Antivirus with Group Policy](/microsoft-365/security/defender-endpoint/use-group-policy-microsoft-defender-antivirus?view=o365-21vianet) | modified |
-| 5/6/2021 | [Configure Microsoft Defender Antivirus with Configuration Manager and Intune](/microsoft-365/security/defender-endpoint/use-intune-config-manager-microsoft-defender-antivirus?view=o365-21vianet) | modified |
-| 5/6/2021 | [Go to the Action center to view and approve your automated investigation and remediation tasks](/microsoft-365/security/defender/m365d-action-center?view=o365-21vianet) | modified |
-| 5/6/2021 | [View and manage actions in the Action center](/microsoft-365/security/defender/m365d-autoir-actions?view=o365-21vianet) | modified |
-| 5/6/2021 | [Address false positives or false negatives in Microsoft 365 Defender](/microsoft-365/security/defender/m365d-autoir-report-false-positives-negatives?view=o365-21vianet) | modified |
-| 5/6/2021 | [Details and results of an automated investigation](/microsoft-365/security/defender/m365d-autoir-results?view=o365-21vianet) | modified |
-| 5/6/2021 | [Remediation actions in Microsoft 365 Defender](/microsoft-365/security/defender/m365d-remediation-actions?view=o365-21vianet) | modified |
-| 5/6/2021 | [Custom reporting solutions with automated investigation and response](/microsoft-365/security/office-365-security/air-custom-reporting?view=o365-21vianet) | modified |
-| 5/6/2021 | [Remediation actions in Microsoft Defender for Office 365](/microsoft-365/security/office-365-security/air-remediation-actions?view=o365-21vianet) | modified |
-| 5/6/2021 | [How to report false positives or false negatives following automated investigation in Microsoft Defender for Office 365](/microsoft-365/security/office-365-security/air-report-false-positives-negatives?view=o365-21vianet) | modified |
-| 5/6/2021 | [Review and manage remediation actions in Microsoft Defender for Office 365](/microsoft-365/security/office-365-security/air-review-approve-pending-completed-actions?view=o365-21vianet) | modified |
-| 5/6/2021 | [View the results of an automated investigation in Microsoft 365](/microsoft-365/security/office-365-security/air-view-investigation-results?view=o365-21vianet) | modified |
-| 5/6/2021 | [How automated investigation and response works in Microsoft Defender for Office 365](/microsoft-365/security/office-365-security/automated-investigation-response-office?view=o365-21vianet) | modified |
-| 5/6/2021 | [Find and release quarantined messages as a user](/microsoft-365/security/office-365-security/find-and-release-quarantined-messages-as-a-user?view=o365-21vianet) | modified |
-| 5/6/2021 | [Manage quarantined messages and files as an admin](/microsoft-365/security/office-365-security/manage-quarantined-messages-and-files?view=o365-21vianet) | modified |
-| 5/6/2021 | [Message trace in the Security & Compliance Center](/microsoft-365/security/office-365-security/message-trace-scc?view=o365-21vianet) | modified |
-| 5/6/2021 | [Automated investigation and response in Microsoft Defender for Office 365](/microsoft-365/security/office-365-security/office-365-air?view=o365-21vianet) | modified |
-| 5/6/2021 | [Quarantine tags](/microsoft-365/security/office-365-security/quarantine-tags?view=o365-21vianet) | modified |
-| 5/6/2021 | [Microsoft recommendations for EOP and Defender for Office 365 security settings](/microsoft-365/security/office-365-security/recommended-settings-for-eop-and-office365?view=o365-21vianet) | modified |
-| 5/6/2021 | [Smart reports, insights - Microsoft 365 Security & Compliance Center](/microsoft-365/security/office-365-security/reports-and-insights-in-security-and-compliance?view=o365-21vianet) | modified |
-| 5/6/2021 | [Safe Links](/microsoft-365/security/office-365-security/safe-links?view=o365-21vianet) | modified |
-| 5/6/2021 | [Security dashboard overview](/microsoft-365/security/office-365-security/security-dashboard?view=o365-21vianet) | modified |
-| 5/6/2021 | [End-user spam notifications in Microsoft 365](/microsoft-365/security/office-365-security/use-spam-notifications-to-release-and-report-quarantined-messages?view=o365-21vianet) | modified |
-| 5/7/2021 | [Manage contracts using a Microsoft 365 solution](/microsoft-365/contentunderstanding/solution-manage-contracts-in-microsoft-365) | added |
-| 5/7/2021 | [Step 1. Use SharePoint Syntex to identify contract files and extract data](/microsoft-365/contentunderstanding/solution-manage-contracts-step1) | added |
-| 5/7/2021 | [Step 2. Use Microsoft Teams to create your contract management channel](/microsoft-365/contentunderstanding/solution-manage-contracts-step2) | added |
-| 5/7/2021 | [Step 3. Use Power Automate to create your flow to process your contracts](/microsoft-365/contentunderstanding/solution-manage-contracts-step3) | added |
-| 5/7/2021 | [Investigate agent health issues](/microsoft-365/security/defender-endpoint/health-status?view=o365-21vianet) | added |
-| 5/7/2021 | [Understand your bill or invoice](/microsoft-365/commerce/billing-and-payments/understand-your-invoice?view=o365-21vianet) | modified |
-| 5/7/2021 | [Understand your bill or invoice for Microsoft 365 for business](/microsoft-365/commerce/billing-and-payments/understand-your-invoice2?view=o365-21vianet) | modified |
-| 5/7/2021 | [View your bill or invoice](/microsoft-365/commerce/billing-and-payments/view-your-bill-or-invoice?view=o365-21vianet) | modified |
-| 5/7/2021 | [Manage software-as-a-service apps for your organization](/microsoft-365/commerce/manage-saas-apps?view=o365-21vianet) | modified |
-| 5/7/2021 | [Microsoft Home Use Program frequently-asked questions (FAQ)](/microsoft-365/commerce/microsoft-home-use-program-faq?view=o365-21vianet) | modified |
-| 5/7/2021 | [Problems with your Microsoft 365 for business product key?](/microsoft-365/commerce/product-key-errors-and-solutions?view=o365-21vianet) | modified |
-| 5/7/2021 | [Move users to a different subscription](/microsoft-365/commerce/subscriptions/move-users-different-subscription?view=o365-21vianet) | modified |
-| 5/7/2021 | [Reactivate your subscription](/microsoft-365/commerce/subscriptions/reactivate-your-subscription?view=o365-21vianet) | modified |
-| 5/7/2021 | [Renew Microsoft 365 for business](/microsoft-365/commerce/subscriptions/renew-your-subscription?view=o365-21vianet) | modified |
-| 5/7/2021 | [Upgrade from an Office 365 E4 subscription](/microsoft-365/commerce/subscriptions/upgrade-office-365-e4?view=o365-21vianet) | modified |
-| 5/7/2021 | [Upgrade from Microsoft Teams Free to Microsoft 365 for business](/microsoft-365/commerce/subscriptions/upgrade-from-teams-free?view=o365-21vianet) | modified |
-| 5/7/2021 | [Upgrade to a different business plan](/microsoft-365/commerce/subscriptions/upgrade-to-different-plan?view=o365-21vianet) | modified |
-| 5/7/2021 | [Try or buy a Microsoft 365 for business subscription](/microsoft-365/commerce/try-or-buy-microsoft-365?view=o365-21vianet) | modified |
-| 5/7/2021 | [Understand the proposal workflow](/microsoft-365/commerce/understand-proposal-workflow?view=o365-21vianet) | modified |
-| 5/7/2021 | [Use your promo code to reduce price](/microsoft-365/commerce/use-a-promo-code?view=o365-21vianet) | modified |
-| 5/7/2021 | [Create and configure retention policies to automatically retain or delete content](/microsoft-365/compliance/create-retention-policies?view=o365-21vianet) | modified |
-| 5/7/2021 | [Learn about retention for Teams](/microsoft-365/compliance/retention-policies-teams?view=o365-21vianet) | modified |
-| 5/7/2021 | [Use network upload to import your organization's PST files](/microsoft-365/compliance/use-network-upload-to-import-pst-files?view=o365-21vianet) | modified |
-| 5/7/2021 | [Launch your portal using the Portal launch scheduler](/microsoft-365/enterprise/portallaunchscheduler?view=o365-21vianet) | modified |
-| 5/7/2021 | [Use Microsoft Search to find topics in Microsoft Viva Topics](/microsoft-365/knowledge/search) | modified |
-| 5/7/2021 | [Microsoft Viva Topics overview](/microsoft-365/knowledge/topic-experiences-overview) | modified |
-| 5/7/2021 | [Deploy Microsoft Defender for Endpoint on Linux manually](/microsoft-365/security/defender-endpoint/linux-install-manually?view=o365-21vianet) | modified |
-| 5/7/2021 | [Deploy Microsoft Defender for Endpoint on Linux with Ansible](/microsoft-365/security/defender-endpoint/linux-install-with-ansible?view=o365-21vianet) | modified |
-| 5/7/2021 | [Troubleshoot performance issues for Microsoft Defender for Endpoint on Linux](/microsoft-365/security/defender-endpoint/linux-support-perf?view=o365-21vianet) | modified |
-| 5/7/2021 | [Microsoft Defender Antivirus compatibility with other security products](/microsoft-365/security/defender-endpoint/microsoft-defender-antivirus-compatibility?view=o365-21vianet) | modified |
-| 5/7/2021 | [Prepare Microsoft Defender for Endpoint deployment](/microsoft-365/security/defender-endpoint/prepare-deployment?view=o365-21vianet) | modified |
-| 5/7/2021 | [Microsoft cloud architecture models - enterprise resource planning](/microsoft-365/solutions/cloud-architecture-models?view=o365-21vianet) | modified |
-| 5/7/2021 | [Specify additional definition sets for network traffic inspection for Microsoft Defender Antivirus](/microsoft-365/security/defender-endpoint/specify-additional-definitions-network-traffic-inspection-mdav?view=o365-21vianet) | added |
-| 5/7/2021 | [Turn on definition retirement for Microsoft Defender Antivirus](/microsoft-365/security/defender-endpoint/turn-on-definition-retirement?view=o365-21vianet) | added |
-| 5/7/2021 | [Turn on protocol recognition for Microsoft Defender Antivirus](/microsoft-365/security/defender-endpoint/turn-on-protocol-recognition?view=o365-21vianet) | added |
-| 5/7/2021 | [Email security with Threat Explorer in Microsoft Defender for Office 365](/microsoft-365/security/office-365-security/email-security-in-microsoft-defender?view=o365-21vianet) | added |
-| 5/7/2021 | [Threat Explorer and Real-time detections basics in Microsoft Defender for Office 365](/microsoft-365/security/office-365-security/real-time-detections?view=o365-21vianet) | added |
-| 5/7/2021 | [Threat hunting in Threat Explorer for Microsoft Defender for Office 365](/microsoft-365/security/office-365-security/threat-hunting-in-threat-explorer?view=o365-21vianet) | added |
-| 5/7/2021 | [Remove a domain](/microsoft-365/admin/get-help-with-domains/remove-a-domain?view=o365-21vianet) | modified |
-| 5/7/2021 | [Transfer data manually between two accounts](/microsoft-365/admin/get-help-with-domains/transfer-data-manually?view=o365-21vianet) | modified |
-| 5/7/2021 | [What is a domain?](/microsoft-365/admin/get-help-with-domains/what-is-a-domain?view=o365-21vianet) | modified |
-| 5/7/2021 | [Determine if Centralized Deployment of add-ins works for your organization](/microsoft-365/admin/manage/centralized-deployment-of-add-ins?view=o365-21vianet) | modified |
-| 5/7/2021 | [Change your organization's address, technical contact, and more](/microsoft-365/admin/manage/change-address-contact-and-more?view=o365-21vianet) | modified |
-| 5/7/2021 | [Manage Microsoft Rewards](/microsoft-365/admin/manage/manage-microsoft-rewards?view=o365-21vianet) | modified |
-| 5/7/2021 | [Upgrade distribution lists to Microsoft 365 Groups in Outlook](/microsoft-365/admin/manage/upgrade-distribution-lists?view=o365-21vianet) | modified |
-| 5/7/2021 | [Office 365 operated by 21Vianet](/microsoft-365/admin/services-in-china/services-in-china?view=o365-21vianet) | modified |
-| 5/7/2021 | [Migrate email and contacts to Microsoft 365](/microsoft-365/admin/setup/migrate-email-and-contacts-admin?view=o365-21vianet) | modified |
-| 5/7/2021 | [Plan your setup of Microsoft 365 for business](/microsoft-365/admin/setup/plan-your-setup?view=o365-21vianet) | modified |
-| 5/7/2021 | [Support information for Afghanistan](/microsoft-365/admin/support/afghanistan?view=o365-21vianet) | modified |
-| 5/7/2021 | [Support information for Aland Islands](/microsoft-365/admin/support/aland-islands?view=o365-21vianet) | modified |
-| 5/7/2021 | [Support information for Albania](/microsoft-365/admin/support/albania?view=o365-21vianet) | modified |
-| 5/7/2021 | [Support information for Algeria](/microsoft-365/admin/support/algeria?view=o365-21vianet) | modified |
-| 5/7/2021 | [Support information for American Samoa](/microsoft-365/admin/support/american-samoa?view=o365-21vianet) | modified |
-| 5/7/2021 | [Support information for Andorra](/microsoft-365/admin/support/andorra?view=o365-21vianet) | modified |
-| 5/7/2021 | [Support information for Angola](/microsoft-365/admin/support/angola?view=o365-21vianet) | modified |
-| 5/7/2021 | [Support information for Anguilla](/microsoft-365/admin/support/anguilla?view=o365-21vianet) | modified |
-| 5/7/2021 | [Support information for Antigua and Barbuda](/microsoft-365/admin/support/antigua-and-barbuda?view=o365-21vianet) | modified |
-| 5/7/2021 | [Support information for Argentina](/microsoft-365/admin/support/argentina?view=o365-21vianet) | modified |
-| 5/7/2021 | [Support information for Armenia](/microsoft-365/admin/support/armenia?view=o365-21vianet) | modified |
-| 5/7/2021 | [Support information for Aruba](/microsoft-365/admin/support/aruba?view=o365-21vianet) | modified |
-| 5/7/2021 | [Support information for Ascension](/microsoft-365/admin/support/ascension?view=o365-21vianet) | modified |
-| 5/7/2021 | [Support information for Australia](/microsoft-365/admin/support/australia?view=o365-21vianet) | modified |
-| 5/7/2021 | [Support information for Austria](/microsoft-365/admin/support/austria?view=o365-21vianet) | modified |
-| 5/7/2021 | [Support information for Azerbaijan](/microsoft-365/admin/support/azerbaijan?view=o365-21vianet) | modified |
-| 5/7/2021 | [Support information for Bahamas](/microsoft-365/admin/support/bahamas?view=o365-21vianet) | modified |
-| 5/7/2021 | [Support information for Bahrain, Kingdom of](/microsoft-365/admin/support/bahrain?view=o365-21vianet) | modified |
-| 5/7/2021 | [Support information for Bangladesh](/microsoft-365/admin/support/bangladesh?view=o365-21vianet) | modified |
-| 5/7/2021 | [Support information for Barbados](/microsoft-365/admin/support/barbados?view=o365-21vianet) | modified |
-| 5/7/2021 | [Support information for Belarus](/microsoft-365/admin/support/belarus?view=o365-21vianet) | modified |
-| 5/7/2021 | [Support information for Belgium](/microsoft-365/admin/support/belgium?view=o365-21vianet) | modified |
-| 5/7/2021 | [Support information for Belize](/microsoft-365/admin/support/belize?view=o365-21vianet) | modified |
-| 5/7/2021 | [Support information for Benin](/microsoft-365/admin/support/benin?view=o365-21vianet) | modified |
-| 5/7/2021 | [Support information for Bermuda](/microsoft-365/admin/support/bermuda?view=o365-21vianet) | modified |
-| 5/7/2021 | [Support information for Bhutan](/microsoft-365/admin/support/bhutan?view=o365-21vianet) | modified |
-| 5/7/2021 | [Support information for Bolivia](/microsoft-365/admin/support/bolivia?view=o365-21vianet) | modified |
-| 5/7/2021 | [Support information for Bonaire](/microsoft-365/admin/support/bonaire?view=o365-21vianet) | modified |
-| 5/7/2021 | [Support information for Bosnia and Herzegovnia](/microsoft-365/admin/support/bosnia-and-herzegovina?view=o365-21vianet) | modified |
-| 5/7/2021 | [Support information for Botswana](/microsoft-365/admin/support/botswana?view=o365-21vianet) | modified |
-| 5/7/2021 | [Support information for Bouvet Island](/microsoft-365/admin/support/bouvet-island?view=o365-21vianet) | modified |
-| 5/7/2021 | [Support information for Brazil](/microsoft-365/admin/support/brazil?view=o365-21vianet) | modified |
-| 5/7/2021 | [Support information for British Virgin Islands](/microsoft-365/admin/support/british-virgin-islands?view=o365-21vianet) | modified |
-| 5/7/2021 | [Support information for Brunei](/microsoft-365/admin/support/brunei?view=o365-21vianet) | modified |
-| 5/7/2021 | [Support information for Bulgaria](/microsoft-365/admin/support/bulgaria?view=o365-21vianet) | modified |
-| 5/7/2021 | [Support information for Burkina Faso](/microsoft-365/admin/support/burkina-faso?view=o365-21vianet) | modified |
-| 5/7/2021 | [Support information for Burundi](/microsoft-365/admin/support/burundi?view=o365-21vianet) | modified |
-| 5/7/2021 | [Support information for Cambodia](/microsoft-365/admin/support/cambodia?view=o365-21vianet) | modified |
-| 5/7/2021 | [Support information for Cameroon](/microsoft-365/admin/support/cameroon?view=o365-21vianet) | modified |
-| 5/7/2021 | [Support information for Canada](/microsoft-365/admin/support/canada?view=o365-21vianet) | modified |
-| 5/7/2021 | [Support information for Cape Verde (Cabo Verde)](/microsoft-365/admin/support/cape-verde?view=o365-21vianet) | modified |
-| 5/7/2021 | [Support information for Cayman Islands](/microsoft-365/admin/support/cayman-islands?view=o365-21vianet) | modified |
-| 5/7/2021 | [Support information for Central African Republic](/microsoft-365/admin/support/central-african-republic?view=o365-21vianet) | modified |
-| 5/7/2021 | [Support information for Chad](/microsoft-365/admin/support/chad?view=o365-21vianet) | modified |
-| 5/7/2021 | [Support information for Chile](/microsoft-365/admin/support/chile?view=o365-21vianet) | modified |
-| 5/7/2021 | [Support information for China (PRC)](/microsoft-365/admin/support/china-prc?view=o365-21vianet) | modified |
-| 5/7/2021 | [Support information for Christmas Island](/microsoft-365/admin/support/christmas-island?view=o365-21vianet) | modified |
-| 5/7/2021 | [Support information for Cocos (Keeling) Islands](/microsoft-365/admin/support/cocos-keeling-islands?view=o365-21vianet) | modified |
-| 5/7/2021 | [Support information for Colombia](/microsoft-365/admin/support/colombia?view=o365-21vianet) | modified |
-| 5/7/2021 | [Support information for Comoros](/microsoft-365/admin/support/comoros?view=o365-21vianet) | modified |
-| 5/7/2021 | [Support information for Congo (DRC)](/microsoft-365/admin/support/congo-drc?view=o365-21vianet) | modified |
-| 5/7/2021 | [Support information for Congo](/microsoft-365/admin/support/congo?view=o365-21vianet) | modified |
-| 5/7/2021 | [Support information for Cook Islands](/microsoft-365/admin/support/cook-islands?view=o365-21vianet) | modified |
-| 5/7/2021 | [Support information for Costa Rica](/microsoft-365/admin/support/costa-rica?view=o365-21vianet) | modified |
-| 5/7/2021 | [Support information for C├┤te d'Ivoire](/microsoft-365/admin/support/cote-divoire?view=o365-21vianet) | modified |
-| 5/7/2021 | [Support information for Croatia](/microsoft-365/admin/support/croatia?view=o365-21vianet) | modified |
-| 5/7/2021 | [Support information for Curacao](/microsoft-365/admin/support/curacao?view=o365-21vianet) | modified |
-| 5/7/2021 | [Support information for Cyprus](/microsoft-365/admin/support/cyprus?view=o365-21vianet) | modified |
-| 5/7/2021 | [Support information for Czech Republic](/microsoft-365/admin/support/czech-republic?view=o365-21vianet) | modified |
-| 5/7/2021 | [Support information for Denmark](/microsoft-365/admin/support/denmark?view=o365-21vianet) | modified |
-| 5/7/2021 | [Support information for Djibouti](/microsoft-365/admin/support/djibouti?view=o365-21vianet) | modified |
-| 5/7/2021 | [Support information for Dominica](/microsoft-365/admin/support/dominica?view=o365-21vianet) | modified |
-| 5/7/2021 | [Support information for Dominican Republic](/microsoft-365/admin/support/dominican-republic?view=o365-21vianet) | modified |
-| 5/7/2021 | [Support information for Ecuador](/microsoft-365/admin/support/ecuador?view=o365-21vianet) | modified |
-| 5/7/2021 | [Support information for Egypt](/microsoft-365/admin/support/egypt?view=o365-21vianet) | modified |
-| 5/7/2021 | [Support information for El Salvador](/microsoft-365/admin/support/el-salvador?view=o365-21vianet) | modified |
-| 5/7/2021 | [Support information for Equatorial Guinea](/microsoft-365/admin/support/equatorial-guinea?view=o365-21vianet) | modified |
-| 5/7/2021 | [Support information for Eritrea](/microsoft-365/admin/support/eritrea?view=o365-21vianet) | modified |
-| 5/7/2021 | [Support information for Estonia](/microsoft-365/admin/support/estonia?view=o365-21vianet) | modified |
-| 5/7/2021 | [Support information for Ethiopia](/microsoft-365/admin/support/ethiopia?view=o365-21vianet) | modified |
-| 5/7/2021 | [Support information for Falkland Islands](/microsoft-365/admin/support/falkland-islands?view=o365-21vianet) | modified |
-| 5/7/2021 | [Support information for Faroe Islands](/microsoft-365/admin/support/faroe-islands?view=o365-21vianet) | modified |
-| 5/7/2021 | [Support information for Fiji](/microsoft-365/admin/support/fiji?view=o365-21vianet) | modified |
-| 5/7/2021 | [Support information for Finland](/microsoft-365/admin/support/finland?view=o365-21vianet) | modified |
-| 5/7/2021 | [Support information for France](/microsoft-365/admin/support/france?view=o365-21vianet) | modified |
-| 5/7/2021 | [Support information for French Guiana](/microsoft-365/admin/support/french-guiana?view=o365-21vianet) | modified |
-| 5/7/2021 | [Support information for French Polynesia](/microsoft-365/admin/support/french-polynesia?view=o365-21vianet) | modified |
-| 5/7/2021 | [Support information for French Southern Territories (Antarctic Lands)](/microsoft-365/admin/support/french-southern-territories?view=o365-21vianet) | modified |
-| 5/7/2021 | [Support information for Gabon](/microsoft-365/admin/support/gabon?view=o365-21vianet) | modified |
-| 5/7/2021 | [Support information for Gambia](/microsoft-365/admin/support/gambia?view=o365-21vianet) | modified |
-| 5/7/2021 | [Support information for Georgia](/microsoft-365/admin/support/georgia?view=o365-21vianet) | modified |
-| 5/7/2021 | [Support information for Germany](/microsoft-365/admin/support/germany?view=o365-21vianet) | modified |
-| 5/7/2021 | [Support information for Ghana](/microsoft-365/admin/support/ghana?view=o365-21vianet) | modified |
-| 5/7/2021 | [Support information for Gibraltar](/microsoft-365/admin/support/gibraltar?view=o365-21vianet) | modified |
-| 5/7/2021 | [Support information for Greece](/microsoft-365/admin/support/greece?view=o365-21vianet) | modified |
-| 5/7/2021 | [Support information for Greenland](/microsoft-365/admin/support/greenland?view=o365-21vianet) | modified |
-| 5/7/2021 | [Support information for Grenada](/microsoft-365/admin/support/grenada?view=o365-21vianet) | modified |
-| 5/7/2021 | [Support information for Guadeloupe](/microsoft-365/admin/support/guadeloupe?view=o365-21vianet) | modified |
-| 5/7/2021 | [Support information for Guam](/microsoft-365/admin/support/guam?view=o365-21vianet) | modified |
-| 5/7/2021 | [Support information for Guatemala](/microsoft-365/admin/support/guatemala?view=o365-21vianet) | modified |
-| 5/7/2021 | [Support information for Guernsey](/microsoft-365/admin/support/guernsey?view=o365-21vianet) | modified |
-| 5/7/2021 | [Support information for Guinea-Bissau](/microsoft-365/admin/support/guinea-bissau?view=o365-21vianet) | modified |
-| 5/7/2021 | [Support information for Guinea](/microsoft-365/admin/support/guinea?view=o365-21vianet) | modified |
-| 5/7/2021 | [Support information for Guyana](/microsoft-365/admin/support/guyana?view=o365-21vianet) | modified |
-| 5/7/2021 | [Support information for Haiti](/microsoft-365/admin/support/haiti?view=o365-21vianet) | modified |
-| 5/7/2021 | [Support information for Heard Island and McDonald Islands](/microsoft-365/admin/support/heard-island-and-mcdonald-islands?view=o365-21vianet) | modified |
-| 5/7/2021 | [Support information for Honduras](/microsoft-365/admin/support/honduras?view=o365-21vianet) | modified |
-| 5/7/2021 | [Support information for Hong Kong SAR](/microsoft-365/admin/support/hong-kong-sar?view=o365-21vianet) | modified |
-| 5/7/2021 | [Support information for Hungary](/microsoft-365/admin/support/hungary?view=o365-21vianet) | modified |
-| 5/7/2021 | [Support information for Iceland](/microsoft-365/admin/support/iceland?view=o365-21vianet) | modified |
-| 5/7/2021 | [Support information for India](/microsoft-365/admin/support/india?view=o365-21vianet) | modified |
-| 5/7/2021 | [Support information for Indonesia](/microsoft-365/admin/support/indonesia?view=o365-21vianet) | modified |
-| 5/7/2021 | [Support information for Iraq](/microsoft-365/admin/support/iraq?view=o365-21vianet) | modified |
-| 5/7/2021 | [Support information for Ireland](/microsoft-365/admin/support/ireland?view=o365-21vianet) | modified |
-| 5/7/2021 | [Support information for Isle of Man](/microsoft-365/admin/support/isle-of-man?view=o365-21vianet) | modified |
-| 5/7/2021 | [Support information for Israel](/microsoft-365/admin/support/israel?view=o365-21vianet) | modified |
-| 5/7/2021 | [Support information for Italy](/microsoft-365/admin/support/italy?view=o365-21vianet) | modified |
-| 5/7/2021 | [Support information for Jamaica](/microsoft-365/admin/support/jamaica?view=o365-21vianet) | modified |
-| 5/7/2021 | [Support information for Jan Mayen](/microsoft-365/admin/support/jan-mayen?view=o365-21vianet) | modified |
-| 5/7/2021 | [Support information for Japan](/microsoft-365/admin/support/japan?view=o365-21vianet) | modified |
-| 5/7/2021 | [Support information for Jersey](/microsoft-365/admin/support/jersey?view=o365-21vianet) | modified |
-| 5/7/2021 | [Support information for Jordan](/microsoft-365/admin/support/jordan?view=o365-21vianet) | modified |
-| 5/7/2021 | [Support information for Kazakhstan](/microsoft-365/admin/support/kazakhstan?view=o365-21vianet) | modified |
-| 5/7/2021 | [Support information for Kenya](/microsoft-365/admin/support/kenya?view=o365-21vianet) | modified |
-| 5/7/2021 | [Support information for Kiribati](/microsoft-365/admin/support/kiribati?view=o365-21vianet) | modified |
-| 5/7/2021 | [Support information for Korea](/microsoft-365/admin/support/korea?view=o365-21vianet) | modified |
-| 5/7/2021 | [Support information for Kosovo](/microsoft-365/admin/support/kosovo?view=o365-21vianet) | modified |
-| 5/7/2021 | [Support information for Kuwait](/microsoft-365/admin/support/kuwait?view=o365-21vianet) | modified |
-| 5/7/2021 | [Support information for Kyrgyzstan](/microsoft-365/admin/support/kyrgyzstan?view=o365-21vianet) | modified |
-| 5/7/2021 | [Support information for Laos](/microsoft-365/admin/support/laos?view=o365-21vianet) | modified |
-| 5/7/2021 | [Support information for Latvia](/microsoft-365/admin/support/latvia?view=o365-21vianet) | modified |
-| 5/7/2021 | [Support information for Lebanon](/microsoft-365/admin/support/lebanon?view=o365-21vianet) | modified |
-| 5/7/2021 | [Support information for Lesotho](/microsoft-365/admin/support/lesotho?view=o365-21vianet) | modified |
-| 5/7/2021 | [Support information for Liberia](/microsoft-365/admin/support/liberia?view=o365-21vianet) | modified |
-| 5/7/2021 | [Support information for Libya](/microsoft-365/admin/support/libya?view=o365-21vianet) | modified |
-| 5/7/2021 | [Support information for Liechtenstein](/microsoft-365/admin/support/liechtenstein?view=o365-21vianet) | modified |
-| 5/7/2021 | [Support information for Lithuania](/microsoft-365/admin/support/lithuania?view=o365-21vianet) | modified |
-| 5/7/2021 | [Support information for Luxembourg](/microsoft-365/admin/support/luxembourg?view=o365-21vianet) | modified |
-| 5/7/2021 | [Support information for Macau SAR](/microsoft-365/admin/support/macau-sar?view=o365-21vianet) | modified |
-| 5/7/2021 | [Support information for Macedonia](/microsoft-365/admin/support/macedonia?view=o365-21vianet) | modified |
-| 5/7/2021 | [Support information for Madagascar](/microsoft-365/admin/support/madagascar?view=o365-21vianet) | modified |
-| 5/7/2021 | [Support information for Malawi](/microsoft-365/admin/support/malawi?view=o365-21vianet) | modified |
-| 5/7/2021 | [Support information for Malaysia](/microsoft-365/admin/support/malaysia?view=o365-21vianet) | modified |
-| 5/7/2021 | [Support information for Maldives](/microsoft-365/admin/support/maldives?view=o365-21vianet) | modified |
-| 5/7/2021 | [Support information for Mali](/microsoft-365/admin/support/mali?view=o365-21vianet) | modified |
-| 5/7/2021 | [Support information for Malta](/microsoft-365/admin/support/malta?view=o365-21vianet) | modified |
-| 5/7/2021 | [Support information for Marshall Islands](/microsoft-365/admin/support/marshall-islands?view=o365-21vianet) | modified |
-| 5/7/2021 | [Support information for Martinique](/microsoft-365/admin/support/martinique?view=o365-21vianet) | modified |
-| 5/7/2021 | [Support information for Mauritania](/microsoft-365/admin/support/mauritania?view=o365-21vianet) | modified |
-| 5/7/2021 | [Support information for Mauritius](/microsoft-365/admin/support/mauritius?view=o365-21vianet) | modified |
-| 5/7/2021 | [Support information for Mayotte](/microsoft-365/admin/support/mayotte?view=o365-21vianet) | modified |
-| 5/7/2021 | [Support information for Mexico](/microsoft-365/admin/support/mexico?view=o365-21vianet) | modified |
-| 5/7/2021 | [Support information for Micronesia](/microsoft-365/admin/support/micronesia?view=o365-21vianet) | modified |
-| 5/7/2021 | [Support information for Moldova](/microsoft-365/admin/support/moldova?view=o365-21vianet) | modified |
-| 5/7/2021 | [Support information for Monaco](/microsoft-365/admin/support/monaco?view=o365-21vianet) | modified |
-| 5/7/2021 | [Support information for Mongolia](/microsoft-365/admin/support/mongolia?view=o365-21vianet) | modified |
-| 5/7/2021 | [Support information for Montenegro](/microsoft-365/admin/support/montenegro?view=o365-21vianet) | modified |
-| 5/7/2021 | [Support information for Montserrat](/microsoft-365/admin/support/montserrat?view=o365-21vianet) | modified |
-| 5/7/2021 | [Support information for Morocco](/microsoft-365/admin/support/morocco?view=o365-21vianet) | modified |
-| 5/7/2021 | [Support information for Mozambique](/microsoft-365/admin/support/mozambique?view=o365-21vianet) | modified |
-| 5/7/2021 | [Support information for Myanmar](/microsoft-365/admin/support/myanmar?view=o365-21vianet) | modified |
-| 5/7/2021 | [Support information for Namibia](/microsoft-365/admin/support/namibia?view=o365-21vianet) | modified |
-| 5/7/2021 | [Support information for Nauru](/microsoft-365/admin/support/nauru?view=o365-21vianet) | modified |
-| 5/7/2021 | [Support information for Nepal](/microsoft-365/admin/support/nepal?view=o365-21vianet) | modified |
-| 5/7/2021 | [Support information for Netherlands](/microsoft-365/admin/support/netherlands?view=o365-21vianet) | modified |
-| 5/7/2021 | [Support information for New Caledonia](/microsoft-365/admin/support/new-caledonia?view=o365-21vianet) | modified |
-| 5/7/2021 | [Support information for New Zealand](/microsoft-365/admin/support/new-zealand?view=o365-21vianet) | modified |
-| 5/7/2021 | [Support information for Nicaragua](/microsoft-365/admin/support/nicaragua?view=o365-21vianet) | modified |
-| 5/7/2021 | [Support information for Niger](/microsoft-365/admin/support/niger?view=o365-21vianet) | modified |
-| 5/7/2021 | [Support information for Nigeria](/microsoft-365/admin/support/nigeria?view=o365-21vianet) | modified |
-| 5/7/2021 | [Support information for Niue](/microsoft-365/admin/support/niue?view=o365-21vianet) | modified |
-| 5/7/2021 | [Support information for Norfolk Island](/microsoft-365/admin/support/norfolk-island?view=o365-21vianet) | modified |
-| 5/7/2021 | [Support information for Northern Mariana Islands](/microsoft-365/admin/support/northern-mariana-islands?view=o365-21vianet) | modified |
-| 5/7/2021 | [Support information for Norway](/microsoft-365/admin/support/norway?view=o365-21vianet) | modified |
-| 5/7/2021 | [Support information for Oman](/microsoft-365/admin/support/oman?view=o365-21vianet) | modified |
-| 5/7/2021 | [Support information for Pakistan](/microsoft-365/admin/support/pakistan?view=o365-21vianet) | modified |
-| 5/7/2021 | [Support information for Palau](/microsoft-365/admin/support/palau?view=o365-21vianet) | modified |
-| 5/7/2021 | [Support information for Palestinian Authority](/microsoft-365/admin/support/palestinian-authority?view=o365-21vianet) | modified |
-| 5/7/2021 | [Support information for Panama](/microsoft-365/admin/support/panama?view=o365-21vianet) | modified |
-| 5/7/2021 | [Support information for Papua New Guinea](/microsoft-365/admin/support/papua-new-guinea?view=o365-21vianet) | modified |
-| 5/7/2021 | [Support information for Paraguay](/microsoft-365/admin/support/paraguay?view=o365-21vianet) | modified |
-| 5/7/2021 | [Support information for Peru](/microsoft-365/admin/support/peru?view=o365-21vianet) | modified |
-| 5/7/2021 | [Support information for Philippines](/microsoft-365/admin/support/philippines?view=o365-21vianet) | modified |
-| 5/7/2021 | [Support information for Pitcairn Islands](/microsoft-365/admin/support/pitcairn-islands?view=o365-21vianet) | modified |
-| 5/7/2021 | [Support information for Poland](/microsoft-365/admin/support/poland?view=o365-21vianet) | modified |
-| 5/7/2021 | [Support information for Portugal](/microsoft-365/admin/support/portugal?view=o365-21vianet) | modified |
-| 5/7/2021 | [Support information for Puerto Rico](/microsoft-365/admin/support/puerto-rico?view=o365-21vianet) | modified |
-| 5/7/2021 | [Support information for Qatar](/microsoft-365/admin/support/qatar?view=o365-21vianet) | modified |
-| 5/7/2021 | [Support information for Reunion](/microsoft-365/admin/support/reunion?view=o365-21vianet) | modified |
-| 5/7/2021 | [Support information for Romania](/microsoft-365/admin/support/romania?view=o365-21vianet) | modified |
-| 5/7/2021 | [Support information for Russia](/microsoft-365/admin/support/russia?view=o365-21vianet) | modified |
-| 5/7/2021 | [Support information for Rwanda](/microsoft-365/admin/support/rwanda?view=o365-21vianet) | modified |
-| 5/7/2021 | [Support information for Saba](/microsoft-365/admin/support/saba?view=o365-21vianet) | modified |
-| 5/7/2021 | [Support information for Saint Barthelemy](/microsoft-365/admin/support/saint-barthelemy?view=o365-21vianet) | modified |
-| 5/7/2021 | [Support information for Saint Lucia](/microsoft-365/admin/support/saint-lucia?view=o365-21vianet) | modified |
-| 5/7/2021 | [Support information for Saint Martin](/microsoft-365/admin/support/saint-martin?view=o365-21vianet) | modified |
-| 5/7/2021 | [Support information for Saint Pierre and Miquelon](/microsoft-365/admin/support/saint-pierre-and-miquelon?view=o365-21vianet) | modified |
-| 5/7/2021 | [Support information for Saint Vincent and the Grenadines](/microsoft-365/admin/support/saint-vincent-and-the-grenadines?view=o365-21vianet) | modified |
-| 5/7/2021 | [Support information for Samoa](/microsoft-365/admin/support/samoa?view=o365-21vianet) | modified |
-| 5/7/2021 | [Support information for San Marino](/microsoft-365/admin/support/san-marino?view=o365-21vianet) | modified |
-| 5/7/2021 | [Support information for Sao Tome and Principe](/microsoft-365/admin/support/sao-tome-and-principe?view=o365-21vianet) | modified |
-| 5/7/2021 | [Support information for Saudi Arabia](/microsoft-365/admin/support/saudi-arabia?view=o365-21vianet) | modified |
-| 5/7/2021 | [Support information for Senegal](/microsoft-365/admin/support/senegal?view=o365-21vianet) | modified |
-| 5/7/2021 | [Support information for Serbia](/microsoft-365/admin/support/serbia?view=o365-21vianet) | modified |
-| 5/7/2021 | [Support information for Seychelles](/microsoft-365/admin/support/seychelles?view=o365-21vianet) | modified |
-| 5/7/2021 | [Support information for Sierra Leone](/microsoft-365/admin/support/sierra-leone?view=o365-21vianet) | modified |
-| 5/7/2021 | [Support information for Singapore](/microsoft-365/admin/support/singapore?view=o365-21vianet) | modified |
-| 5/7/2021 | [Support information for Sint Eustatius](/microsoft-365/admin/support/sint-eustatius?view=o365-21vianet) | modified |
-| 5/7/2021 | [Support information for Sint Maarten](/microsoft-365/admin/support/sint-maarten?view=o365-21vianet) | modified |
-| 5/7/2021 | [Support information for Slovakia](/microsoft-365/admin/support/slovakia?view=o365-21vianet) | modified |
-| 5/7/2021 | [Support information for Slovenia](/microsoft-365/admin/support/slovenia?view=o365-21vianet) | modified |
-| 5/7/2021 | [Support information for Solomon Islands](/microsoft-365/admin/support/solomon-islands?view=o365-21vianet) | modified |
-| 5/7/2021 | [Support information for Somalia](/microsoft-365/admin/support/somalia?view=o365-21vianet) | modified |
-| 5/7/2021 | [Support information for South Africa](/microsoft-365/admin/support/south-africa?view=o365-21vianet) | modified |
-| 5/7/2021 | [Support information for South Georgia and South Sandwich Islands](/microsoft-365/admin/support/south-georgia-and-south-sandwich-islands?view=o365-21vianet) | modified |
-| 5/7/2021 | [Support information for South Sudan](/microsoft-365/admin/support/south-sudan?view=o365-21vianet) | modified |
-| 5/7/2021 | [Support information for Spain](/microsoft-365/admin/support/spain?view=o365-21vianet) | modified |
-| 5/7/2021 | [Support information for Sri Lanka](/microsoft-365/admin/support/sri-lanka?view=o365-21vianet) | modified |
-| 5/7/2021 | [Support information for St Helena](/microsoft-365/admin/support/st-helena?view=o365-21vianet) | modified |
-| 5/7/2021 | [Support information for St Kitts & Nevis](/microsoft-365/admin/support/st-kitts-nevis?view=o365-21vianet) | modified |
-| 5/7/2021 | [Support information for Suriname](/microsoft-365/admin/support/suriname?view=o365-21vianet) | modified |
-| 5/7/2021 | [Support information for Svalbard](/microsoft-365/admin/support/svalbard?view=o365-21vianet) | modified |
-| 5/7/2021 | [Support information for Swaziland](/microsoft-365/admin/support/swaziland?view=o365-21vianet) | modified |
-| 5/7/2021 | [Support information for Sweden](/microsoft-365/admin/support/sweden?view=o365-21vianet) | modified |
-| 5/7/2021 | [Support information for Switzerland](/microsoft-365/admin/support/switzerland?view=o365-21vianet) | modified |
-| 5/7/2021 | [Support information for Taiwan](/microsoft-365/admin/support/taiwan?view=o365-21vianet) | modified |
-| 5/7/2021 | [Support information for Tajikistan](/microsoft-365/admin/support/tajikistan?view=o365-21vianet) | modified |
-| 5/7/2021 | [Support information for Tanzania](/microsoft-365/admin/support/tanzania?view=o365-21vianet) | modified |
-| 5/7/2021 | [Support information for Thailand](/microsoft-365/admin/support/thailand?view=o365-21vianet) | modified |
-| 5/7/2021 | [Support information for Timor-Leste](/microsoft-365/admin/support/timor-leste?view=o365-21vianet) | modified |
-| 5/7/2021 | [Support information for Togo](/microsoft-365/admin/support/togo?view=o365-21vianet) | modified |
-| 5/7/2021 | [Support information for Tokelau](/microsoft-365/admin/support/tokelau?view=o365-21vianet) | modified |
-| 5/7/2021 | [Support information for Tonga](/microsoft-365/admin/support/tonga?view=o365-21vianet) | modified |
-| 5/7/2021 | [Support information for Trinidad and Tobago](/microsoft-365/admin/support/trinidad-and-tobago?view=o365-21vianet) | modified |
-| 5/7/2021 | [Support information for Tristan da Cunha](/microsoft-365/admin/support/tristan-da-cunha?view=o365-21vianet) | modified |
-| 5/7/2021 | [Support information for Tunisia](/microsoft-365/admin/support/tunisia?view=o365-21vianet) | modified |
-| 5/7/2021 | [Support information for Turkey](/microsoft-365/admin/support/turkey?view=o365-21vianet) | modified |
-| 5/7/2021 | [Support information for Turkmenistan](/microsoft-365/admin/support/turkmenistan?view=o365-21vianet) | modified |
-| 5/7/2021 | [Support information for Turks and Caicos Islands](/microsoft-365/admin/support/turks-and-caicos-islands?view=o365-21vianet) | modified |
-| 5/7/2021 | [Support information for Tuvalu](/microsoft-365/admin/support/tuvalu?view=o365-21vianet) | modified |
-| 5/7/2021 | [Support information for Uganda](/microsoft-365/admin/support/uganda?view=o365-21vianet) | modified |
-| 5/7/2021 | [Support information for Ukraine](/microsoft-365/admin/support/ukraine?view=o365-21vianet) | modified |
-| 5/7/2021 | [Support information for UAE (United Arab Emirates)](/microsoft-365/admin/support/united-arab-emirates?view=o365-21vianet) | modified |
-| 5/7/2021 | [Support information for United Kingdom](/microsoft-365/admin/support/united-kingdom?view=o365-21vianet) | modified |
-| 5/7/2021 | [Support information for United States](/microsoft-365/admin/support/united-states?view=o365-21vianet) | modified |
-| 5/7/2021 | [Support information for Uruguay](/microsoft-365/admin/support/uruguay?view=o365-21vianet) | modified |
-| 5/7/2021 | [Support information for Uzbekistan](/microsoft-365/admin/support/uzbekistan?view=o365-21vianet) | modified |
-| 5/7/2021 | [Support information for Vanuatu](/microsoft-365/admin/support/vanuatu?view=o365-21vianet) | modified |
-| 5/7/2021 | [Support information for Vatican City](/microsoft-365/admin/support/vatican-city?view=o365-21vianet) | modified |
-| 5/7/2021 | [Support information for Venezuela](/microsoft-365/admin/support/venezuela?view=o365-21vianet) | modified |
-| 5/7/2021 | [Support information for Vietnam](/microsoft-365/admin/support/vietnam?view=o365-21vianet) | modified |
-| 5/7/2021 | [Support information for Virgin Islands, US](/microsoft-365/admin/support/virgin-islands?view=o365-21vianet) | modified |
-| 5/7/2021 | [Support information for Wallis and Futuna](/microsoft-365/admin/support/wallis-and-futuna?view=o365-21vianet) | modified |
-| 5/7/2021 | [Support information for Yemen](/microsoft-365/admin/support/yemen?view=o365-21vianet) | modified |
-| 5/7/2021 | [Support information for Zambia](/microsoft-365/admin/support/zambia?view=o365-21vianet) | modified |
-| 5/7/2021 | [Support information for Zimbabwe](/microsoft-365/admin/support/zimbabwe?view=o365-21vianet) | modified |
-| 5/7/2021 | [Troubleshooting Microsoft 365 usage analytics](/microsoft-365/admin/usage-analytics/usage-analytics-errors?view=o365-21vianet) | modified |
-| 5/7/2021 | [Microsoft 365 usage analytics](/microsoft-365/admin/usage-analytics/usage-analytics?view=o365-21vianet) | modified |
-| 5/7/2021 | [Get started with Microsoft 365 for business](/microsoft-365/business/microsoft-365-business-start?view=o365-21vianet) | modified |
-| 5/7/2021 | [Setup overview for Microsoft 365 Business Premium](/microsoft-365/campaigns/microsoft-365-campaigns-setup-overview?view=o365-21vianet) | modified |
-| 5/7/2021 | [Add storage space for your subscription](/microsoft-365/commerce/add-storage-space?view=o365-21vianet) | modified |
-| 5/7/2021 | [Manage payment methods](/microsoft-365/commerce/billing-and-payments/manage-payment-methods?view=o365-21vianet) | modified |
-| 5/7/2021 | [Buy or manage add-ons](/microsoft-365/commerce/buy-or-edit-an-add-on?view=o365-21vianet) | modified |
-| 5/7/2021 | [Close your account](/microsoft-365/commerce/close-your-account?view=o365-21vianet) | modified |
-| 5/7/2021 | [Enter your product key for Microsoft 365 Business Standard](/microsoft-365/commerce/enter-your-product-key?view=o365-21vianet) | modified |
-| 5/7/2021 | [Manage billing accounts](/microsoft-365/commerce/manage-billing-accounts?view=o365-21vianet) | modified |
-| 5/7/2021 | [Enter your product key purchased from Microsoft Open](/microsoft-365/commerce/purchases-from-microsoft-open?view=o365-21vianet) | modified |
-| 5/7/2021 | [Cancel your subscription](/microsoft-365/commerce/subscriptions/cancel-your-subscription?view=o365-21vianet) | modified |
-| 5/7/2021 | [Change Microsoft 365 for business plans manually](/microsoft-365/commerce/subscriptions/change-plans-manually?view=o365-21vianet) | modified |
-| 5/7/2021 | [Manage self-service purchases (Admins)](/microsoft-365/commerce/subscriptions/manage-self-service-purchases-admins?view=o365-21vianet) | modified |
-| 5/7/2021 | [Manage self-service purchases (Users)](/microsoft-365/commerce/subscriptions/manage-self-service-purchases-users?view=o365-21vianet) | modified |
-| 5/7/2021 | [Verify academic eligibility for Microsoft 365 Education subscriptions](/microsoft-365/commerce/subscriptions/verify-academic-eligibility?view=o365-21vianet) | modified |
-| 5/7/2021 | [What happens to my data and access when my subscription ends?](/microsoft-365/commerce/subscriptions/what-if-my-subscription-expires?view=o365-21vianet) | modified |
-| 5/7/2021 | [Data Loss Prevention Reference](/microsoft-365/compliance/data-loss-prevention-policies?view=o365-21vianet) | modified |
-| 5/7/2021 | [Disposition of content](/microsoft-365/compliance/disposition?view=o365-21vianet) | modified |
-| 5/7/2021 | [Microsoft Information Protection in Microsoft 365](/microsoft-365/compliance/information-protection?view=o365-21vianet) | modified |
-| 5/7/2021 | [Enable co-authoring for documents encrypted by sensitivity labels in Microsoft 365](/microsoft-365/compliance/sensitivity-labels-coauthoring?view=o365-21vianet) | modified |
-| 5/7/2021 | [Learn about sensitivity labels](/microsoft-365/compliance/sensitivity-labels?view=o365-21vianet) | modified |
-| 5/7/2021 | [Service assurance in the Security & Compliance Center](/microsoft-365/compliance/service-assurance?view=o365-21vianet) | modified |
-| 5/7/2021 | [Cloud services roadmap for Microsoft 365](/microsoft-365/enterprise/cloud-services-roadmap-microsoft-365?view=o365-21vianet) | modified |
-| 5/7/2021 | [Data move general FAQ](/microsoft-365/enterprise/data-move-faq?view=o365-21vianet) | modified |
-| 5/7/2021 | [Contact Microsoft Defender for Endpoint support for US Government customers](/microsoft-365/security/defender-endpoint/contact-support-usgov?view=o365-21vianet) | modified |
-| 5/7/2021 | [Deploy Microsoft Defender for Endpoint in rings](/microsoft-365/security/defender-endpoint/deployment-rings?view=o365-21vianet) | modified |
-| 5/7/2021 | [Configure Microsoft Defender Antivirus with Group Policy](/microsoft-365/security/defender-endpoint/use-group-policy-microsoft-defender-antivirus?view=o365-21vianet) | modified |
-| 5/7/2021 | [Step 1. Triage and analyze your first incident](/microsoft-365/security/defender/first-incident-analyze?view=o365-21vianet) | modified |
-| 5/7/2021 | [Introduction to responding to your first incident](/microsoft-365/security/defender/first-incident-overview?view=o365-21vianet) | modified |
-| 5/7/2021 | [Example of an identity-based attack](/microsoft-365/security/defender/first-incident-path-identity?view=o365-21vianet) | modified |
-| 5/7/2021 | [Example of a phishing email attack](/microsoft-365/security/defender/first-incident-path-phishing?view=o365-21vianet) | modified |
-| 5/7/2021 | [Step 3. Perform a post-incident review of your first incident](/microsoft-365/security/defender/first-incident-post?view=o365-21vianet) | modified |
-| 5/7/2021 | [Prepare your security posture for your first incident](/microsoft-365/security/defender/first-incident-prepare?view=o365-21vianet) | modified |
-| 5/7/2021 | [Step 2. Remediate your first incident](/microsoft-365/security/defender/first-incident-remediate?view=o365-21vianet) | modified |
-| 5/7/2021 | [Get incident notifications by email in Microsoft 365 Defender](/microsoft-365/security/defender/get-incident-notifications?view=o365-21vianet) | modified |
-| 5/7/2021 | [Prioritize incidents in Microsoft 365 Defender](/microsoft-365/security/defender/incident-queue?view=o365-21vianet) | modified |
-| 5/7/2021 | [Incidents in Microsoft 365 Defender](/microsoft-365/security/defender/incidents-overview?view=o365-21vianet) | modified |
-| 5/7/2021 | [Investigate alerts in Microsoft 365 Defender](/microsoft-365/security/defender/investigate-alerts?view=o365-21vianet) | modified |
-| 5/7/2021 | [Investigate incidents in Microsoft 365 Defender](/microsoft-365/security/defender/investigate-incidents?view=o365-21vianet) | modified |
-| 5/7/2021 | [Investigate users in Microsoft 365 security center](/microsoft-365/security/defender/investigate-users?view=o365-21vianet) | modified |
-| 5/7/2021 | [Manage incidents in Microsoft 365 Defender](/microsoft-365/security/defender/manage-incidents?view=o365-21vianet) | modified |
-| 5/7/2021 | [Anti-spoofing protection](/microsoft-365/security/office-365-security/anti-spoofing-protection?view=o365-21vianet) | modified |
-| 5/7/2021 | [Help and support for EOP](/microsoft-365/security/office-365-security/help-and-support-for-eop?view=o365-21vianet) | modified |
-| 5/7/2021 | [Add support for anonymous inbound email over IPv6](/microsoft-365/security/office-365-security/support-for-anonymous-inbound-email-messages-over-ipv6?view=o365-21vianet) | modified |
-| 5/7/2021 | [Microsoft Defender for Endpoint Device Control Removable Storage Access Control](/microsoft-365/security/defender-endpoint/device-control-removable-storage-access-control?view=o365-21vianet) | added |
-| 5/7/2021 | [Microsoft Defender for Endpoint Device Control Removable Storage Protection](/microsoft-365/security/defender-endpoint/device-control-removable-storage-protection?view=o365-21vianet) | added |
-| 5/7/2021 | [Enable the Report Message or the Report Phishing add-ins](/microsoft-365/security/office-365-security/enable-the-report-message-add-in?view=o365-21vianet) | modified |
-| 5/7/2021 | [Report false positives and false negatives in Outlook](/microsoft-365/security/office-365-security/report-false-positives-and-false-negatives?view=o365-21vianet) | modified |
-| 5/7/2021 | [Report spam, non-spam, and phishing messages to Microsoft](/microsoft-365/security/office-365-security/report-junk-email-messages-to-microsoft?view=o365-21vianet) | modified |
--
-## Week of April 26, 2021
--
-| Published On |Topic title | Change |
-|||--|
-| 4/26/2021 | [Add a new employee to Microsoft 365](/microsoft-365/admin/add-users/add-new-employee?view=o365-21vianet) | modified |
-| 4/26/2021 | [Add users and assign licenses](/microsoft-365/admin/add-users/add-users?view=o365-21vianet) | modified |
-| 4/26/2021 | [Assign admin roles the Microsoft 365 admin center](/microsoft-365/admin/add-users/assign-admin-roles?view=o365-21vianet) | modified |
-| 4/26/2021 | [Change a user name and email address](/microsoft-365/admin/add-users/change-a-user-name-and-email-address?view=o365-21vianet) | modified |
-| 4/26/2021 | [Let users reset their own passwords](/microsoft-365/admin/add-users/let-users-reset-passwords?view=o365-21vianet) | modified |
-| 4/26/2021 | [Remove a former employee](/microsoft-365/admin/add-users/remove-former-employee?view=o365-21vianet) | modified |
-| 4/26/2021 | [Reset passwords](/microsoft-365/admin/add-users/reset-passwords?view=o365-21vianet) | modified |
-| 4/26/2021 | [Restore a user](/microsoft-365/admin/add-users/restore-user?view=o365-21vianet) | modified |
-| 4/26/2021 | [About the Microsoft 365 admin center](/microsoft-365/admin/admin-overview/about-the-admin-center?view=o365-21vianet) | modified |
-| 4/26/2021 | [About the Microsoft 365 Admin mobile app](/microsoft-365/admin/admin-overview/admin-mobile-app?view=o365-21vianet) | modified |
-| 4/26/2021 | [Get started with Microsoft 365 for business](/microsoft-365/admin/admin-overview/get-started-with-office-365?view=o365-21vianet) | modified |
-| 4/26/2021 | [How to sign up - Admin Help](/microsoft-365/admin/admin-overview/sign-up-for-office-365?view=o365-21vianet) | modified |
-| 4/26/2021 | [Create device security policies in Basic Mobility and Security](/microsoft-365/admin/basic-mobility-security/create-device-security-policies?view=o365-21vianet) | modified |
-| 4/26/2021 | [Basic Mobility and Security frequently-asked questions (FAQ)](/microsoft-365/admin/basic-mobility-security/frequently-asked-questions?view=o365-21vianet) | modified |
-| 4/26/2021 | [Manage devices enrolled in Mobile Device Management in Microsoft 365](/microsoft-365/admin/basic-mobility-security/manage-enrolled-devices?view=o365-21vianet) | modified |
-| 4/26/2021 | [Turn off Basic Mobility and Security](/microsoft-365/admin/basic-mobility-security/turn-off?view=o365-21vianet) | modified |
-| 4/26/2021 | [Wipe a mobile device in Basic Mobility and Security](/microsoft-365/admin/basic-mobility-security/wipe-mobile-device?view=o365-21vianet) | modified |
-| 4/26/2021 | [Compare groups](/microsoft-365/admin/create-groups/compare-groups?view=o365-21vianet) | modified |
-| 4/26/2021 | [Transfer data manually between two accounts](/microsoft-365/admin/get-help-with-domains/transfer-data-manually?view=o365-21vianet) | modified |
-| 4/26/2021 | [Assign licenses to users](/microsoft-365/admin/manage/assign-licenses-to-users?view=o365-21vianet) | modified |
-| 4/26/2021 | [Manage your data and service # < 60 chars](/microsoft-365/admin/manage/index?view=o365-21vianet) | modified |
-| 4/26/2021 | [Empower your small business with remote work](/microsoft-365/admin/misc/empower-your-small-business-with-remote-work?view=o365-21vianet) | modified |
-| 4/26/2021 | [What's new in the Microsoft 365 admin center?](/microsoft-365/admin/whats-new-in-preview?view=o365-21vianet) | modified |
-| 4/26/2021 | [Payment information for Australia](/microsoft-365/commerce/pay/australia?view=o365-21vianet) | modified |
-| 4/26/2021 | [Payment information for Austria](/microsoft-365/commerce/pay/austria?view=o365-21vianet) | modified |
-| 4/26/2021 | [Payment information for Belgium](/microsoft-365/commerce/pay/belgium?view=o365-21vianet) | modified |
-| 4/26/2021 | [Payment information for Canada](/microsoft-365/commerce/pay/canada?view=o365-21vianet) | modified |
-| 4/26/2021 | [Payment information for Denmark](/microsoft-365/commerce/pay/denmark?view=o365-21vianet) | modified |
-| 4/26/2021 | [Payment information for Finland](/microsoft-365/commerce/pay/finland?view=o365-21vianet) | modified |
-| 4/26/2021 | [Payment information for France](/microsoft-365/commerce/pay/france?view=o365-21vianet) | modified |
-| 4/26/2021 | [Payment information for Germany](/microsoft-365/commerce/pay/germany?view=o365-21vianet) | modified |
-| 4/26/2021 | [Payment information for Netherlands](/microsoft-365/commerce/pay/netherlands?view=o365-21vianet) | modified |
-| 4/26/2021 | [Payment information for Norway](/microsoft-365/commerce/pay/norway?view=o365-21vianet) | modified |
-| 4/26/2021 | [Payment information for Sweden](/microsoft-365/commerce/pay/sweden?view=o365-21vianet) | modified |
-| 4/26/2021 | [Payment information for Switzerland](/microsoft-365/commerce/pay/switzerland?view=o365-21vianet) | modified |
-| 4/26/2021 | [Payment information for United Kingdom](/microsoft-365/commerce/pay/united-kingdom?view=o365-21vianet) | modified |
-| 4/26/2021 | [Azure ExpressRoute for Office 365](/microsoft-365/enterprise/azure-expressroute?view=o365-21vianet) | modified |
-| 4/26/2021 | [Localize the user experience](/microsoft-365/managed-desktop/get-started/localization?view=o365-21vianet) | modified |
-| 4/26/2021 | [Use attack surface reduction rules to prevent malware infection](/microsoft-365/security/defender-endpoint/attack-surface-reduction?view=o365-21vianet) | modified |
-| 4/26/2021 | [DeviceEvents table in the advanced hunting schema](/microsoft-365/security/defender/advanced-hunting-deviceevents-table?view=o365-21vianet) | modified |
-| 4/26/2021 | [DeviceFileCertificateInfo table in the advanced hunting schema](/microsoft-365/security/defender/advanced-hunting-devicefilecertificateinfo-table?view=o365-21vianet) | modified |
-| 4/26/2021 | [DeviceFileEvents table in the advanced hunting schema](/microsoft-365/security/defender/advanced-hunting-devicefileevents-table?view=o365-21vianet) | modified |
-| 4/26/2021 | [DeviceImageLoadEvents table in the advanced hunting schema](/microsoft-365/security/defender/advanced-hunting-deviceimageloadevents-table?view=o365-21vianet) | modified |
-| 4/26/2021 | [DeviceInfo table in the advanced hunting schema](/microsoft-365/security/defender/advanced-hunting-deviceinfo-table?view=o365-21vianet) | modified |
-| 4/26/2021 | [DeviceLogonEvents table in the advanced hunting schema](/microsoft-365/security/defender/advanced-hunting-devicelogonevents-table?view=o365-21vianet) | modified |
-| 4/26/2021 | [DeviceNetworkEvents table in the advanced hunting schema](/microsoft-365/security/defender/advanced-hunting-devicenetworkevents-table?view=o365-21vianet) | modified |
-| 4/26/2021 | [DeviceNetworkInfo table in the advanced hunting schema](/microsoft-365/security/defender/advanced-hunting-devicenetworkinfo-table?view=o365-21vianet) | modified |
-| 4/26/2021 | [DeviceProcessEvents table in the advanced hunting schema](/microsoft-365/security/defender/advanced-hunting-deviceprocessevents-table?view=o365-21vianet) | modified |
-| 4/26/2021 | [DeviceRegistryEvents table in the advanced hunting schema](/microsoft-365/security/defender/advanced-hunting-deviceregistryevents-table?view=o365-21vianet) | modified |
-| 4/26/2021 | [DeviceTvmSecureConfigurationAssessment table in the advanced hunting schema](/microsoft-365/security/defender/advanced-hunting-devicetvmsecureconfigurationassessment-table?view=o365-21vianet) | modified |
-| 4/26/2021 | [DeviceTvmSecureConfigurationAssessmentKB table in the advanced hunting schema](/microsoft-365/security/defender/advanced-hunting-devicetvmsecureconfigurationassessmentkb-table?view=o365-21vianet) | modified |
-| 4/26/2021 | [DeviceTvmSoftwareInventory table in the advanced hunting schema](/microsoft-365/security/defender/advanced-hunting-devicetvmsoftwareinventory-table?view=o365-21vianet) | modified |
-| 4/26/2021 | DeviceTvmSoftwareInventory table in the advanced hunting schema | removed |
-| 4/26/2021 | [DeviceTvmSoftwareVulnerabilities table in the advanced hunting schema](/microsoft-365/security/defender/advanced-hunting-devicetvmsoftwarevulnerabilities-table?view=o365-21vianet) | modified |
-| 4/26/2021 | [DeviceTvmSoftwareVulnerabilitiesKB table in the advanced hunting schema](/microsoft-365/security/defender/advanced-hunting-devicetvmsoftwarevulnerabilitieskb-table?view=o365-21vianet) | modified |
-| 4/26/2021 | [Naming changes in the Microsoft 365 Defender advanced hunting schema](/microsoft-365/security/defender/advanced-hunting-schema-changes?view=o365-21vianet) | modified |
-| 4/26/2021 | [Threat Explorer and Real-time detections](/microsoft-365/security/office-365-security/threat-explorer?view=o365-21vianet) | modified |
-| 4/26/2021 | [Microsoft 365 Connectivity Telemetry](/microsoft-365/enterprise/microsoft-365-connectivity-telemetry?view=o365-21vianet) | added |
-| 4/26/2021 | [What's new in Microsoft 365 compliance](/microsoft-365/compliance/whats-new?view=o365-21vianet) | modified |
-| 4/26/2021 | [Windows and Office deployment lab kit](/microsoft-365/enterprise/modern-desktop-deployment-and-management-lab?view=o365-21vianet) | modified |
-| 4/26/2021 | [Migration phases actions and impacts for the migration from Microsoft Cloud Deutschland)](/microsoft-365/enterprise/ms-cloud-germany-transition-phases?view=o365-21vianet) | modified |
-| 4/26/2021 | [Microsoft 365 data locations](/microsoft-365/enterprise/o365-data-locations?view=o365-21vianet) | modified |
-| 4/26/2021 | [Apps in Microsoft Managed Desktop](/microsoft-365/managed-desktop/get-ready/apps?view=o365-21vianet) | modified |
-| 4/26/2021 | [Preview features in Microsoft 365 Defender](/microsoft-365/security/defender/preview?view=o365-21vianet) | modified |
-| 4/26/2021 | [What's new in Microsoft 365 Defender](/microsoft-365/security/defender/whats-new?view=o365-21vianet) | modified |
-| 4/26/2021 | [Microsoft 365 solutions for the Contoso Corporation](/microsoft-365/solutions/contoso-case-study-solutions?view=o365-21vianet) | modified |
-| 4/26/2021 | [Contoso's COVID-19 response and support for remote and onsite work](/microsoft-365/solutions/contoso-remote-onsite-work?view=o365-21vianet) | modified |
-| 4/26/2021 | [Isolated team for a top-secret project of the Contoso Corporation](/microsoft-365/solutions/contoso-team-for-top-secret-project?view=o365-21vianet) | modified |
-| 4/26/2021 | [Step 4. Deploy endpoint management for your devices, PCs, and other endpoints](/microsoft-365/solutions/empower-people-to-work-remotely-manage-endpoints?view=o365-21vianet) | modified |
-| 4/26/2021 | [Step 2. Provide remote access to on-premises apps and services](/microsoft-365/solutions/empower-people-to-work-remotely-remote-access?view=o365-21vianet) | modified |
-| 4/26/2021 | [Step 1. Increase sign-in security for remote workers with MFA](/microsoft-365/solutions/empower-people-to-work-remotely-secure-sign-in?view=o365-21vianet) | modified |
-| 4/26/2021 | [Step 3: Deploy security and compliance for remote workers](/microsoft-365/solutions/empower-people-to-work-remotely-security-compliance?view=o365-21vianet) | modified |
-| 4/26/2021 | [Step 5. Deploy remote worker productivity apps and services](/microsoft-365/solutions/empower-people-to-work-remotely-teams-productivity-apps?view=o365-21vianet) | modified |
-| 4/26/2021 | [Step 6: Train remote workers and address usage feedback](/microsoft-365/solutions/empower-people-to-work-remotely-train-monitor-usage?view=o365-21vianet) | modified |
-| 4/26/2021 | [Empower remote workers with Microsoft 365](/microsoft-365/solutions/empower-people-to-work-remotely?view=o365-21vianet) | modified |
-| 4/26/2021 | [Microsoft 365 productivity illustrations](/microsoft-365/solutions/productivity-illustrations?view=o365-21vianet) | modified |
-| 4/27/2021 | [List all remediation activities](/microsoft-365/security/defender-endpoint/get-remediation-all-activities?view=o365-21vianet) | added |
-| 4/27/2021 | [List exposed devices of one remediation activity](/microsoft-365/security/defender-endpoint/get-remediation-exposed-devices-activities?view=o365-21vianet) | added |
-| 4/27/2021 | [Remediation activity methods and properties](/microsoft-365/security/defender-endpoint/get-remediation-methods-properties?view=o365-21vianet) | added |
-| 4/27/2021 | [Get one remediation activity by Id](/microsoft-365/security/defender-endpoint/get-remediation-one-activity?view=o365-21vianet) | added |
-| 4/27/2021 | [Windows and Office deployment lab kit](/microsoft-365/enterprise/modern-desktop-deployment-and-management-lab?view=o365-21vianet) | modified |
-| 4/27/2021 | [Migration phases actions and impacts for the migration from Microsoft Cloud Deutschland)](/microsoft-365/enterprise/ms-cloud-germany-transition-phases?view=o365-21vianet) | modified |
-| 4/27/2021 | [Microsoft Defender for Endpoint API release notes](/microsoft-365/security/defender-endpoint/api-release-notes?view=o365-21vianet) | modified |
-| 4/27/2021 | [Supported Microsoft Defender for Endpoint APIs](/microsoft-365/security/defender-endpoint/exposed-apis-list?view=o365-21vianet) | modified |
-| 4/27/2021 | [Deploy threat protection capabilities across Microsoft 365](/microsoft-365/solutions/deploy-threat-provianet) | modified |
-| 4/27/2021 | [Set up a new business email address](/microsoft-365/business-video/set-up-a-new-business-email-address?view=o365-worldwide) | added |
-| 4/27/2021 | [Report false positives and false negatives in Outlook](/microsoft-365/security/office-365-security/report-false-positives-and-false-negatives?view=o365-21vianet) | added |
-| 4/27/2021 | Quick help Contacts | removed |
-| 4/27/2021 | Quick help Ways to manage contacts | removed |
-| 4/27/2021 | [Automatically apply a retention label to retain or delete content](/microsoft-365/compliance/apply-retention-labels-automatically?view=o365-21vianet) | modified |
-| 4/27/2021 | FAQ about importing PST files | removed |
-| 4/27/2021 | [Use drive shipping to import your organization's PST files](/microsoft-365/compliance/use-drive-shipping-to-import-pst-files-to-office-365?view=o365-21vianet) | modified |
-| 4/27/2021 | [Use network upload to import your organization's PST files](/microsoft-365/compliance/use-network-upload-to-import-pst-files?view=o365-21vianet) | modified |
-| 4/27/2021 | [Protect security settings with tamper protection](/microsoft-365/security/defender-endpoint/prevent-changes-to-security-settings-with-tamper-protection?view=o365-21vianet) | modified |
-| 4/28/2021 | Get started with Microsoft 365 for business | removed |
-| 4/28/2021 | Share sites and files with guest users | removed |
-| 4/28/2021 | [Update your admin phone number and email address](/microsoft-365/admin/manage/update-phone-number-and-email-address?view=o365-21vianet) | modified |
-| 4/28/2021 | Add customized help desk info to the help pane | removed |
-| 4/28/2021 | [Password policy recommendations](/microsoft-365/admin/misc/password-policy-recommendations?view=o365-21vianet) | modified |
-| 4/28/2021 | Quick help Types of users | removed |
-| 4/28/2021 | [Set up a connector to archive Android mobile data](/microsoft-365/compliance/archive-android-archiver-data?view=o365-21vianet) | modified |
-| 4/28/2021 | [Set up a connector to archive AT&T SMS/MMS Network data](/microsoft-365/compliance/archive-att-network-archiver-data?view=o365-21vianet) | modified |
-| 4/28/2021 | [Set up a connector to archive Bell SMS/MMS Network data](/microsoft-365/compliance/archive-bell-network-data?view=o365-21vianet) | modified |
-| 4/28/2021 | [Set up a connector to archive TELUS Network data in Microsoft 365](/microsoft-365/compliance/archive-telus-network-data?view=o365-21vianet) | modified |
-| 4/28/2021 | [Set up a connector to archive WhatsApp data in Microsoft 365](/microsoft-365/compliance/archive-whatsapp-data?view=o365-21vianet) | modified |
-| 4/28/2021 | [Azure ExpressRoute for Office 365](/microsoft-365/enterprise/azure-expressroute?view=o365-21vianet) | modified |
-| 4/28/2021 | [Pre-migration activities for the migration from Microsoft Cloud Deutschland](/microsoft-365/enterprise/ms-cloud-germany-transition-add-pre-work?view=o365-21vianet) | modified |
-| 4/28/2021 | [Migration phases actions and impacts for the migration from Microsoft Cloud Deutschland)](/microsoft-365/enterprise/ms-cloud-germany-transition-phases?view=o365-21vianet) | modified |
-| 4/28/2021 | [Microsoft Defender for Endpoint API release notes](/microsoft-365/security/defender-endpoint/api-release-notes?view=o365-21vianet) | modified |
-| 4/28/2021 | [Supported Microsoft Defender for Endpoint APIs](/microsoft-365/security/defender-endpoint/exposed-apis-list?view=o365-21vianet) | modified |
-| 4/28/2021 | [Overview - Advanced hunting](/microsoft-365/security/defender/advanced-hunting-overview?view=o365-21vianet) | modified |
-| 4/28/2021 | Manage messages in Message center | removed |
-| 4/28/2021 | [Message center](/microsoft-365/admin/manage/message-center?view=o365-21vianet) | modified |
-| 4/28/2021 | [What's new in the Microsoft 365 admin center?](/microsoft-365/admin/whats-new-in-preview?view=o365-21vianet) | modified |
-| 4/28/2021 | [Set up a connector to archive ICE Chat data](/microsoft-365/compliance/archive-icechat-data?view=o365-21vianet) | modified |
-| 4/28/2021 | [Set up a connector to archive O2 Network data in Microsoft 365](/microsoft-365/compliance/archive-o2-network-data?view=o365-21vianet) | modified |
-| 4/28/2021 | [Set up a connector to archive Verizon Network data in Microsoft 365](/microsoft-365/compliance/archive-verizon-network-data?view=o365-21vianet) | modified |
-| 4/28/2021 | [Get started with communication compliance](/microsoft-365/compliance/communication-compliance-configure?view=o365-21vianet) | modified |
-| 4/28/2021 | [Microsoft 365 small business training # < 60 chars](/microsoft-365/business-video/index?view=o365-21vianet) | modified |
-| 4/28/2021 | [Restrict access to content using sensitivity labels to apply encryption](/microsoft-365/compliance/encryption-sensitivity-labels?view=o365-21vianet) | modified |
-| 4/28/2021 | [Manage sensitivity labels in Office apps](/microsoft-365/compliance/sensitivity-labels-office-apps?view=o365-21vianet) | modified |
-| 4/28/2021 | [Enable block at first sight to detect malware in seconds](/microsoft-365/security/defender-endpoint/configure-block-at-first-sight-microsoft-defender-antivirus?view=o365-21vianet) | modified |
-| 4/28/2021 | [Learn about sensitive information types](/microsoft-365/compliance/sensitive-information-type-learn-about?view=o365-21vianet) | modified |
-| 4/29/2021 | [Support information for Bangladesh](/microsoft-365/admin/support/bangladesh?view=o365-21vianet) | modified |
-| 4/29/2021 | [Create a custom sensitive information type using PowerShell](/microsoft-365/compliance/create-a-custom-sensitive-information-type-in-scc-powershell?view=o365-21vianet) | modified |
-| 4/29/2021 | [Create custom sensitive information types with Exact Data Match](/microsoft-365/compliance/create-custom-sensitive-information-types-with-exact-data-match-based-classification?view=o365-21vianet) | modified |
-| 4/29/2021 | [Data classification release notes](/microsoft-365/compliance/data-classification-pub-preview-relnotes?view=o365-21vianet) | modified |
-| 4/29/2021 | [DLP policy conditions, exceptions, and actions](/microsoft-365/compliance/dlp-conditions-and-exceptions?view=o365-21vianet) | modified |
-| 4/29/2021 | [Data loss prevention and Microsoft Teams](/microsoft-365/compliance/dlp-microsoft-teams?view=o365-21vianet) | modified |
-| 4/29/2021 | [Data Loss Prevention policy tips reference](/microsoft-365/compliance/dlp-policy-tips-reference?view=o365-21vianet) | modified |
-| 4/29/2021 | [Document Fingerprinting](/microsoft-365/compliance/document-fingerprinting?view=o365-21vianet) | modified |
-| 4/29/2021 | [New alert policies in Microsoft Defender for Office 365](/microsoft-365/compliance/new-defender-alert-policies?view=o365-21vianet) | modified |
-| 4/29/2021 | [Sensitive information type entity definitions](/microsoft-365/compliance/sensitive-information-type-entity-definitions?view=o365-21vianet) | modified |
-| 4/29/2021 | [Manage sensitivity labels in Office apps](/microsoft-365/compliance/sensitivity-labels-office-apps?view=o365-21vianet) | modified |
-| 4/29/2021 | [What the Data Loss Prevention (DLP) functions look for](/microsoft-365/compliance/what-the-dlp-functions-look-for?view=o365-21vianet) | modified |
-| 4/29/2021 | [What the DLP policy templates include](/microsoft-365/compliance/what-the-dlp-policy-templates-include?view=o365-21vianet) | modified |
-| 4/29/2021 | [Create a Microsoft 365 Group with a specific preferred data location](/microsoft-365/enterprise/multi-geo-add-group-with-pdl?view=o365-21vianet) | modified |
-| 4/29/2021 | [Install Intune Company Portal on devices](/microsoft-365/managed-desktop/get-started/company-portal?view=o365-21vianet) | modified |
-| 4/29/2021 | [Microsoft Defender for Endpoint for US Government customers](/microsoft-365/security/defender-endpoint/gov?view=o365-21vianet) | modified |
-| 4/29/2021 | [Coming soon: Configure SharePoint as a learning content source for Microsoft Viva Learning (Preview)](/microsoft-365/learning/configure-sharepoint-content-source?view=o365-21vianet) | added |
-| 4/29/2021 | [Configure learning content sources for Microsoft Viva Learning (Preview) in the Microsoft 365 admin center](/microsoft-365/learning/content-sources-365-admin-center?view=o365-21vianet) | added |
-| 4/29/2021 | [Introduction to Microsoft Viva Learning (Preview)](/microsoft-365/learning/index?view=o365-21vianet) | added |
-| 4/29/2021 | [Overview of Microsoft Viva Learning (Preview)](/microsoft-365/learning/overview-viva-learning?view=o365-21vianet) | added |
-| 4/29/2021 | [Set up Microsoft Viva Learning (Preview) in the Teams admin center](/microsoft-365/learning/set-up-teams-admin-center?view=o365-21vianet) | added |
-| 4/29/2021 | [Deploy information protection for data privacy regulations with Microsoft 365](/microsoft-365/solutions/information-protection-deploy?view=o365-21vianet) | modified |
-| 4/30/2021 | [Manage third-party app licenses in the Microsoft 365 admin center](/microsoft-365/commerce/licenses/manage-third-party-app-licenses?view=o365-21vianet) | added |
-| 4/30/2021 | [How to sign up - Admin Help](/microsoft-365/admin/admin-overview/sign-up-for-office-365?view=o365-21vianet) | modified |
-| 4/30/2021 | [Add another email alias for a user](/microsoft-365/admin/email/add-another-email-alias-for-a-user?view=o365-21vianet) | modified |
-| 4/30/2021 | [Change your organization's address, technical contact, and more](/microsoft-365/admin/manage/change-address-contact-and-more?view=o365-21vianet) | modified |
-| 4/30/2021 | [Using self-service sign-up in your organization](/microsoft-365/admin/misc/self-service-sign-up?view=o365-21vianet) | modified |
-| 4/30/2021 | [Apply for a Fapiao for Office 365 operated by 21Vianet](/microsoft-365/admin/services-in-china/apply-for-a-fapiao?view=o365-21vianet) | modified |
-| 4/30/2021 | [About registration numbers and under review notifications](/microsoft-365/commerce/about-registration-numbers?view=o365-21vianet) | modified |
-| 4/30/2021 | [Add storage space for your subscription](/microsoft-365/commerce/add-storage-space?view=o365-21vianet) | modified |
-| 4/30/2021 | [Change your billing frequency](/microsoft-365/commerce/billing-and-payments/change-payment-frequency?view=o365-21vianet) | modified |
-| 4/30/2021 | [Change your billing addresses](/microsoft-365/commerce/billing-and-payments/change-your-billing-addresses?view=o365-21vianet) | modified |
-| 4/30/2021 | [Manage payment methods](/microsoft-365/commerce/billing-and-payments/manage-payment-methods?view=o365-21vianet) | modified |
-| 4/30/2021 | [Billing information for Microsoft 365 for business in Mexico](/microsoft-365/commerce/billing-and-payments/mexico-billing-info?view=o365-worldwide) | modified |
-| 4/30/2021 | [Buy or manage add-ons](/microsoft-365/commerce/buy-or-edit-an-add-on?view=o365-21vianet) | modified |
-| 4/30/2021 | [Close your account](/microsoft-365/commerce/close-your-account?view=o365-21vianet) | modified |
-| 4/30/2021 | [Enter your product key for Microsoft 365 Business Standard](/microsoft-365/commerce/enter-your-product-key?view=o365-21vianet) | modified |
-| 4/30/2021 | [Manage billing accounts](/microsoft-365/commerce/manage-billing-accounts?view=o365-21vianet) | modified |
-| 4/30/2021 | [Manage partner relationships](/microsoft-365/commerce/manage-partners?view=o365-21vianet) | modified |
-| 4/30/2021 | [Enter your product key purchased from Microsoft Open](/microsoft-365/commerce/purchases-from-microsoft-open?view=o365-21vianet) | modified |
-| 4/30/2021 | [Back up data before changing plans](/microsoft-365/commerce/subscriptions/back-up-data-before-switching-plans?view=o365-21vianet) | modified |
-| 4/30/2021 | [Cancel your subscription](/microsoft-365/commerce/subscriptions/cancel-your-subscription?view=o365-21vianet) | modified |
-| 4/30/2021 | [Change Microsoft 365 for business plans manually](/microsoft-365/commerce/subscriptions/change-plans-manually?view=o365-21vianet) | modified |
-| 4/30/2021 | [Important information for Office 365 E4 customers](/microsoft-365/commerce/subscriptions/important-information-e4?view=o365-21vianet) | modified |
-| 4/30/2021 | [Manage self-service sign-up subscriptions](/microsoft-365/commerce/subscriptions/manage-self-service-signup-subscriptions?view=o365-21vianet) | modified |
-| 4/30/2021 | [Automatically apply a retention label to retain or delete content](/microsoft-365/compliance/apply-retention-labels-automatically?view=o365-21vianet) | modified |
-| 4/30/2021 | [Create retention labels and apply them in apps to retain or delete content](/microsoft-365/compliance/create-apply-retention-labels?view=o365-21vianet) | modified |
-| 4/30/2021 | [Microsoft Information Protection in Microsoft 365](/microsoft-365/compliance/information-protection?view=o365-21vianet) | modified |
-| 4/30/2021 | [Microsoft Information Governance in Microsoft 365](/microsoft-365/compliance/manage-information-governance?view=o365-21vianet) | modified |
-| 4/30/2021 | [Limits for retention policies and retention label policies](/microsoft-365/compliance/retention-limits?view=o365-21vianet) | modified |
-| 4/30/2021 | [Update incidents API](/microsoft-365/security/defender/api-update-incidents?view=o365-21vianet) | modified |
-| 4/30/2021 | [Admin submissions](/microsoft-365/security/office-365-security/admin-submission?view=o365-21vianet) | modified |
-| 4/30/2021 | [Learn about data loss prevention](/microsoft-365/compliance/dlp-learn-about-dlp?view=o365-21vianet) | added |
-| 4/30/2021 | [Step 1. Triage and analyze your first incident](/microsoft-365/security/defender/first-incident-analyze?view=o365-21vianet) | added |
-| 4/30/2021 | [Introduction to responding to your first incident](/microsoft-365/security/defender/first-incident-overview?view=o365-21vianet) | added |
-| 4/30/2021 | [Example of an identity-based attack](/microsoft-365/security/defender/first-incident-path-identity?view=o365-21vianet) | added |
-| 4/30/2021 | [Example of a phishing email attack](/microsoft-365/security/defender/first-incident-path-phishing?view=o365-21vianet) | added |
-| 4/30/2021 | [Step 3. Perform a post-incident review of your first incident](/microsoft-365/security/defender/first-incident-post?view=o365-21vianet) | added |
-| 4/30/2021 | [Prepare your security posture for your first incident](/microsoft-365/security/defender/first-incident-prepare?view=o365-21vianet) | added |
-| 4/30/2021 | [Step 2. Remediate your first incident](/microsoft-365/security/defender/first-incident-remediate?view=o365-21vianet) | added |
-| 4/30/2021 | [Customize a built-in sensitive information type](/microsoft-365/compliance/customize-a-built-in-sensitive-information-type?view=o365-21vianet) | modified |
-| 4/30/2021 | [Get started with activity explorer](/microsoft-365/compliance/data-classification-activity-explorer?view=o365-21vianet) | modified |
-| 4/30/2021 | [Get started with content explorer](/microsoft-365/compliance/data-classification-content-explorer?view=o365-21vianet) | modified |
-| 4/30/2021 | [Data Loss Prevention Reference](/microsoft-365/compliance/data-loss-prevention-policies?view=o365-21vianet) | modified |
-| 4/30/2021 | [Get started with the Microsoft Compliance Extension (preview)](/microsoft-365/compliance/dlp-chrome-get-started?view=o365-21vianet) | modified |
-| 4/30/2021 | [Learn about the Microsoft Compliance Extension (preview)](/microsoft-365/compliance/dlp-chrome-learn-about?view=o365-21vianet) | modified |
-| 4/30/2021 | [DLP policy conditions, exceptions, and actions](/microsoft-365/compliance/dlp-conditions-and-exceptions?view=o365-21vianet) | modified |
-| 4/30/2021 | [Data loss prevention and Microsoft Teams](/microsoft-365/compliance/dlp-microsoft-teams?view=o365-21vianet) | modified |
-| 4/30/2021 | [Get started with Microsoft 365 data loss prevention on-premises scanner (preview)](/microsoft-365/compliance/dlp-on-premises-scanner-get-started?view=o365-21vianet) | modified |
-| 4/30/2021 | [Learn about Microsoft 365 data loss prevention on-premises scanner (preview)](/microsoft-365/compliance/dlp-on-premises-scanner-learn?view=o365-21vianet) | modified |
-| 4/30/2021 | [Use Microsoft 365 data loss prevention on-premises scanner (preview)](/microsoft-365/compliance/dlp-on-premises-scanner-use?view=o365-21vianet) | modified |
-| 4/30/2021 | [Learn about the default data loss prevention policy in Microsoft Teams (preview)](/microsoft-365/compliance/dlp-teams-default-policy?view=o365-21vianet) | modified |
-| 4/30/2021 | [Use Data loss prevention policies for non-Microsoft cloud apps (preview)](/microsoft-365/compliance/dlp-use-policies-non-microsoft-cloud-apps?view=o365-21vianet) | modified |
-| 4/30/2021 | [Configure device proxy and internet connection settings for Endpoint DLP](/microsoft-365/compliance/endpoint-dlp-configure-proxy?view=o365-21vianet) | modified |
-| 4/30/2021 | [Get started with Microsoft 365 Endpoint data loss prevention](/microsoft-365/compliance/endpoint-dlp-getting-started?view=o365-21vianet) | modified |
-| 4/30/2021 | [Learn about Microsoft 365 Endpoint data loss prevention](/microsoft-365/compliance/endpoint-dlp-learn-about?view=o365-21vianet) | modified |
-| 4/30/2021 | [Using Endpoint data loss prevention](/microsoft-365/compliance/endpoint-dlp-using?view=o365-21vianet) | modified |
-| 4/30/2021 | [Get started with the default DLP policy](/microsoft-365/compliance/get-started-with-the-default-dlp-policy?view=o365-21vianet) | modified |
-| 4/30/2021 | [How DLP works with Security & Compliance Center & Exchange admin center](/microsoft-365/compliance/how-dlp-works-between-admin-centers?view=o365-21vianet) | modified |
-| 4/30/2021 | [Keyword queries and search conditions for Content Search](/microsoft-365/compliance/keyword-queries-and-search-conditions?view=o365-21vianet) | modified |
-| 4/30/2021 | [Microsoft 365 compliance center](/microsoft-365/compliance/microsoft-365-compliance-center?view=o365-21vianet) | modified |
-| 4/30/2021 | [Microsoft 365 solution catalog](/microsoft-365/compliance/microsoft-365-solution-catalog?view=o365-21vianet) | modified |
-| 4/30/2021 | [Create a DLP policy to protect documents with FCI or other properties](/microsoft-365/compliance/protect-documents-that-have-fci-or-other-properties?view=o365-21vianet) | modified |
-| 4/30/2021 | [Learn about sensitive information types](/microsoft-365/compliance/sensitive-information-type-learn-about?view=o365-21vianet) | modified |
-| 4/30/2021 | [Modify Exact Data Match schema to use configurable match](/microsoft-365/compliance/sit-modify-edm-schema-configurable-match?view=o365-21vianet) | modified |
-| 4/30/2021 | [Use drive shipping to import your organization's PST files](/microsoft-365/compliance/use-drive-shipping-to-import-pst-files-to-office-365?view=o365-21vianet) | modified |
-| 4/30/2021 | [Use network upload to import your organization's PST files](/microsoft-365/compliance/use-network-upload-to-import-pst-files?view=o365-21vianet) | modified |
-| 4/30/2021 | [Send email notifications and show policy tips for DLP policies](/microsoft-365/compliance/use-notifications-and-policy-tips?view=o365-21vianet) | modified |
-| 4/30/2021 | [Summary of Microsoft 365 for enterprise security for the Contoso Corporation](/microsoft-365/enterprise/contoso-security-summary?view=o365-21vianet) | modified |
-| 4/30/2021 | [Implementing VPN split tunneling for Office 365](/microsoft-365/enterprise/microsoft-365-vpn-implement-split-tunnel?view=o365-21vianet) | modified |
-| 4/30/2021 | [Microsoft Viva Topics security and privacy](/microsoft-365/knowledge/topic-experiences-security-privacy) | modified |
-| 4/30/2021 | [Turn on cloud-delivered protection in Microsoft Defender Antivirus](/microsoft-365/security/defender-endpoint/enable-cloud-protection-microsoft-defender-antivirus?view=o365-21vianet) | modified |
-| 4/30/2021 | [Deploy Microsoft Defender for Endpoint on Linux with Ansible](/microsoft-365/security/defender-endpoint/linux-install-with-ansible?view=o365-21vianet) | modified |
-| 4/30/2021 | [Incidents in Microsoft 365 Defender](/microsoft-365/security/defender/incidents-overview?view=o365-21vianet) | modified |
-| 4/30/2021 | [Microsoft Defender for Office 365 in the Microsoft 365 security center](/microsoft-365/security/defender/microsoft-365-security-center-mdo?view=o365-21vianet) | modified |
-| 4/30/2021 | [Remediation actions in Microsoft Defender for Office 365](/microsoft-365/security/office-365-security/air-remediation-actions?view=o365-21vianet) | modified |
-| 4/30/2021 | [View the results of an automated investigation in Microsoft 365](/microsoft-365/security/office-365-security/air-view-investigation-results?view=o365-21vianet) | modified |
-| 4/30/2021 | [Best practices for unauthenticated sharing](/microsoft-365/solutions/best-practices-anonymous-sharing?view=o365-21vianet) | modified |
-| 4/30/2021 | [Configure teams with baseline protection](/microsoft-365/solutions/configure-teams-baseline-protection?view=o365-21vianet) | modified |
-| 4/30/2021 | [Create a secure guest sharing environment](/microsoft-365/solutions/create-secure-guest-sharing-environment?view=o365-21vianet) | modified |
-| 4/30/2021 | [Key compliance and security considerations for US banking and capital markets](/microsoft-365/solutions/financial-services-secure-collaboration?view=o365-21vianet) | modified |
-| 4/30/2021 | [Compliance options for Microsoft 365 groups, Teams, and SharePoint collaboration](/microsoft-365/solutions/groups-teams-compliance-governance?view=o365-21vianet) | modified |
-| 4/30/2021 | [Protect information subject to data privacy regulation](/microsoft-365/solutions/information-protection-deploy-protect-information?view=o365-21vianet) | modified |
-| 4/30/2021 | [Configure a team with security isolation](/microsoft-365/solutions/secure-teams-security-isolation?view=o365-21vianet) | modified |
-| 5/1/2021 | [Get started with Microsoft Teams in your small business](/microsoft-365/business-video/get-started-teams-small-business?view=o365-21vianet) | modified |
-| 5/1/2021 | [Scheduler for Microsoft 365 FAQs](/microsoft-365/scheduler/scheduler-faqs?view=o365-21vianet) | added |
-| 5/1/2021 | [Scheduler for Microsoft 365 Overview](/microsoft-365/scheduler/scheduler-overview?view=o365-21vianet) | added |
-| 5/1/2021 | [Setting up Scheduler for Microsoft 365.](/microsoft-365/scheduler/scheduler-setup?view=o365-21vianet) | added |
-| 5/1/2021 | [Understanding Trust and Privacy in Scheduler for Microsoft 365.](/microsoft-365/scheduler/scheduler-trust-privacy?view=o365-21vianet) | added |
-| 5/1/2021 | [Using Scheduler for Microsoft 365](/microsoft-365/scheduler/scheduler-using?view=o365-21vianet) | added |
-| 5/1/2021 | [Report and troubleshoot Microsoft Defender for Endpoint ASR Rules](/microsoft-365/security/defender-endpoint/troubleshoot-asr-rules?view=o365-21vianet) | added |
-| 5/1/2021 | Microsoft 365 Reports in the admin center - Dynamics 365 Customer Voice activity | removed |
-| 5/1/2021 | Microsoft 365 Reports in the admin center - Microsoft Office activations | removed |
-| 5/1/2021 | Microsoft 365 Reports in the admin center - Microsoft 365 Apps usage | removed |
-| 5/1/2021 | Microsoft 365 Reports in the admin center - Microsoft 365 groups | removed |
-| 5/1/2021 | [Microsoft 365 Reports in the admin center - OneDrive for Business activity](/microsoft-365/admin/activity-reports/onedrive-for-business-activity-ww?view=o365-21vianet) | modified |
-| 5/1/2021 | Microsoft 365 Reports in the admin center - OneDrive for Business activity | removed |
-| 5/1/2021 | [Microsoft 365 Reports in the admin center - OneDrive for Business usage](/microsoft-365/admin/activity-reports/onedrive-for-business-usage-ww?view=o365-21vianet) | modified |
-| 5/1/2021 | Microsoft 365 Reports in the admin center - OneDrive for Business usage | removed |
-| 5/1/2021 | [Microsoft 365 Reports in the admin center - SharePoint activity](/microsoft-365/admin/activity-reports/sharepoint-activity-ww?view=o365-21vianet) | modified |
-| 5/1/2021 | Microsoft 365 Reports in the admin center - SharePoint activity | removed |
-| 5/1/2021 | [Microsoft 365 Reports in the admin center - SharePoint site usage](/microsoft-365/admin/activity-reports/sharepoint-site-usage-ww?view=o365-21vianet) | modified |
-| 5/1/2021 | Microsoft 365 Reports in the admin center - SharePoint site usage | removed |
-| 5/1/2021 | [Microsoft 365 Reports in the admin center - Yammer activity report](/microsoft-365/admin/activity-reports/yammer-activity-report-ww?view=o365-21vianet) | modified |
-| 5/1/2021 | Microsoft 365 Reports in the admin center - Yammer activity report | removed |
-| 5/1/2021 | [Microsoft 365 Reports in the admin center - Yammer device usage report](/microsoft-365/admin/activity-reports/yammer-device-usage-report-ww?view=o365-21vianet) | modified |
-| 5/1/2021 | Microsoft 365 Reports in the admin center - Yammer device usage report | removed |
-| 5/1/2021 | [Microsoft 365 Reports in the admin center - Yammer groups activity report](/microsoft-365/admin/activity-reports/yammer-groups-activity-report-ww?view=o365-21vianet) | modified |
-| 5/1/2021 | Microsoft 365 Reports in the admin center - Yammer groups activity report | removed |
-| 5/1/2021 | [About the Microsoft 365 admin center](/microsoft-365/admin/admin-overview/about-the-admin-center?view=o365-21vianet) | modified |
-| 5/1/2021 | [About the Microsoft 365 Admin mobile app](/microsoft-365/admin/admin-overview/admin-mobile-app?view=o365-21vianet) | modified |
-| 5/1/2021 | [How to sign up - Admin Help](/microsoft-365/admin/admin-overview/sign-up-for-office-365?view=o365-21vianet) | modified |
-| 5/1/2021 | [Message center](/microsoft-365/admin/manage/message-center?view=o365-21vianet) | modified |
-| 5/1/2021 | [Top 10 ways to secure Microsoft 365 for business plans](/microsoft-365/admin/security-and-compliance/secure-your-business-data?view=o365-21vianet) | modified |
-| 5/1/2021 | [Create organization-wide signatures and disclaimers](/microsoft-365/admin/setup/create-signatures-and-disclaimers?view=o365-21vianet) | modified |
-| 5/1/2021 | [Customize a SharePoint team site for file storage and sharing](/microsoft-365/admin/setup/customize-team-site?view=o365-21vianet) | modified |
-| 5/1/2021 | [Plan your setup of Microsoft 365 for business](/microsoft-365/admin/setup/plan-your-setup?view=o365-21vianet) | modified |
-| 5/1/2021 | [Set up file storage and sharing](/microsoft-365/admin/setup/set-up-file-storage-and-sharing?view=o365-21vianet) | modified |
-| 5/1/2021 | [Set up Microsoft 365 Apps for business](/microsoft-365/admin/setup/setup-apps-for-business?view=o365-21vianet) | modified |
-| 5/1/2021 | [Set up Microsoft 365 Business Basic](/microsoft-365/admin/setup/setup-business-basic?view=o365-21vianet) | modified |
-| 5/1/2021 | [Set up Microsoft 365 Business Standard](/microsoft-365/admin/setup/setup-business-standard?view=o365-21vianet) | modified |
-| 5/1/2021 | [Work with customers # < 60 chars](/microsoft-365/admin/work-with-customers/indt) | modified |
-| 5/1/2021 | [Employee quick setup-guide](/microsoft-365/business-video/employee-5-worldwide) | modified |
-| 5/1/2021 | [Get help or support](/microsoft-365/business-video/get-help-support?view=o365-worldwide) | modified |
-| 5/1/2021 | [Share your business files - overview](/microsoft-365/business-video/overview-file-sharing?view=o365-21vianet) | modified |
-| 5/1/2021 | [Online meetings overview](/microsoft-365/business-video/overview-online-meetings?view=o365-21vianet) | modified |
-| 5/1/2021 | [Use Microsoft Lists to track business info](/microsoft-365/business-video/track-info-lists?view=o365-21vianet) | modified |
-| 5/1/2021 | [Work from anywhere - overview](/microsoft-365/business-video/work-from-anywhere?view=o365-21vianet) | modified |
-| 5/1/2021 | [Help your users install Office on Windows 10 devices](/microsoft-365/business/help-users-install-office?view=o365-21vianet) | modified |
-| 5/1/2021 | [Increase threat protection for Microsoft 365 for Business](/microsoft-365/business/increase-threat-protection?view=o365-21vianet) | modified |
-| 5/1/2021 | [Microsoft 365 Business Premium resources # < 60 chars](/microsoft-365/business/index?view=o365-21vianet) | modified |
-| 5/1/2021 | [Overview of Microsoft 365 Business Premium](/microsoft-365/business/microsoft-365-business-overview?view=o365-21vianet) | modified |
-| 5/1/2021 | [Get started with Microsoft 365 for business](/microsoft-365/business/microsoft-365-business-start?view=o365-21vianet) | modified |
-| 5/1/2021 | [Migrate to Microsoft 365 Business from Office 365 E3](/microsoft-365/business/migrate-from-e3?view=o365-21vianet) | modified |
-| 5/1/2021 | [Move files to OneDrive for Business](/microsoft-365/business/move-files-to-onedrive?view=o365-21vianet) | modified |
-| 5/1/2021 | [Prerequisites for protecting data on devices with Microsoft 365 for business](/microsoft-365/business/pre-requisites-for-data-protection?view=o365-21vianet) | modified |
-| 5/1/2021 | [Increase threat protection for Microsoft 365 Business Premium](/microsoft-365/business/set-up-compliance?view=o365-21vianet) | modified |
-| 5/1/2021 | [Set up mobile devices for Microsoft 365 for business users](/microsoft-365/business/set-up-mobile-devices?view=o365-21vianet) | modified |
-| 5/1/2021 | [Overview of setup](/microsoft-365/business/set-up-overview?view=o365-21vianet) | modified |
-| 5/1/2021 | [Set up Windows devices for Microsoft 365 Business Premium users](/microsoft-365/business/set-up-windows-devices?view=o365-21vianet) | modified |
-| 5/1/2021 | [Set up Microsoft 365 Business Premium](/microsoft-365/business/set-up?view=o365-21vianet) | modified |
-| 5/1/2021 | [Sign up for Microsoft 365 Business Premium](/microsoft-365/business/sign-up?view=o365-21vianet) | modified |
-| 5/1/2021 | [Upgrade Windows devices to Windows 10 Pro](/microsoft-365/business/upgrade-to-windows-pro-creators-update?view=o365-21vianet) | modified |
-| 5/1/2021 | [Microsoft Home Use Program frequently-asked questions (FAQ)](/microsoft-365/commerce/microsoft-home-use-program-faq?view=o365-21vianet) | modified |
-| 5/1/2021 | [Problems with your Microsoft 365 for business product key?](/microsoft-365/commerce/product-key-errors-and-solutions?view=o365-21vianet) | modified |
-| 5/1/2021 | [Cancel your subscription](/microsoft-365/commerce/subscriptions/cancel-your-subscription?view=o365-21vianet) | modified |
-| 5/1/2021 | [Microsoft Compliance Manager](/microsoft-365/compliance/compliance-manager?view=o365-21vianet) | modified |
-| 5/1/2021 | [Learn about data classification](/microsoft-365/compliance/data-classification-overview?view=o365-21vianet) | modified |
-| 5/1/2021 | [Learn about data loss prevention](/microsoft-365/compliance/dlp-learn-about-dlp?view=o365-21vianet) | modified |
-| 5/1/2021 | [Microsoft Information Protection in Microsoft 365](/microsoft-365/compliance/information-protection?view=o365-21vianet) | modified |
-| 5/1/2021 | [Microsoft Information Governance in Microsoft 365](/microsoft-365/compliance/manage-information-governance?view=o365-21vianet) | modified |
-| 5/1/2021 | [Records Management in Microsoft 365](/microsoft-365/compliance/records-management?view=o365-21vianet) | modified |
-| 5/1/2021 | [Learn about sensitive information types](/microsoft-365/compliance/sensitive-information-type-learn-about?view=o365-21vianet) | modified |
-| 5/1/2021 | [Learn about sensitivity labels](/microsoft-365/compliance/sensitivity-labels?view=o365-21vianet) | modified |
-| 5/1/2021 | [Attack surface reduction frequently asked questions (FAQ)](/microsoft-365/security/defender-endpoint/attack-surface-reduction-faq?view=o365-21vianet) | modified |
-| 5/1/2021 | [Device discovery frequently asked questions](/microsoft-365/security/defender-endpoint/device-discovery-faq?view=o365-21vianet) | modified |
-| 5/1/2021 | [Evaluate attack surface reduction rules](/microsoft-365/security/defender-endpoint/evaluate-attack-surface-reduction?view=o365-21vianet) | modified |
-| 5/1/2021 | [Vulnerable devices report - threat and vulnerability management](/microsoft-365/security/defender-endpoint/tvm-vulnerable-devices-report?view=o365-21vianet) | modified |
-| 5/1/2021 | [Assess your security posture through Microsoft Secure Score](/microsoft-365/security/defender/microsoft-secure-score-improvement-actions?view=o365-21vianet) | modified |
-| 5/1/2021 | [Microsoft Secure Score](/microsoft-365/security/defender/microsoft-secure-score?view=o365-21vianet) | modified |
--
-## Week of April 19, 2021
--
-| Published On |Topic title | Change |
-|||--|
-| 4/19/2021 | [Reporting information for Microsoft Bookings](/microsoft-365/bookings/reporting-info?view=o365-21vianet) | modified |
-| 4/19/2021 | [Manage sensitivity labels in Office apps](/microsoft-365/compliance/sensitivity-labels-office-apps?view=o365-21vianet) | modified |
-| 4/19/2021 | [Additional endpoints not included in the Office 365 IP Address and URL Web service](/microsoft-365/enterprise/additional-office365-ip-addresses-and-urls?view=o365-21vianet) | modified |
-| 4/19/2021 | [Prioritize incidents in Microsoft 365 Defender](/microsoft-365/security/defender/incident-queue?view=o365-21vianet) | modified |
-| 4/19/2021 | [Address device name dependency](/microsoft-365/managed-desktop/get-ready/address-device-names?view=o365-21vianet) | added |
-| 4/19/2021 | [Device names](/microsoft-365/managed-desktop/service-description/device-names?view=o365-21vianet) | added |
-| 4/19/2021 | [Remove devices](/microsoft-365/managed-desktop/working-with-managed-desktop/remove-devices?view=o365-21vianet) | added |
-| 4/19/2021 | [How to control USB devices and other removable media using Intune (Windows 10)](/microsoft-365/security/defender-endpoint/control-usb-devices-using-intune?view=o365-21vianet) | added |
-| 4/19/2021 | [Protect your organizationΓÇÖs data with device control](/microsoft-365/security/defender-endpoint/device-control-report?view=o365-21vianet) | added |
-| 4/19/2021 | [Onboard Windows 10 devices using a local script](/microsoft-365/compliance/dlp-configure-endpoints-script?view=o365-21vianet) | modified |
-| 4/19/2021 | [Learn about sensitivity labels](/microsoft-365/compliance/sensitivity-labels?view=o365-21vianet) | modified |
-| 4/19/2021 | [Register new devices yourself](/microsoft-365/managed-desktop/get-started/register-devices-self?view=o365-21vianet) | modified |
-| 4/19/2021 | [Register existing devices yourself](/microsoft-365/managed-desktop/get-started/register-reused-devices-self?view=o365-21vianet) | modified |
-| 4/19/2021 | [Common Microsoft Defender for Endpoint API errors](/microsoft-365/security/defender-endpoint/common-errors?view=o365-21vianet) | modified |
-| 4/19/2021 | [Access the Microsoft Defender for Endpoint Community Center](/microsoft-365/security/defender-endpoint/community?view=o365-21vianet) | modified |
-| 4/19/2021 | [Configure Conditional Access in Microsoft Defender for Endpoint](/microsoft-365/security/defender-endpoint/configure-conditional-access?view=o365-21vianet) | modified |
-| 4/19/2021 | [Configure alert notifications in Microsoft Defender for Endpoint](/microsoft-365/security/defender-endpoint/configure-email-notifications?view=o365-21vianet) | modified |
-| 4/19/2021 | [Onboard Windows 10 devices to Microsoft Defender for Endpoint via Group Policy](/microsoft-365/security/defender-endpoint/configure-endpoints-gp?view=o365-21vianet) | modified |
-| 4/19/2021 | [Onboard Windows 10 devices using Mobile Device Management tools](/microsoft-365/security/defender-endpoint/configure-endpoints-mdm?view=o365-21vianet) | modified |
-| 4/19/2021 | [Onboard non-Windows devices to the Microsoft Defender for Endpoint service](/microsoft-365/security/defender-endpoint/configure-endpoints-non-windows?view=o365-21vianet) | modified |
-| 4/19/2021 | [Onboard Windows 10 devices using Configuration Manager](/microsoft-365/security/defender-endpoint/configure-endpoints-sccm?view=o365-21vianet) | modified |
-| 4/19/2021 | [Onboard non-persistent virtual desktop infrastructure (VDI) devices](/microsoft-365/security/defender-endpoint/configure-endpoints-vdi?view=o365-21vianet) | modified |
-| 4/19/2021 | [Onboarding tools and methods for Windows 10 devices](/microsoft-365/security/defender-endpoint/configure-endpoints?view=o365-21vianet) | modified |
-| 4/19/2021 | [Get devices onboarded to Microsoft Defender for Endpoint](/microsoft-365/security/defender-endpoint/configure-machines-onboarding?view=o365-21vianet) | modified |
-| 4/19/2021 | [Increase compliance to the Microsoft Defender for Endpoint security baseline](/microsoft-365/security/defender-endpoint/configure-machines-security-baseline?view=o365-21vianet) | modified |
-| 4/19/2021 | [Configure device proxy and Internet connection settings](/microsoft-365/security/defender-endpoint/configure-proxy-internet?view=o365-21vianet) | modified |
-| 4/19/2021 | [Configure vulnerability email notifications in Microsoft Defender for Endpoint](/microsoft-365/security/defender-endpoint/configure-vulnerability-email-notifications?view=o365-21vianet) | modified |
-| 4/19/2021 | [Connected applications in Microsoft Defender for Endpoint](/microsoft-365/security/defender-endpoint/connected-applications?view=o365-21vianet) | modified |
-| 4/19/2021 | [Contact Microsoft Defender for Endpoint support](/microsoft-365/security/defender-endpoint/contact-support?view=o365-21vianet) | modified |
-| 4/19/2021 | [Microsoft Defender for Endpoint data storage and privacy](/microsoft-365/security/defender-endpoint/data-storage-privacy?view=o365-21vianet) | modified |
-| 4/19/2021 | [Deploy Microsoft Defender for Endpoint in rings](/microsoft-365/security/defender-endpoint/deployment-rings?view=o365-21vianet) | modified |
-| 4/19/2021 | [Block potentially unwanted applications with Microsoft Defender Antivirus](/microsoft-365/security/defender-endpoint/detect-block-potentially-unwanted-apps-microsoft-defender-antivirus?view=o365-21vianet) | modified |
-| 4/19/2021 | [Endpoint detection and response in block mode](/microsoft-365/security/defender-endpoint/edr-in-block-mode?view=o365-21vianet) | modified |
-| 4/19/2021 | [Microsoft Defender for Endpoint evaluation lab](/microsoft-365/security/defender-endpoint/evaluation-lab?view=o365-21vianet) | modified |
-| 4/19/2021 | [Fix unhealthy sensors in Microsoft Defender for Endpoint](/microsoft-365/security/defender-endpoint/fix-unhealthy-sensors?view=o365-21vianet) | modified |
-| 4/19/2021 | [List machines API](/microsoft-365/security/defender-endpoint/get-machines?view=o365-21vianet) | modified |
-| 4/19/2021 | [Get package SAS URI API](/microsoft-365/security/defender-endpoint/get-package-sas-uri?view=o365-21vianet) | modified |
-| 4/19/2021 | [Become a Microsoft Defender for Endpoint partner](/microsoft-365/security/defender-endpoint/get-started-partner-integration?view=o365-21vianet) | modified |
-| 4/19/2021 | [Microsoft Defender Antivirus compatibility with other security products](/microsoft-365/security/defender-endpoint/microsoft-defender-antivirus-compatibility?view=o365-21vianet) | modified |
-| 4/19/2021 | [Microsoft Defender Antivirus on Windows Server](/microsoft-365/security/defender-endpoint/microsoft-defender-antivirus-on-windows-server?view=o365-21vianet) | modified |
-| 4/19/2021 | [Overview of attack surface reduction](/microsoft-365/security/defender-endpoint/overview-attack-surface-reduction?view=o365-21vianet) | modified |
-| 4/19/2021 | [Collect support logs in Microsoft Defender for Endpoints using live response](/microsoft-365/security/defender-endpoint/troubleshoot-collect-support-log?view=o365-21vianet) | modified |
-| 4/19/2021 | [Troubleshoot Microsoft Defender for Endpoint onboarding issues](/microsoft-365/security/defender-endpoint/troubleshoot-onboarding?view=o365-21vianet) | modified |
-| 4/20/2021 | [Labeling actions reported in Activity explorer](/microsoft-365/compliance/data-classification-activity-explorer-available-events?view=o365-21vianet) | added |
-| 4/20/2021 | [Get started with activity explorer](/microsoft-365/compliance/data-classification-activity-explorer?view=o365-21vianet) | modified |
-| 4/20/2021 | [Learn about data classification](/microsoft-365/compliance/data-classification-overview?view=o365-21vianet) | modified |
-| 4/20/2021 | [Post-migration activities for the migration from Microsoft Cloud Deutschland](/microsoft-365/enterprise/ms-cloud-germany-transition-add-experience?view=o365-21vianet) | modified |
-| 4/20/2021 | [Migration phases actions and impacts for the migration from Microsoft Cloud Deutschland)](/microsoft-365/enterprise/ms-cloud-germany-transition-phases?view=o365-21vianet) | modified |
-| 4/20/2021 | [Provide feedback on Microsoft 365 Defender](/microsoft-365/security/defender/feedback?view=o365-21vianet) | modified |
-| 4/20/2021 | [Compliance options for Microsoft 365 groups, Teams, and SharePoint collaboration](/microsoft-365/solutions/groups-teams-compliance-governance?view=o365-21vianet) | modified |
-| 4/20/2021 | [About shared mailboxes](/microsoft-365/admin/email/about-shared-mailboxes?view=o365-21vianet) | modified |
-| 4/20/2021 | [Set the password expiration policy for your organization](/microsoft-365/admin/manage/set-password-expirationvianet) | modified |
-| 4/20/2021 | [Microsoft Productivity Score - Content collaboration](/productivity/content-collaboration?view=o365-worldwide) | modified |
-| 4/20/2021 | [Add a domain](/microsoft-365/business-video/add-domain?view=o365-worldwide) | modified |
-| 4/20/2021 | [Change a user's name or email address](/microsoft-365/business-video/change-user-name-email?view=o365-worldwide) | modified |
-| 4/20/2021 | [Join a team as a guest](/microsoft-365/business-video/join-team-guest?view=o365-21vianet) | mod
-| 4/20/2021 | [Let users reset their passwords](/microsoft-365/business-video/set-up-self-serve-password-reset?view=o365-worldwide) | modified |
-| 4/20/2021 | [Create a shared calendar](/microsoft-365/business-video/shared-calendar?view=o365- |
-| 4/20/2021 | [Stop auto-forwarding emails](/microsoft-365/business-video/stop-email-auto-forward?view=o365-worldwide) | modified |
-| 4/20/2021 | [Data Loss Prevention policy tips reference](/microsoft-365/compliance/dlp-policy-tips-reference?view=o365-21vianet) | modified |
-| 4/20/2021 | [Manage topics in the topic center in Microsoft Viva Topics](/microsoft-365/knowledge/manage-topics) | modified |
-| 4/20/2021 | [Topic center overview in Microsoft Viva Topics](/microsoft-365/knowledge/topic-center-overview) | modified |
-| 4/20/2021 | [Configure advanced features in Microsoft Defender for Endpoint](/microsoft-365/security/defender-endpoint/advanced-features?view=o365-21vianet) | modified |
-| 4/20/2021 | [Check the health state of the sensor in Microsoft Defender for Endpoint](/microsoft-365/security/defender-endpoint/check-sensor-status?view=o365-21vianet) | modified |
-| 4/20/2021 | [Client behavioral blocking](/microsoft-365/security/defender-endpoint/client-behavioral-blocking?view=o365-21vianet) | modified |
-| 4/20/2021 | [Configure Conditional Access in Microsoft Defender for Endpoint](/microsoft-365/security/defender-endpoint/configure-conditional-access?view=o365-21vianet) | modified |
-| 4/20/2021 | [Get devices onboarded to Microsoft Defender for Endpoint](/microsoft-365/security/defender-endpoint/configure-machines-onboarding?view=o365-21vianet) | modified |
-| 4/20/2021 | [Microsoft Defender for Endpoint data storage and privacy](/microsoft-365/security/defender-endpoint/data-storage-privacy?view=o365-21vianet) | modified |
-| 4/20/2021 | [Block potentially unwanted applications with Microsoft Defender Antivirus](/microsoft-365/security/defender-endpoint/detect-block-potentially-unwanted-apps-microsoft-defender-antivirus?view=o365-21vianet) | modified |
-| 4/20/2021 | [Information protection in Windows overview](/microsoft-365/security/defender-endpoint/information-protection-in-windows-overview?view=o365-21vianet) | modified |
-| 4/20/2021 | [Investigate connection events that occur behind forward proxies](/microsoft-365/security/defender-endpoint/investigate-behind-proxy?view=o365-21vianet) | modified |
-| 4/20/2021 | [Investigate incidents in Microsoft Defender for Endpoint](/microsoft-365/security/defender-endpoint/investigate-incidents?view=o365-21vianet) | modified |
-| 4/20/2021 | [Configure Microsoft Defender for Endpoint on iOS features](/microsoft-365/security/defender-endpoint/ios-configure-features?view=o365-21vianet) | modified |
-| 4/20/2021 | [App-based deployment for Microsoft Defender for Endpoint on iOS](/microsoft-365/security/defender-endpoint/ios-install?view=o365-21vianet) | modified |
-| 4/20/2021 | [Microsoft Defender for Endpoint on iOS Application license terms](/microsoft-365/security/defender-endpoint/ios-terms?view=o365-21vianet) | modified |
-| 4/20/2021 | [How to Deploy Defender for Endpoint on Linux with Chef](/microsoft-365/security/defender-endpoint/linux-deploy-defender-for-endpoint-with-chef?view=o365-21vianet) | modified |
-| 4/20/2021 | [Configure and validate exclusions for Microsoft Defender for Endpoint on Linux](/microsoft-365/security/defender-endpoint/linux-exclusions?view=o365-21vianet) | modified |
-| 4/20/2021 | [Deploy Microsoft Defender for Endpoint on Linux manually](/microsoft-365/security/defender-endpoint/linux-install-manually?view=o365-21vianet) | modified |
-| 4/20/2021 | [Deploy Microsoft Defender for Endpoint on Linux with Ansible](/microsoft-365/security/defender-endpoint/linux-install-with-ansible?view=o365-21vianet) | modified |
-| 4/20/2021 | [Deploy Microsoft Defender for Endpoint on Linux with Puppet](/microsoft-365/security/defender-endpoint/linux-install-with-puppet?view=o365-21vianet) | modified |
-| 4/20/2021 | [Set preferences for Microsoft Defender for Endpoint on Linux](/microsoft-365/security/defender-endpoint/linux-preferences?view=o365-21vianet) | modified |
-| 4/20/2021 | [Privacy for Microsoft Defender for Endpoint on Linux](/microsoft-365/security/defender-endpoint/linux-privacy?view=o365-21vianet) | modified |
-| 4/20/2021 | [Detect and block potentially unwanted applications with Microsoft Defender for Endpoint on Linux](/microsoft-365/security/defender-endpoint/linux-pua?view=o365-21vianet) | modified |
-| 4/20/2021 | [Microsoft Defender for Endpoint on Linux resources](/microsoft-365/security/defender-endpoint/linux-resources?view=o365-21vianet) | modified |
-| 4/20/2021 | [Microsoft Defender for Endpoint on Linux static proxy discovery](/microsoft-365/security/defender-endpoint/linux-static-proxy-configuration?view=o365-21vianet) | modified |
-| 4/20/2021 | [Troubleshoot cloud connectivity issues for Microsoft Defender for Endpoint on Linux](/microsoft-365/security/defender-endpoint/linux-support-connectivity?view=o365-21vianet) | modified |
-| 4/20/2021 | [Troubleshoot missing events or alerts issues for Microsoft Defender for Endpoint on Linux](/microsoft-365/security/defender-endpoint/linux-support-events?view=o365-21vianet) | modified |
-| 4/20/2021 | [Troubleshoot installation issues for Microsoft Defender for Endpoint on Linux](/microsoft-365/security/defender-endpoint/linux-support-install?view=o365-21vianet) | modified |
-| 4/20/2021 | [Troubleshoot performance issues for Microsoft Defender for Endpoint on Linux](/microsoft-365/security/defender-endpoint/linux-support-perf?view=o365-21vianet) | modified |
-| 4/20/2021 | [What's new in Microsoft Defender for Endpoint on Linux](/microsoft-365/security/defender-endpoint/linux-whatsnew?view=o365-21vianet) | modified |
-| 4/20/2021 | [Microsoft Defender for Endpoint on Mac](/microsoft-365/security/defender-endpoint/microsoft-defender-endpoint-mac?view=o365-21vianet) | modified |
-| 4/20/2021 | [Pull Microsoft Defender for Endpoint detections using REST API](/microsoft-365/security/defender-endpoint/pull-alerts-using-rest-api?view=o365-21vianet) | modified |
-| 4/20/2021 | [Overview of Microsoft 365 Defender APIs](/microsoft-365/security/defender/api-overview?view=o365-21vianet) | modified |
-| 4/20/2021 | [Create and manage custom detection rules in Microsoft 365 Defender](/microsoft-365/security/defender/custom-detection-rules?view=o365-21vianet) | modified |
-| 4/20/2021 | [Microsoft 365 Defender # < 60 chars](/microsoft-365/security/defender/index?view=o365-21vianet) | modified |
-| 4/20/2021 | [Microsoft 365 security center overview](/microsoft-365/security/defender/overview-security-center?view=o365-21vianet) | modified |
-| 4/21/2021 | [Ways to contact support for business products - Admin Help](/microsoft-365/admin/contact-support-for-business-products?view=o365-21vianet) | modified |
-| 4/21/2021 | [Business Assist for Microsoft 365](/microsoft-365/admin/misc/business-assist?view=o365-21vianet) | modified |
-| 4/21/2021 | [About registration numbers and under review notifications](/microsoft-365/commerce/about-registration-numbers?view=o365-21vianet) | modified |
-| 4/21/2021 | [Create and publish sensitivity labels](/microsoft-365/compliance/create-sensitivity-labels?view=o365-21vianet) | modified |
-| 4/21/2021 | [Learn about retention for Teams](/microsoft-365/compliance/retention-policies-teams?view=o365-21vianet) | modified |
-| 4/21/2021 | [Set up Microsoft Viva Topics](/microsoft-365/knowledge/set-up-topic-experiences) | modified |
-| 4/21/2021 | [Microsoft 365 Security for Business Decision Makers (BDMs)](/microsoft-365/security/microsoft-365-security-for-bdm?view=o365-21vianet) | modified |
-| 4/21/2021 | [Configure advanced features in Microsoft Defender for Endpoint](/microsoft-365/security/defender-endpoint/advanced-features?view=o365-21vianet) | modified |
-| 4/21/2021 | [DeviceAlertEvents table in the advanced hunting schema](/microsoft-365/security/defender-endpoint/advanced-hunting-devicealertevents-table?view=o365-21vianet) | modified |
-| 4/21/2021 | [Overview of advanced hunting in Microsoft Defender for Endpoint](/microsoft-365/security/defender-endpoint/advanced-hunting-overview?view=o365-21vianet) | modified |
-| 4/21/2021 | [Advanced hunting schema reference](/microsoft-365/security/defender-endpoint/advanced-hunting-schema-reference?view=o365-21vianet) | modified |
-| 4/21/2021 | [View and organize the Microsoft Defender for Endpoint Alerts queue](/microsoft-365/security/defender-endpoint/alerts-queue?view=o365-21vianet) | modified |
-| 4/21/2021 | [Configure Microsoft Defender for Endpoint on Android features](/microsoft-365/security/defender-endpoint/android-configure?view=o365-21vianet) | modified |
-| 4/21/2021 | [Deploy Microsoft Defender for Endpoint on Android with Microsoft Intune](/microsoft-365/security/defender-endpoint/android-intune?view=o365-21vianet) | modified |
-| 4/21/2021 | [Microsoft Defender for Endpoint on Android - Privacy information](/microsoft-365/security/defender-endpoint/android-privacy?view=o365-21vianet) | modified |
-| 4/21/2021 | [Troubleshoot issues on Microsoft Defender for Endpoint on Android](/microsoft-365/security/defender-endpoint/android-support-signin?view=o365-21vianet) | modified |
-| 4/21/2021 | [Microsoft Defender for Endpoint on Android Application license terms](/microsoft-365/security/defender-endpoint/android-terms?view=o365-21vianet) | modified |
-| 4/21/2021 | [API Explorer in Microsoft Defender for Endpoint](/microsoft-365/security/defender-endpoint/api-explorer?view=o365-21vianet) | modified |
-| 4/21/2021 | [Hello World for Microsoft Defender for Endpoint API](/microsoft-365/security/defender-endpoint/api-hello-world?view=o365-21vianet) | modified |
-| 4/21/2021 | [Microsoft Defender for Endpoint Flow connector](/microsoft-365/security/defender-endpoint/api-microsoft-flow?view=o365-21vianet) | modified |
-| 4/21/2021 | [Microsoft Defender for Endpoint detections API fields](/microsoft-365/security/defender-endpoint/api-portal-mapping?view=o365-21vianet) | modified |
-| 4/21/2021 | [Microsoft Defender for Endpoint APIs connection to Power BI](/microsoft-365/security/defender-endpoint/api-power-bi?view=o365-21vianet) | modified |
-| 4/21/2021 | [Microsoft Defender for Endpoint API release notes](/microsoft-365/security/defender-endpoint/api-release-notes?view=o365-21vianet) | modified |
-| 4/21/2021 | [Microsoft Defender for Endpoint API license and terms of use](/microsoft-365/security/defender-endpoint/api-terms-of-use?view=o365-21vianet) | modified |
-| 4/21/2021 | [Access the Microsoft Defender for Endpoint APIs](/microsoft-365/security/defender-endpoint/apis-intro?view=o365-21vianet) | modified |
-| 4/21/2021 | [Experience Microsoft Defender for Endpoint through simulated attacks](/microsoft-365/security/defender-endpoint/attack-simulations?view=o365-21vianet) | modified |
-| 4/21/2021 | [Attack surface reduction frequently asked questions (FAQ)](/microsoft-365/security/defender-endpoint/attack-surface-reduction-faq?view=o365-21vianet) | modified |
-| 4/21/2021 | [Use attack surface reduction rules to prevent malware infection](/microsoft-365/security/defender-endpoint/attack-surface-reduction?view=o365-21vianet) | modified |
-| 4/21/2021 | [Use automated investigations to investigate and remediate threats](/microsoft-365/security/defender-endpoint/automated-investigations?view=o365-21vianet) | modified |
-| 4/21/2021 | [Automation levels in automated investigation and remediation](/microsoft-365/security/defender-endpoint/automation-levels?view=o365-21vianet) | modified |
-| 4/21/2021 | [Behavioral blocking and containment](/microsoft-365/security/defender-endpoint/behavioral-blocking-containment?view=o365-21vianet) | modified |
-| 4/21/2021 | [Client behavioral blocking](/microsoft-365/security/defender-endpoint/client-behavioral-blocking?view=o365-21vianet) | modified |
-| 4/21/2021 | [Common Microsoft Defender for Endpoint API errors](/microsoft-365/security/defender-endpoint/common-errors?view=o365-21vianet) | modified |
-| 4/21/2021 | [Configure alert notifications in Microsoft Defender for Endpoint](/microsoft-365/security/defender-endpoint/configure-email-notifications?view=o365-21vianet) | modified |
-| 4/21/2021 | [Onboard Windows 10 devices to Microsoft Defender for Endpoint via Group Policy](/microsoft-365/security/defender-endpoint/configure-endpoints-gp?view=o365-21vianet) | modified |
-| 4/21/2021 | [Onboard Windows 10 devices using Mobile Device Management tools](/microsoft-365/security/defender-endpoint/configure-endpoints-mdm?view=o365-21vianet) | modified |
-| 4/21/2021 | [Onboard non-Windows devices to the Microsoft Defender for Endpoint service](/microsoft-365/security/defender-endpoint/configure-endpoints-non-windows?view=o365-21vianet) | modified |
-| 4/21/2021 | [Onboard Windows 10 devices using Configuration Manager](/microsoft-365/security/defender-endpoint/configure-endpoints-sccm?view=o365-21vianet) | modified |
-| 4/21/2021 | [Onboard Windows 10 devices using a local script](/microsoft-365/security/defender-endpoint/configure-endpoints-script?view=o365-21vianet) | modified |
-| 4/21/2021 | [Onboard non-persistent virtual desktop infrastructure (VDI) devices](/microsoft-365/security/defender-endpoint/configure-endpoints-vdi?view=o365-21vianet) | modified |
-| 4/21/2021 | [Optimize ASR rule deployment and detections](/microsoft-365/security/defender-endpoint/configure-machines-asr?view=o365-21vianet) | modified |
-| 4/21/2021 | [Get devices onboarded to Microsoft Defender for Endpoint](/microsoft-365/security/defender-endpoint/configure-machines-onboarding?view=o365-21vianet) | modified |
-| 4/21/2021 | [Increase compliance to the Microsoft Defender for Endpoint security baseline](/microsoft-365/security/defender-endpoint/configure-machines-security-baseline?view=o365-21vianet) | modified |
-| 4/21/2021 | [Ensure your devices are configured properly](/microsoft-365/security/defender-endpoint/configure-machines?view=o365-21vianet) | modified |
-| 4/21/2021 | [Configure device proxy and Internet connection settings](/microsoft-365/security/defender-endpoint/configure-proxy-internet?view=o365-21vianet) | modified |
-| 4/21/2021 | [Onboard Windows servers to the Microsoft Defender for Endpoint service](/microsoft-365/security/defender-endpoint/configure-server-endpoints?view=o365-21vianet) | modified |
-| 4/21/2021 | [Configure vulnerability email notifications in Microsoft Defender for Endpoint](/microsoft-365/security/defender-endpoint/configure-vulnerability-email-notifications?view=o365-21vianet) | modified |
-| 4/21/2021 | [Contact Microsoft Defender for Endpoint support for US Government customers](/microsoft-365/security/defender-endpoint/contact-support-usgov?view=o365-21vianet) | modified |
-| 4/21/2021 | [Microsoft Defender for Endpoint data storage and privacy](/microsoft-365/security/defender-endpoint/data-storage-privacy?view=o365-21vianet) | modified |
-| 4/21/2021 | [Microsoft Defender Antivirus compatibility with Defender for Endpoint](/microsoft-365/security/defender-endpoint/defender-compatibility?view=o365-21vianet) | modified |
-| 4/21/2021 | [Address false positives/negatives in Microsoft Defender for Endpoint](/microsoft-365/security/defender-endpoint/defender-endpoint-false-positives-negatives?view=o365-21vianet) | modified |
-| 4/21/2021 | [Microsoft Defender for Endpoint evaluation lab](/microsoft-365/security/defender-endpoint/evaluation-lab?view=o365-21vianet) | modified |
-| 4/21/2021 | [Review events and errors using Event Viewer](/microsoft-365/security/defender-endpoint/event-error-codes?view=o365-21vianet) | modified |
-| 4/21/2021 | [Fix unhealthy sensors in Microsoft Defender for Endpoint](/microsoft-365/security/defender-endpoint/fix-unhealthy-sensors?view=o365-21vianet) | modified |
-| 4/21/2021 | [List all recommendations](/microsoft-365/security/defender-endpoint/get-all-recommendations?view=o365-21vianet) | modified |
-| 4/21/2021 | [Get all vulnerabilities by machine and software](/microsoft-365/security/defender-endpoint/get-all-vulnerabilities-by-machines?view=o365-21vianet) | modified |
-| 4/21/2021 | [Get all vulnerabilities](/microsoft-365/security/defender-endpoint/get-all-vulnerabilities?view=o365-21vianet) | modified |
-| 4/21/2021 | [Get discovered vulnerabilities](/microsoft-365/security/defender-endpoint/get-discovered-vulnerabilities?view=o365-21vianet) | modified |
-| 4/21/2021 | [Get installed software](/microsoft-365/security/defender-endpoint/get-installed-software?view=o365-21vianet) | modified |
-| 4/21/2021 | [Get RBAC machine groups collection API](/microsoft-365/security/defender-endpoint/get-machinegroups-collection?view=o365-21vianet) | modified |
-| 4/21/2021 | [List devices by software](/microsoft-365/security/defender-endpoint/get-machines-by-software?view=o365-21vianet) | modified |
-| 4/21/2021 | [List devices by vulnerability](/microsoft-365/security/defender-endpoint/get-machines-by-vulnerability?view=o365-21vianet) | modified |
-| 4/21/2021 | [Get missing KBs by device ID](/microsoft-365/security/defender-endpoint/get-missing-kbs-machine?view=o365-21vianet) | modified |
-| 4/21/2021 | [Get missing KBs by software ID](/microsoft-365/security/defender-endpoint/get-missing-kbs-software?view=o365-21vianet) | modified |
-| 4/21/2021 | [Get security recommendations](/microsoft-365/security/defender-endpoint/get-security-recommendations?view=o365-21vianet) | modified |
-| 4/21/2021 | [Get software by Id](/microsoft-365/security/defender-endpoint/get-software-by-id?view=o365-21vianet) | modified |
-| 4/21/2021 | [List software version distribution](/microsoft-365/security/defender-endpoint/get-software-ver-distribution?view=o365-21vianet) | modified |
-| 4/21/2021 | [List software](/microsoft-365/security/defender-endpoint/get-software?view=o365-21vianet) | modified |
-| 4/21/2021 | [List vulnerabilities by software](/microsoft-365/security/defender-endpoint/get-vuln-by-software?view=o365-21vianet) | modified |
-| 4/21/2021 | [Get vulnerability by ID](/microsoft-365/security/defender-endpoint/get-vulnerability-by-id?view=o365-21vianet) | modified |
-| 4/21/2021 | [Microsoft Defender for Endpoint for US Government customers](/microsoft-365/security/defender-endpoint/gov?view=o365-21vianet) | modified |
-| 4/21/2021 | [Grant access to managed security service provider (MSSP)](/microsoft-365/security/defender-endpoint/grant-mssp-access?view=o365-21vianet) | modified |
-| 4/21/2021 | [Information protection in Windows overview](/microsoft-365/security/defender-endpoint/information-protection-in-windows-overview?view=o365-21vianet) | modified |
-| 4/21/2021 | [Investigate Microsoft Defender for Endpoint domains](/microsoft-365/security/defender-endpoint/investigate-domain?view=o365-21vianet) | modified |
-| 4/21/2021 | [Investigate an IP address associated with an alert](/microsoft-365/security/defender-endpoint/investigate-ip?view=o365-21vianet) | modified |
-| 4/21/2021 | [Investigate devices in the Defender for Endpoint Devices list](/microsoft-365/security/defender-endpoint/investigate-machines?view=o365-21vianet) | modified |
-| 4/21/2021 | [Investigate a user account in Microsoft Defender for Endpoint](/microsoft-365/security/defender-endpoint/investigate-user?view=o365-21vianet) | modified |
-| 4/21/2021 | [Configure Microsoft Defender for Endpoint on iOS features](/microsoft-365/security/defender-endpoint/ios-configure-features?view=o365-21vianet) | modified |
-| 4/21/2021 | [App-based deployment for Microsoft Defender for Endpoint on iOS](/microsoft-365/security/defender-endpoint/ios-install?view=o365-21vianet) | modified |
-| 4/21/2021 | [Privacy information - Microsoft Defender for Endpoint on iOS](/microsoft-365/security/defender-endpoint/ios-privacy?view=o365-21vianet) | modified |
-| 4/21/2021 | [Microsoft Defender for Endpoint on iOS Application license terms](/microsoft-365/security/defender-endpoint/ios-terms?view=o365-21vianet) | modified |
-| 4/21/2021 | [What's new in Microsoft Defender for Endpoint on iOS](/microsoft-365/security/defender-endpoint/ios-whatsnew?view=o365-21vianet) | modified |
-| 4/21/2021 | [Configure and validate exclusions for Microsoft Defender for Endpoint on Linux](/microsoft-365/security/defender-endpoint/linux-exclusions?view=o365-21vianet) | modified |
-| 4/21/2021 | [Deploy Microsoft Defender for Endpoint on Linux manually](/microsoft-365/security/defender-endpoint/linux-install-manually?view=o365-21vianet) | modified |
-| 4/21/2021 | [Deploy Microsoft Defender for Endpoint on Linux with Ansible](/microsoft-365/security/defender-endpoint/linux-install-with-ansible?view=o365-21vianet) | modified |
-| 4/21/2021 | [Deploy Microsoft Defender for Endpoint on Linux with Puppet](/microsoft-365/security/defender-endpoint/linux-install-with-puppet?view=o365-21vianet) | modified |
-| 4/21/2021 | [Set preferences for Microsoft Defender for Endpoint on Linux](/microsoft-365/security/defender-endpoint/linux-preferences?view=o365-21vianet) | modified |
-| 4/21/2021 | [Privacy for Microsoft Defender for Endpoint on Linux](/microsoft-365/security/defender-endpoint/linux-privacy?view=o365-21vianet) | modified |
-| 4/21/2021 | [Detect and block potentially unwanted applications with Microsoft Defender for Endpoint on Linux](/microsoft-365/security/defender-endpoint/linux-pua?view=o365-21vianet) | modified |
-| 4/21/2021 | [Microsoft Defender for Endpoint on Linux resources](/microsoft-365/security/defender-endpoint/linux-resources?view=o365-21vianet) | modified |
-| 4/21/2021 | [How to schedule scans with Microsoft Defender for Endpoint (Linux)](/microsoft-365/security/defender-endpoint/linux-schedule-scan-atp?view=o365-21vianet) | modified |
-| 4/21/2021 | [Microsoft Defender for Endpoint on Linux static proxy discovery](/microsoft-365/security/defender-endpoint/linux-static-proxy-configuration?view=o365-21vianet) | modified |
-| 4/21/2021 | [Troubleshoot cloud connectivity issues for Microsoft Defender for Endpoint on Linux](/microsoft-365/security/defender-endpoint/linux-support-connectivity?view=o365-21vianet) | modified |
-| 4/21/2021 | [Troubleshoot missing events or alerts issues for Microsoft Defender for Endpoint on Linux](/microsoft-365/security/defender-endpoint/linux-support-events?view=o365-21vianet) | modified |
-| 4/21/2021 | [Troubleshoot installation issues for Microsoft Defender for Endpoint on Linux](/microsoft-365/security/defender-endpoint/linux-support-install?view=o365-21vianet) | modified |
-| 4/21/2021 | [Troubleshoot performance issues for Microsoft Defender for Endpoint on Linux](/microsoft-365/security/defender-endpoint/linux-support-perf?view=o365-21vianet) | modified |
-| 4/21/2021 | [How to schedule an update of the Microsoft Defender for Endpoint (Linux)](/microsoft-365/security/defender-endpoint/linux-update-mde-linux?view=o365-21vianet) | modified |
-| 4/21/2021 | [Deploy updates for Microsoft Defender for Endpoint on Linux](/microsoft-365/security/defender-endpoint/linux-updates?view=o365-21vianet) | modified |
-| 4/21/2021 | [What's new in Microsoft Defender for Endpoint on Linux](/microsoft-365/security/defender-endpoint/linux-whatsnew?view=o365-21vianet) | modified |
-| 4/21/2021 | [Examples of device control policies for Intune](/microsoft-365/security/defender-endpoint/mac-device-control-intune?view=o365-21vianet) | modified |
-| 4/21/2021 | [Examples of device control policies for JAMF](/microsoft-365/security/defender-endpoint/mac-device-control-jamf?view=o365-21vianet) | modified |
-| 4/21/2021 | [Device control for macOS](/microsoft-365/security/defender-endpoint/mac-device-control-overview?view=o365-21vianet) | modified |
-| 4/21/2021 | [Configure and validate exclusions for Microsoft Defender for Endpoint on Mac](/microsoft-365/security/defender-endpoint/mac-exclusions?view=o365-21vianet) | modified |
-| 4/21/2021 | [Log in to Jamf Pro](/microsoft-365/security/defender-endpoint/mac-install-jamfpro-login?view=o365-21vianet) | modified |
-| 4/21/2021 | [Manual deployment for Microsoft Defender for Endpoint on macOS](/microsoft-365/security/defender-endpoint/mac-install-manually?view=o365-21vianet) | modified |
-| 4/21/2021 | [Intune-based deployment for Microsoft Defender for Endpoint on Mac](/microsoft-365/security/defender-endpoint/mac-install-with-intune?view=o365-21vianet) | modified |
-| 4/21/2021 | [Deploying Microsoft Defender for Endpoint on macOS with Jamf Pro](/microsoft-365/security/defender-endpoint/mac-install-with-jamf?view=o365-21vianet) | modified |
-| 4/21/2021 | [Deployment with a different Mobile Device Management (MDM) system for Microsoft Defender for Endpoint on Mac](/microsoft-365/security/defender-endpoint/mac-install-with-other-mdm?view=o365-21vianet) | modified |
-| 4/21/2021 | [Set up device groups in Jamf Pro](/microsoft-365/security/defender-endpoint/mac-jamfpro-device-groups?view=o365-21vianet) | modified |
-| 4/21/2021 | [Enroll Microsoft Defender for Endpoint on macOS devices into Jamf Pro](/microsoft-365/security/defender-endpoint/mac-jamfpro-enroll-devices?view=o365-21vianet) | modified |
-| 4/21/2021 | [Set up the Microsoft Defender for Endpoint on macOS policies in Jamf Pro](/microsoft-365/security/defender-endpoint/mac-jamfpro-policies?view=o365-21vianet) | modified |
-| 4/21/2021 | [Set preferences for Microsoft Defender for Endpoint on Mac](/microsoft-365/security/defender-endpoint/mac-preferences?view=o365-21vianet) | modified |
-| 4/21/2021 | [Privacy for Microsoft Defender for Endpoint on Mac](/microsoft-365/security/defender-endpoint/mac-privacy?view=o365-21vianet) | modified |
-| 4/21/2021 | [Detect and block potentially unwanted applications with Microsoft Defender for Endpoint on Mac](/microsoft-365/security/defender-endpoint/mac-pua?view=o365-21vianet) | modified |
-| 4/21/2021 | [Resources for Microsoft Defender for Endpoint on Mac](/microsoft-365/security/defender-endpoint/mac-resources?view=o365-21vianet) | modified |
-| 4/21/2021 | [How to schedule scans with Microsoft Defender for Endpoint on macOS](/microsoft-365/security/defender-endpoint/mac-schedule-scan?view=o365-21vianet) | modified |
-| 4/21/2021 | [Troubleshoot installation issues for Microsoft Defender for Endpoint on Mac](/microsoft-365/security/defender-endpoint/mac-support-install?view=o365-21vianet) | modified |
-| 4/21/2021 | [Troubleshoot kernel extension issues in Microsoft Defender for Endpoint on macOS](/microsoft-365/security/defender-endpoint/mac-support-kext?view=o365-21vianet) | modified |
-| 4/21/2021 | [Troubleshoot license issues for Microsoft Defender for Endpoint on Mac](/microsoft-365/security/defender-endpoint/mac-support-license?view=o365-21vianet) | modified |
-| 4/21/2021 | [Troubleshoot performance issues for Microsoft Defender for Endpoint on macOS](/microsoft-365/security/defender-endpoint/mac-support-perf?view=o365-21vianet) | modified |
-| 4/21/2021 | [New configuration profiles for macOS Catalina and newer versions of macOS](/microsoft-365/security/defender-endpoint/mac-sysext-policies?view=o365-21vianet) | modified |
-| 4/21/2021 | [Microsoft Defender for Endpoint on Mac - system extensions (Preview)](/microsoft-365/security/defender-endpoint/mac-sysext-preview?view=o365-21vianet) | modified |
-| 4/21/2021 | [Deploy updates for Microsoft Defender for Endpoint on Mac](/microsoft-365/security/defender-endpoint/mac-updates?view=o365-21vianet) | modified |
-| 4/21/2021 | [What's new in Microsoft Defender for Endpoint on Mac](/microsoft-365/security/defender-endpoint/mac-whatsnew?view=o365-21vianet) | modified |
-| 4/21/2021 | [Manage Microsoft Defender for Endpoint using Configuration Manager](/microsoft-365/security/defender-endpoint/manage-atp-post-migration-configuration-manager?view=o365-21vianet) | modified |
-| 4/21/2021 | [Manage Microsoft Defender for Endpoint using Group Policy Objects](/microsoft-365/security/defender-endpoint/manage-atp-post-migration-group-policy-objects?view=o365-21vianet) | modified |
-| 4/21/2021 | [Manage Microsoft Defender for Endpoint using Intune](/microsoft-365/security/defender-endpoint/manage-atp-post-migration-intune?view=o365-21vianet) | modified |
-| 4/21/2021 | [Manage Microsoft Defender for Endpoint using PowerShell, WMI, and MPCmdRun.exe](/microsoft-365/security/defender-endpoint/manage-atp-post-migration-other-tools?view=o365-21vianet) | modified |
-| 4/21/2021 | [Manage Microsoft Defender for Endpoint post migration](/microsoft-365/security/defender-endpoint/manage-atp-post-migration?view=o365-21vianet) | modified |
-| 4/21/2021 | [Overview of management and APIs](/microsoft-365/security/defender-endpoint/management-apis?view=o365-21vianet) | modified |
-| 4/21/2021 | [Migrate from McAfee to Microsoft Defender for Endpoint](/microsoft-365/security/defender-endpoint/mcafee-to-microsoft-defender-migration?view=o365-21vianet) | modified |
-| 4/21/2021 | [McAfee to Microsoft Defender for Endpoint - Onboard](/microsoft-365/security/defender-endpoint/mcafee-to-microsoft-defender-onboard?view=o365-21vianet) | modified |
-| 4/21/2021 | [McAfee to Microsoft Defender for Endpoint - Prepare](/microsoft-365/security/defender-endpoint/mcafee-to-microsoft-defender-prepare?view=o365-21vianet) | modified |
-| 4/21/2021 | [McAfee to Microsoft Defender for Endpoint - Setup](/microsoft-365/security/defender-endpoint/mcafee-to-microsoft-defender-setup?view=o365-21vianet) | modified |
-| 4/21/2021 | [Microsoft Defender for Endpoint on Android](/microsoft-365/security/defender-endpoint/microsoft-defender-endpoint-android?view=o365-21vianet) | modified |
-| 4/21/2021 | [Microsoft Defender for Endpoint on iOS](/microsoft-365/security/defender-endpoint/microsoft-defender-endpoint-ios?view=o365-21vianet) | modified |
-| 4/21/2021 | [Microsoft Defender for Endpoint on Linux](/microsoft-365/security/defender-endpoint/microsoft-defender-endpoint-linux?view=o365-21vianet) | modified |
-| 4/21/2021 | [Microsoft Defender for Endpoint on Mac](/microsoft-365/security/defender-endpoint/microsoft-defender-endpoint-mac?view=o365-21vianet) | modified |
-| 4/21/2021 | [Microsoft Defender for Endpoint](/microsoft-365/security/defender-endpoint/microsoft-defender-endpoint?view=o365-21vianet) | modified |
-| 4/21/2021 | [Migrating from a third-party HIPS to ASR rules](/microsoft-365/security/defender-endpoint/migrating-asr-rules?view=o365-21vianet) | modified |
-| 4/21/2021 | [Migration guides to make the switch to Microsoft Defender for Endpoint](/microsoft-365/security/defender-endpoint/migration-guides?view=o365-21vianet) | modified |
-| 4/21/2021 | [Threat and vulnerability management](/microsoft-365/security/defender-endpoint/next-gen-threat-and-vuln-mgt?view=o365-21vianet) | modified |
-| 4/21/2021 | [Offboard machine API](/microsoft-365/security/defender-endpoint/offboard-machine-api?view=o365-21vianet) | modified |
-| 4/21/2021 | [Offboard devices from the Microsoft Defender for Endpoint service](/microsoft-365/security/defender-endpoint/offboard-machines?view=o365-21vianet) | modified |
-| 4/21/2021 | [Threat Protection (Windows 10)](/microsoft-365/security/defender-endpoint/old-index?view=o365-21vianet) | modified |
-| 4/21/2021 | [Onboard devices to the Microsoft Defender for Endpoint service](/microsoft-365/security/defender-endpoint/onboard-configure?view=o365-21vianet) | modified |
-| 4/21/2021 | [Onboard devices without Internet access to Microsoft Defender for Endpoint](/microsoft-365/security/defender-endpoint/onboard-offline-machines?view=o365-21vianet) | modified |
-| 4/21/2021 | [Configure and manage Microsoft Defender for Endpoint capabilities](/microsoft-365/security/defender-endpoint/onboard?view=o365-21vianet) | modified |
-| 4/21/2021 | [Onboarding using Microsoft Endpoint Configuration Manager](/microsoft-365/security/defender-endpoint/onboarding-endpoint-configuration-manager?view=o365-21vianet) | modified |
-| 4/21/2021 | [Onboarding using Microsoft Endpoint Manager](/microsoft-365/security/defender-endpoint/onboarding-endpoint-manager?view=o365-21vianet) | modified |
-| 4/21/2021 | [Onboard to the Microsoft Defender for Endpoint service](/microsoft-365/security/defender-endpoint/onboarding?view=o365-21vianet) | modified |
-| 4/21/2021 | [Overview of attack surface reduction](/microsoft-365/security/defender-endpoint/overview-attack-surface-reduction?view=o365-21vianet) | modified |
-| 4/21/2021 | [Overview of endpoint detection and response capabilities](/microsoft-365/security/defender-endpoint/overview-endpoint-detection-response?view=o365-21vianet) | modified |
-| 4/21/2021 | [Supported Microsoft Defender for Endpoint response APIs](/microsoft-365/security/defender-endpoint/supported-response-apis?view=o365-21vianet) | modified |
-| 4/21/2021 | [Switch to Microsoft Defender for Endpoint - Onboard](/microsoft-365/security/defender-endpoint/switch-to-microsoft-defender-onboard?view=o365-21vianet) | modified |
-| 4/21/2021 | [Switch to Microsoft Defender for Endpoint - Prepare](/microsoft-365/security/defender-endpoint/switch-to-microsoft-defender-prepare?view=o365-21vianet) | modified |
-| 4/21/2021 | [Switch to Microsoft Defender for Endpoint - Setup](/microsoft-365/security/defender-endpoint/switch-to-microsoft-defender-setup?view=o365-21vianet) | modified |
-| 4/21/2021 | [Symantec to Microsoft Defender for Endpoint - Phase 3, Onboarding](/microsoft-365/security/defender-endpoint/symantec-to-microsoft-defender-atp-onboard?view=o365-21vianet) | modified |
-| 4/21/2021 | [Symantec to Microsoft Defender for Endpoint - Phase 1, Preparing](/microsoft-365/security/defender-endpoint/symantec-to-microsoft-defender-atp-prepare?view=o365-21vianet) | modified |
-| 4/21/2021 | [Symantec to Microsoft Defender for Endpoint - Phase 2, Setting Up](/microsoft-365/security/defender-endpoint/symantec-to-microsoft-defender-atp-setup?view=o365-21vianet) | modified |
-| 4/21/2021 | [Migrate from Symantec to Microsoft Defender for Endpoint](/microsoft-365/security/defender-endpoint/symantec-to-microsoft-defender-endpoint-migration?view=o365-21vianet) | modified |
-| 4/21/2021 | [Understand the analyst report section in threat analytics](/microsoft-365/security/defender-endpoint/threat-analytics-analyst-reports?view=o365-21vianet) | modified |
-| 4/21/2021 | [Event timeline in threat and vulnerability management](/microsoft-365/security/defender-endpoint/threat-and-vuln-mgt-event-timeline?view=o365-21vianet) | modified |
-| 4/21/2021 | [Integrate Microsoft Defender for Endpoint with other Microsoft solutions](/microsoft-365/security/defender-endpoint/threat-protection-integration?view=o365-21vianet) | modified |
-| 4/21/2021 | [Microsoft Defender Security Center time zone settings](/microsoft-365/security/defender-endpoint/time-settings?view=o365-21vianet) | modified |
-| 4/21/2021 | [Troubleshoot problems with attack surface reduction rules](/microsoft-365/security/defender-endpoint/troubleshoot-asr?view=o365-21vianet) | modified |
-| 4/21/2021 | [Troubleshoot cloud connectivity issues for Microsoft Defender for Endpoint on macOS](/microsoft-365/security/defender-endpoint/troubleshoot-cloud-connect-mdemac?view=o365-21vianet) | modified |
-| 4/21/2021 | [Troubleshoot Microsoft Defender for Endpoint service issues](/microsoft-365/security/defender-endpoint/troubleshoot-mdatp?view=o365-21vianet) | modified |
-| 4/21/2021 | [Troubleshoot problems with Network protection](/microsoft-365/security/defender-endpoint/troubleshoot-np?view=o365-21vianet) | modified |
-| 4/21/2021 | [Troubleshoot Microsoft Defender for Endpoint onboarding issues](/microsoft-365/security/defender-endpoint/troubleshoot-onboarding?view=o365-21vianet) | modified |
-| 4/21/2021 | [Assign device value - threat and vulnerability management](/microsoft-365/security/defender-endpoint/tvm-assign-device-value?view=o365-21vianet) | modified |
-| 4/21/2021 | [Dashboard insights - threat and vulnerability management](/microsoft-365/security/defender-endpoint/tvm-dashboard-insights?view=o365-21vianet) | modified |
-| 4/21/2021 | [Plan for end-of-support software and software versions](/microsoft-365/security/defender-endpoint/tvm-end-of-support-software?view=o365-21vianet) | modified |
-| 4/21/2021 | [Create and view exceptions for security recommendations - threat and vulnerability management](/microsoft-365/security/defender-endpoint/tvm-exception?view=o365-21vianet) | modified |
-| 4/21/2021 | [Exposure score in threat and vulnerability management](/microsoft-365/security/defender-endpoint/tvm-exposure-score?view=o365-21vianet) | modified |
-| 4/21/2021 | [Hunt for exposed devices](/microsoft-365/security/defender-endpoint/tvm-hunt-exposed-devices?view=o365-21vianet) | modified |
-| 4/21/2021 | [Microsoft Secure Score for Devices](/microsoft-365/security/defender-endpoint/tvm-microsoft-secure-score-devices?view=o365-21vianet) | modified |
-| 4/21/2021 | [Prerequisites & permissions - threat and vulnerability management](/microsoft-365/security/defender-endpoint/tvm-prerequisites?view=o365-21vianet) | modified |
-| 4/21/2021 | [Remediate vulnerabilities with threat and vulnerability management](/microsoft-365/security/defender-endpoint/tvm-remediation?view=o365-21vianet) | modified |
-| 4/21/2021 | [Security recommendations by threat and vulnerability management](/microsoft-365/security/defender-endpoint/tvm-security-recommendation?view=o365-21vianet) | modified |
-| 4/21/2021 | [Software inventory in threat and vulnerability management](/microsoft-365/security/defender-endpoint/tvm-software-inventory?view=o365-21vianet) | modified |
-| 4/21/2021 | [Supported operating systems and platforms for threat and vulnerability management](/microsoft-365/security/defender-endpoint/tvm-supported-os?view=o365-21vianet) | modified |
-| 4/21/2021 | [Vulnerable devices report - threat and vulnerability management](/microsoft-365/security/defender-endpoint/tvm-vulnerable-devices-report?view=o365-21vianet) | modified |
-| 4/21/2021 | [Vulnerabilities in my organization - threat and vulnerability management](/microsoft-365/security/defender-endpoint/tvm-weaknesses?view=o365-21vianet) | modified |
-| 4/21/2021 | [Mitigate zero-day vulnerabilities - threat and vulnerability management](/microsoft-365/security/defender-endpoint/tvm-zero-day-vulnerabilities?view=o365-21vianet) | modified |
-| 4/21/2021 | [What's new in Microsoft Defender for Endpoint](/microsoft-365/security/defender-endpoint/whats-new-in-microsoft-defender-atp?view=o365-21vianet) | modified |
-| 4/21/2021 | [AADSignInEventsBeta table in the advanced hunting schema](/microsoft-365/security/defender/advanced-hunting-aadsignineventsbeta-table?view=o365-21vianet) | modified |
-| 4/21/2021 | [AADSpnSignInEventsBeta table in the advanced hunting schema](/microsoft-365/security/defender/advanced-hunting-aadspnsignineventsbeta-table?view=o365-21vianet) | modified |
-| 4/21/2021 | [AlertEvidence table in the advanced hunting schema](/microsoft-365/security/defender/advanced-hunting-alertevidence-table?view=o365-21vianet) | modified |
-| 4/21/2021 | [AlertInfo table in the advanced hunting schema](/microsoft-365/security/defender/advanced-hunting-alertinfo-table?view=o365-21vianet) | modified |
-| 4/21/2021 | [AppFileEvents table in the advanced hunting schema](/microsoft-365/security/defender/advanced-hunting-appfileevents-table?view=o365-21vianet) | modified |
-| 4/21/2021 | [AssignedIPAddresses() function in advanced hunting for Microsoft 365 Defender](/microsoft-365/security/defender/advanced-hunting-assignedipaddresses-function?view=o365-21vianet) | modified |
-| 4/21/2021 | [Advanced hunting query best practices in Microsoft 365 Defender](/microsoft-365/security/defender/advanced-hunting-best-practices?view=o365-21vianet) | modified |
-| 4/21/2021 | [CloudAppEvents table in the advanced hunting schema](/microsoft-365/security/defender/advanced-hunting-cloudappevents-table?view=o365-21vianet) | modified |
-| 4/21/2021 | [DeviceEvents table in the advanced hunting schema](/microsoft-365/security/defender/advanced-hunting-deviceevents-table?view=o365-21vianet) | modified |
-| 4/21/2021 | [DeviceFileCertificateInfo table in the advanced hunting schema](/microsoft-365/security/defender/advanced-hunting-devicefilecertificateinfo-table?view=o365-21vianet) | modified |
-| 4/21/2021 | [DeviceFileEvents table in the advanced hunting schema](/microsoft-365/security/defender/advanced-hunting-devicefileevents-table?view=o365-21vianet) | modified |
-| 4/21/2021 | [DeviceFromIP() function in advanced hunting for Microsoft 365 Defender](/microsoft-365/security/defender/advanced-hunting-devicefromip-function?view=o365-21vianet) | modified |
-| 4/21/2021 | [DeviceImageLoadEvents table in the advanced hunting schema](/microsoft-365/security/defender/advanced-hunting-deviceimageloadevents-table?view=o365-21vianet) | modified |
-| 4/21/2021 | [DeviceInfo table in the advanced hunting schema](/microsoft-365/security/defender/advanced-hunting-deviceinfo-table?view=o365-21vianet) | modified |
-| 4/21/2021 | [DeviceLogonEvents table in the advanced hunting schema](/microsoft-365/security/defender/advanced-hunting-devicelogonevents-table?view=o365-21vianet) | modified |
-| 4/21/2021 | [DeviceNetworkEvents table in the advanced hunting schema](/microsoft-365/security/defender/advanced-hunting-devicenetworkevents-table?view=o365-21vianet) | modified |
-| 4/21/2021 | [DeviceNetworkInfo table in the advanced hunting schema](/microsoft-365/security/defender/advanced-hunting-devicenetworkinfo-table?view=o365-21vianet) | modified |
-| 4/21/2021 | [DeviceProcessEvents table in the advanced hunting schema](/microsoft-365/security/defender/advanced-hunting-deviceprocessevents-table?view=o365-21vianet) | modified |
-| 4/21/2021 | [DeviceRegistryEvents table in the advanced hunting schema](/microsoft-365/security/defender/advanced-hunting-deviceregistryevents-table?view=o365-21vianet) | modified |
-| 4/21/2021 | [DeviceTvmSecureConfigurationAssessment table in the advanced hunting schema](/microsoft-365/security/defender/advanced-hunting-devicetvmsecureconfigurationassessment-table?view=o365-21vianet) | modified |
-| 4/21/2021 | [DeviceTvmSecureConfigurationAssessmentKB table in the advanced hunting schema](/microsoft-365/security/defender/advanced-hunting-devicetvmsecureconfigurationassessmentkb-table?view=o365-21vianet) | modified |
-| 4/21/2021 | [DeviceTvmSoftwareInventory table in the advanced hunting schema](/microsoft-365/security/defender/advanced-hunting-devicetvmsoftwareinventory-table?view=o365-21vianet) | modified |
-| 4/21/2021 | [DeviceTvmSoftwareInventory table in the advanced hunting schema](/microsoft-365/security/defender/advanced-hunting-devicetvmsoftwareinventoryvulnerabilities-table?view=o365-21vianet) | modified |
-| 4/21/2021 | [DeviceTvmSoftwareVulnerabilities table in the advanced hunting schema](/microsoft-365/security/defender/advanced-hunting-devicetvmsoftwarevulnerabilities-table?view=o365-21vianet) | modified |
-| 4/21/2021 | [DeviceTvmSoftwareVulnerabilitiesKB table in the advanced hunting schema](/microsoft-365/security/defender/advanced-hunting-devicetvmsoftwarevulnerabilitieskb-table?view=o365-21vianet) | modified |
-| 4/21/2021 | [EmailAttachmentInfo table in the advanced hunting schema](/microsoft-365/security/defender/advanced-hunting-emailattachmentinfo-table?view=o365-21vianet) | modified |
-| 4/21/2021 | [EmailEvents table in the advanced hunting schema](/microsoft-365/security/defender/advanced-hunting-emailevents-table?view=o365-21vianet) | modified |
-| 4/21/2021 | [EmailPostDeliveryEvents table in the advanced hunting schema](/microsoft-365/security/defender/advanced-hunting-emailpostdeliveryevents-table?view=o365-21vianet) | modified |
-| 4/21/2021 | [EmailUrlInfo table in the advanced hunting schema](/microsoft-365/security/defender/advanced-hunting-emailurlinfo-table?view=o365-21vianet) | modified |
-| 4/21/2021 | [Handle errors in advanced hunting for Microsoft 365 Defender](/microsoft-365/security/defender/advanced-hunting-errors?view=o365-21vianet) | modified |
-| 4/21/2021 | [Get expert training on advanced hunting](/microsoft-365/security/defender/advanced-hunting-expert-training?view=o365-21vianet) | modified |
-| 4/21/2021 | [Extend advanced hunting coverage with the right settings](/microsoft-365/security/defender/advanced-hunting-extend-data?view=o365-21vianet) | modified |
-| 4/21/2021 | [FileProfile() function in advanced hunting for Microsoft 365 Defender](/microsoft-365/security/defender/advanced-hunting-fileprofile-function?view=o365-21vianet) | modified |
-| 4/21/2021 | [Find ransomware with advanced hunting](/microsoft-365/security/defender/advanced-hunting-find-ransomware?view=o365-21vianet) | modified |
-| 4/21/2021 | [Get relevant info about an entity with go hunt](/microsoft-365/security/defender/advanced-hunting-go-hunt?view=o365-21vianet) | modified |
-| 4/21/2021 | [IdentityDirectoryEvents table in the advanced hunting schema](/microsoft-365/security/defender/advanced-hunting-identitydirectoryevents-table?view=o365-21vianet) | modified |
-| 4/21/2021 | [IdentityInfo table in the advanced hunting schema](/microsoft-365/security/defender/advanced-hunting-identityinfo-table?view=o365-21vianet) | modified |
-| 4/21/2021 | [IdentityLogonEvents table in the advanced hunting schema](/microsoft-365/security/defender/advanced-hunting-identitylogonevents-table?view=o365-21vianet) | modified |
-| 4/21/2021 | [IdentityQueryEvents table in the advanced hunting schema](/microsoft-365/security/defender/advanced-hunting-identityqueryevents-table?view=o365-21vianet) | modified |
-| 4/21/2021 | [Advanced hunting quotas and usage parameters in Microsoft 365 Defender](/microsoft-365/security/defender/advanced-hunting-limits?view=o365-21vianet) | modified |
-| 4/21/2021 | [Migrate advanced hunting queries from Microsoft Defender for Endpoint](/microsoft-365/security/defender/advanced-hunting-migrate-from-mde?view=o365-21vianet) | modified |
-| 4/21/2021 | [Overview - Advanced hunting](/microsoft-365/security/defender/advanced-hunting-overview?view=o365-21vianet) | modified |
-| 4/21/2021 | [Hunt for threats across devices, emails, apps, and identities with advanced hunting](/microsoft-365/security/defender/advanced-hunting-query-emails-devices?view=o365-21vianet) | modified |
-| 4/21/2021 | [Learn the advanced hunting query language in Microsoft 365 Defender](/microsoft-365/security/defender/advanced-hunting-query-language?view=o365-21vianet) | modified |
-| 4/21/2021 | [Work with advanced hunting query results in Microsoft 365 Defender](/microsoft-365/security/defender/advanced-hunting-query-results?view=o365-21vianet) | modified |
-| 4/21/2021 | [Naming changes in the Microsoft 365 Defender advanced hunting schema](/microsoft-365/security/defender/advanced-hunting-schema-changes?view=o365-21vianet) | modified |
-| 4/21/2021 | [Data tables in the Microsoft 365 Defender advanced hunting schema](/microsoft-365/security/defender/advanced-hunting-schema-tables?view=o365-21vianet) | modified |
-| 4/21/2021 | [Use shared queries in Microsoft 365 Defender advanced hunting](/microsoft-365/security/defender/advanced-hunting-shared-queries?view=o365-21vianet) | modified |
-| 4/21/2021 | [Take action on advanced hunting query results in Microsoft 365 Defender](/microsoft-365/security/defender/advanced-hunting-take-action?view=o365-21vianet) | modified |
-| 4/21/2021 | [Microsoft 365 Defender advanced hunting API](/microsoft-365/security/defender/api-advanced-hunting?view=o365-21vianet) | modified |
-| 4/21/2021 | [Other security and threat protection APIs](/microsoft-365/security/defender/api-articles?view=o365-21vianet) | modified |
-| 4/21/2021 | [Common Microsoft 365 Defender REST API error codes](/microsoft-365/security/defender/api-error-codes?view=o365-21vianet) | modified |
-| 4/21/2021 | [List incidents API in Microsoft 365 Defender](/microsoft-365/security/defender/api-list-incidents?view=o365-21vianet) | modified |
-| 4/21/2021 | [Supported Microsoft 365 Defender APIs](/microsoft-365/security/defender/api-supported?view=o365-21vianet) | modified |
-| 4/21/2021 | [Configure Microsoft 365 Defender pillars for the trial lab or pilot environment](/microsoft-365/security/defender/config-m365d-eval?view=o365-21vianet) | modified |
-| 4/21/2021 | [Create and manage custom detection rules in Microsoft 365 Defender](/microsoft-365/security/defender/custom-detection-rules?view=o365-21vianet) | modified |
-| 4/21/2021 | [Overview of custom detections in Microsoft 365 Defender](/microsoft-365/security/defender/custom-detections-overview?view=o365-21vianet) | modified |
-| 4/21/2021 | [Custom roles for role-based access control](/microsoft-365/security/defender/custom-roles?view=o365-21vianet) | modified |
-| 4/21/2021 | [Deploy services supported by Microsoft 365 Defender](/microsoft-365/security/defender/deploy-supported-services?view=o365-21vianet) | modified |
-| 4/21/2021 | [Device profile in Microsoft 365 security portal](/microsoft-365/security/defender/device-profile?view=o365-21vianet) | modified |
-| 4/21/2021 | [Generate a test Microsoft 365 Defender alert](/microsoft-365/security/defender/generate-test-alert?view=o365-21vianet) | modified |
-| 4/21/2021 | [Frequently asked questions when turning on Microsoft 365 Defender](/microsoft-365/security/defender/m365d-enable-faq?view=o365-21vianet) | modified |
-| 4/21/2021 | [Turn on Microsoft 365 Defender in the Microsoft 365 security center](/microsoft-365/security/defender/m365d-enable?view=o365-21vianet) | modified |
-| 4/21/2021 | [Evaluate Microsoft 365 Defender](/microsoft-365/security/defender/m365d-evaluation?view=o365-21vianet) | modified |
-| 4/21/2021 | [Manage access to Microsoft 365 Defender data in the Microsoft 365 security center](/microsoft-365/security/defender/m365d-permissions?view=o365-21vianet) | modified |
-| 4/21/2021 | [Summarizing your pilot Microsoft 365 Defender project results](/microsoft-365/security/defender/m365d-pilot-close?view=o365-21vianet) | modified |
-| 4/21/2021 | [Planning your pilot Microsoft 365 Defender project](/microsoft-365/security/defender/m365d-pilot-plan?view=o365-21vianet) | modified |
-| 4/21/2021 | [Run your Microsoft 365 Defender attack simulations](/microsoft-365/security/defender/m365d-pilot-simulate?view=o365-21vianet) | modified |
-| 4/21/2021 | [Run your pilot Microsoft 365 Defender project](/microsoft-365/security/defender/m365d-pilot?view=o365-21vianet) | modified |
-| 4/21/2021 | [Set the time zone for Microsoft 365 Defender features](/microsoft-365/security/defender/m365d-time-zone?view=o365-21vianet) | modified |
-| 4/21/2021 | [Microsoft 365 Defender](/microsoft-365/security/defender/microsoft-365-defender?view=o365-21vianet) | modified |
-| 4/21/2021 | [Microsoft Defender for Endpoint in the Microsoft 365 security center](/microsoft-365/security/defender/microsoft-365-security-center-mde?view=o365-21vianet) | modified |
-| 4/21/2021 | [Microsoft Defender for Office 365 in the Microsoft 365 security center](/microsoft-365/security/defender/microsoft-365-security-center-mdo?view=o365-21vianet) | modified |
-| 4/21/2021 | [What's new in Microsoft Secure Score](/microsoft-365/security/defender/microsoft-secure-score-whats-new?view=o365-21vianet) | modified |
-| 4/21/2021 | [Provide managed security service provider (MSSP) access](/microsoft-365/security/defender/mssp-access?view=o365-21vianet) | modified |
-| 4/21/2021 | [Microsoft security portals and admin centers](/microsoft-365/security/defender/portals?view=o365-21vianet) | modified |
-| 4/21/2021 | [Prepare your Microsoft 365 Defender trial lab environment](/microsoft-365/security/defender/prepare-m365d-eval?view=o365-21vianet) | modified |
-| 4/21/2021 | [Microsoft 365 Defender prerequisites](/microsoft-365/security/defender/prerequisites?view=o365-21vianet) | modified |
-| 4/21/2021 | [Set up your Microsoft 365 Defender trial lab or pilot environment](/microsoft-365/security/defender/setup-m365deval?view=o365-21vianet) | modified |
-| 4/21/2021 | [Top scoring in industry tests - Microsoft 365 Defender](/microsoft-365/security/defender/top-scoring-industry-tests?view=o365-21vianet) | modified |
-| 4/21/2021 | [Troubleshoot Microsoft 365 Defender service issues](/microsoft-365/security/defender/troubleshoot?view=o365-21vianet) | modified |
-| 4/21/2021 | [What's new in Microsoft 365 Defender](/microsoft-365/security/defender/whats-new?view=o365-21vianet) | modified |
-| 4/21/2021 | [Address compromised user accounts with automated investigation and response](/microsoft-365/security/office-365-security/address-compromised-users-quickly?view=o365-21vianet) | modified |
-| 4/21/2021 | [Custom reporting solutions with automated investigation and response](/microsoft-365/security/office-365-security/air-custom-reporting?view=o365-21vianet) | modified |
-| 4/21/2021 | [Remediation actions in Microsoft Defender for Office 365](/microsoft-365/security/office-365-security/air-remediation-actions?view=o365-21vianet) | modified |
-| 4/21/2021 | [Review and manage remediation actions in Microsoft Defender for Office 365](/microsoft-365/security/office-365-security/air-review-approve-pending-completed-actions?view=o365-21vianet) | modified |
-| 4/21/2021 | [View the results of an automated investigation in Microsoft 365](/microsoft-365/security/office-365-security/air-view-investigation-results?view=o365-21vianet) | modified |
-| 4/21/2021 | [Order and precedence of email protection](/microsoft-365/security/office-365-security/how-policies-and-protections-are-combined?view=o365-21vianet) | modified |
-| 4/21/2021 | [Use Microsoft Defender for Office 365 together with Microsoft Defender for Endpoint](/microsoft-365/security/office-365-security/integrate-office-365-ti-with-mde?view=o365-21vianet) | modified |
-| 4/21/2021 | [Investigate malicious email that was delivered in Office 365, Find and investigate malicious email](/microsoft-365/security/office-365-security/investigate-malicious-email-that-was-delivered?view=o365-21vianet) | modified |
-| 4/21/2021 | [The Microsoft Defender for Office 365 (MDO) email entity page](/microsoft-365/security/office-365-security/mdo-email-entity-page?view=o365-21vianet) | modified |
-| 4/21/2021 | [Automated investigation and response in Microsoft Defender for Office 365](/microsoft-365/security/office-365-security/office-365-air?view=o365-21vianet) | modified |
-| 4/21/2021 | [Evaluate Microsoft Defender for Office 365](/microsoft-365/security/office-365-security/office-365-evaluation?view=o365-21vianet) | modified |
-| 4/21/2021 | [Threat Explorer and Real-time detections](/microsoft-365/security/office-365-security/threat-explorer?view=o365-21vianet) | modified |
-| 4/21/2021 | [What's new in Microsoft Defender for Office 365](/microsoft-365/security/office-365-security/whats-new-in-defender-for-office-365?view=o365-21vianet) | modified |
-| 4/21/2021 | [Top 12 tasks for security teams to support working from home](/microsoft-365/security/top-security-tasks-for-remote-work?view=o365-21vianet) | modified |
-| 4/21/2021 | [Microsoft 365 infographics for users](/microsoft-365/solutions/infographics-for-users?view=o365-21vianet) | added |
-| 4/21/2021 | [Microsoft 365 Reports in the admin center - Microsoft 365 groups](/microsoft-365/admin/activity-reports/office-365-groups-ww?view=o365-21vianet) | modified |
-| 4/21/2021 | [Microsoft 365 Reports in the admin center - Microsoft 365 groups](/microsoft-365/admin/activity-reports/office-365-groups?view=o365-21vianet) | modified |
-| 4/21/2021 | Buy or try subscriptions for Office 365 operated by 21Vianet | removed |
-| 4/21/2021 | View your bill or get a Fapiao in Office 365 operated by 21Vianet | removed |
-| 4/21/2021 | [Online meetings overview](/microsoft-365/business-video/overview-online-meetings?view=o365-21vianet) | modified |
-| 4/21/2021 | [Enable domain-joined Windows 10 devices to be managed by Microsoft 365 for business](/microsoft-365/business/manage-windows-devices?view=o365-21vianet) | modified |
-| 4/21/2021 | [View your bill or invoice](/microsoft-365/commerce/billing-and-payments/view-your-bill-or-invoice?view=o365-21vianet) | modified |
-| 4/21/2021 | Switch Microsoft 365 for business plans manually | removed |
-| 4/21/2021 | Switch to a different Microsoft 365 for business plan | removed |
-| 4/21/2021 | [Upgrade to a different business plan](/microsoft-365/commerce/subscriptions/upgrade-to-different-plan?view=o365-21vianet) | modified |
-| 4/21/2021 | Why can't I switch Microsoft 365 for business plans? | removed |
-| 4/21/2021 | [Try or buy a Microsoft 365 for business subscription](/microsoft-365/commerce/try-or-buy-microsoft-365?view=o365-21vianet) | modified |
-| 4/21/2021 | [Automatically apply a sensitivity label to content in Microsoft 365](/microsoft-365/compliance/apply-sensitivity-label-automatically?view=o365-21vianet) | modified |
-| 4/21/2021 | [Use a PowerShell script to search the audit log](/microsoft-365/compliance/audit-log-search-script?view=o365-21vianet) | modified |
-| 4/21/2021 | [Delete items in the Recoverable Items folder of cloud mailbox's on hold](/microsoft-365/compliance/delete-items-in-the-recoverable-items-folder-of-mailboxes-on-hold?view=o365-21vianet) | modified |
-| 4/21/2021 | [Insider risk management cases](/microsoft-365/compliance/insider-risk-management-cases?view=o365-21vianet) | modified |
-| 4/21/2021 | [Insider risk management Content explorer](/microsoft-365/compliance/insider-risk-management-content-explorer?view=o365-21vianet) | modified |
-| 4/21/2021 | [Manage sensitivity labels in Office apps](/microsoft-365/compliance/sensitivity-labels-office-apps?view=o365-21vianet) | modified |
-| 4/21/2021 | [Enable attack surface reduction rules](/microsoft-365/security/defender-endpoint/enable-attack-surface-reduction?view=o365-21vianet) | modified |
-| 4/21/2021 | [Get incident notifications by email in Microsoft 365 Defender](/microsoft-365/security/defender/get-incident-notifications?view=o365-21vianet) | modified |
-| 4/21/2021 | [Prioritize incidents in Microsoft 365 Defender](/microsoft-365/security/defender/incident-queue?view=o365-21vianet) | modified |
-| 4/21/2021 | [Incidents in Microsoft 365 Defender](/microsoft-365/security/defender/incidents-overview?view=o365-21vianet) | modified |
-| 4/21/2021 | [Analyze alerts in Microsoft 365 Defender](/microsoft-365/security/defender/investigate-alerts?view=o365-21vianet) | modified |
-| 4/21/2021 | [Analyze incidents in Microsoft 365 Defender](/microsoft-365/security/defender/investigate-incidents?view=o365-21vianet) | modified |
-| 4/21/2021 | [Analyze users in Microsoft 365 security center](/microsoft-365/security/defender/investigate-users?view=o365-21vianet) | modified |
-| 4/21/2021 | [Manage incidents in Microsoft 365 Defender](/microsoft-365/security/defender/manage-incidents?view=o365-21vianet) | modified |
-| 4/21/2021 | [Microsoft 365 security center overview, combining MDO, MDE, MDI, and MCAS](/microsoft-365/security/defender/overview-security-center?view=o365-21vianet) | modified |
-| 4/21/2021 | [Recommended Microsoft Cloud App Security policies for SaaS apps - Microsoft 365 Enterprise \| Microsoft Docs](/microsoft-365/security/office-365-security/mcas-saas-access-policies?view=o365-21vianet) | modified |
-| 4/21/2021 | [User tags in Microsoft Defender for Office 365](/microsoft-365/security/office-365-security/user-tags?view=o365-21vianet) | modified |
-| 4/21/2021 | [Manage multiple tenants](/microsoft-365/admin/multi-tenant/manage?view=o365-21vianet) | modified |
-| 4/22/2021 | [Onboard Windows servers to the Microsoft Defender for Endpoint service](/microsoft-365/security/defender-endpoint/configure-server-endpoints?view=o365-21vianet) | modified |
-| 4/22/2021 | [Advanced hunting query best practices in Microsoft 365 Defender](/microsoft-365/security/defender/advanced-hunting-best-practices?view=o365-21vianet) | modified |
-| 4/22/2021 | [Handle errors in advanced hunting for Microsoft 365 Defender](/microsoft-365/security/defender/advanced-hunting-errors?view=o365-21vianet) | modified |
-| 4/22/2021 | [Extend advanced hunting coverage with the right settings](/microsoft-365/security/defender/advanced-hunting-extend-data?view=o365-21vianet) | modified |
-| 4/22/2021 | [Get relevant info about an entity with go hunt](/microsoft-365/security/defender/advanced-hunting-go-hunt?view=o365-21vianet) | modified |
-| 4/22/2021 | [Learn the advanced hunting query language in Microsoft 365 Defender](/microsoft-365/security/defender/advanced-hunting-query-language?view=o365-21vianet) | modified |
-| 4/22/2021 | [Work with advanced hunting query results in Microsoft 365 Defender](/microsoft-365/security/defender/advanced-hunting-query-results?view=o365-21vianet) | modified |
-| 4/22/2021 | [Use shared queries in Microsoft 365 Defender advanced hunting](/microsoft-365/security/defender/advanced-hunting-shared-queries?view=o365-21vianet) | modified |
-| 4/22/2021 | [Take action on advanced hunting query results in Microsoft 365 Defender](/microsoft-365/security/defender/advanced-hunting-take-action?view=o365-21vianet) | modified |
-| 4/22/2021 | [Create and manage custom detection rules in Microsoft 365 Defender](/microsoft-365/security/defender/custom-detection-rules?view=o365-21vianet) | modified |
-| 4/22/2021 | [Overview of custom detections in Microsoft 365 Defender](/microsoft-365/security/defender/custom-detections-overview?view=o365-21vianet) | modified |
-| 4/22/2021 | [Common identity and device access policies - Microsoft 365 for enterprise \| Microsoft Docs](/microsoft-365/security/office-365-security/identity-access-policies?view=o365-21vianet) | modified |
-| 4/22/2021 | [Prerequisite work for implementing identity and device access policies - Microsoft 365 for enterprise \| Microsoft Docs](/microsoft-365/security/office-365-security/identity-access-prerequisites?view=o365-21vianet) | modified |
-| 4/22/2021 | [Identity and device access configurations - Microsoft 365 for enterprise](/microsoft-365/security/office-365-security/microsoft-365-policies-configurations?view=o365-21vianet) | modified |
-| 4/22/2021 | [Enable Microsoft 365 usage analytics](/microsoft-365/admin/usage-analytics/enable-usage-analytics?view=o365-21vianet) | modified |
-| 4/22/2021 | [Insider risk management Content explorer](/microsoft-365/compliance/insider-risk-management-content-explorer?view=o365-21vianet) | modified |
-| 4/22/2021 | [Sensitive information type entity definitions](/microsoft-365/compliance/sensitive-information-type-entity-definitions?view=o365-21vianet) | modified |
-| 4/22/2021 | [Manage sensitivity labels in Office apps](/microsoft-365/compliance/sensitivity-labels-office-apps?view=o365-21vianet) | modified |
-| 4/22/2021 | [Plan for Microsoft Viva Topics](/microsoft-365/knowledge/plan-topic-experiences) | modified |
-| 4/22/2021 | [Prerequisites for Microsoft Managed Desktop](/microsoft-365/managed-desktop/get-ready/prerequisites?view=o365-21vianet) | modified |
-| 4/22/2021 | [Configure device proxy and Internet connection settings](/microsoft-365/security/defender-endpoint/configure-proxy-internet?view=o365-21vianet) | modified |
-| 4/22/2021 | [Microsoft Defender for Endpoint for non-Windows platforms](/microsoft-365/security/defender-endpoint/non-windows?view=o365-21vianet) | modified |
-| 4/22/2021 | [Analyze users in Microsoft 365 security center](/microsoft-365/security/defender/investigate-users?view=o365-21vianet) | modified |
-| 4/23/2021 | [Create, report on, and delete multiple Content Searches](/microsoft-365/compliance/create-report-on-and-delete-multiple-content-searches?view=o365-21vianet) | modified |
-| 4/23/2021 | [Create and publish sensitivity labels](/microsoft-365/compliance/create-sensitivity-labels?view=o365-21vianet) | modified |
-| 4/23/2021 | [Restrict access to content using sensitivity labels to apply encryption](/microsoft-365/compliance/encryption-sensitivity-labels?view=o365-21vianet) | modified |
-| 4/23/2021 | [Export Content Search results](/microsoft-365/compliance/export-search-results?view=o365-21vianet) | modified |
-| 4/23/2021 | [Get started with sensitivity labels](/microsoft-365/compliance/get-started-with-sensitivity-labels?view=o365-21vianet) | modified |
-| 4/23/2021 | [Set up a connector to import physical badging data](/microsoft-365/compliance/import-physical-badging-data?view=o365-21vianet) | modified |
-| 4/23/2021 | [Investigating partially indexed items in eDiscovery](/microsoft-365/compliance/investigating-partially-indexed-items-in-ediscovery?view=o365-21vianet) | modified |
-| 4/23/2021 | [Partially indexed items in Content Search and other eDiscovery tools](/microsoft-365/compliance/partially-indexed-items-in-content-search?view=o365-21vianet) | modified |
-| 4/23/2021 | [Manage sensitivity labels in Office apps](/microsoft-365/compliance/sensitivity-labels-office-apps?view=o365-21vianet) | modified |
-| 4/23/2021 | [Use Content Search for targeted collections](/microsoft-365/compliance/use-content-search-for-targeted-collections?view=o365-21vianet) | modified |
-| 4/23/2021 | [Set up SharePoint Syntex](/microsoft-365/contentunderstanding/set-up-content-understanding) | modified |
-| 4/23/2021 | [Configure advanced features in Microsoft Defender for Endpoint](/microsoft-365/security/defender-endpoint/advanced-features?view=o365-21vianet) | modified |
-| 4/23/2021 | [Enable attack surface reduction rules](/microsoft-365/security/defender-endpoint/enable-attack-surface-reduction?view=o365-21vianet) | modified |
-| 4/23/2021 | [Manage Microsoft Defender Antivirus updates and apply baselines](/microsoft-365/security/defender-endpoint/manage-updates-baselines-microsoft-defender-antivirus?view=o365-21vianet) | modified |
-| 4/23/2021 | [Troubleshoot performance issues](/microsoft-365/security/defender-endpoint/troubleshoot-performance-issues?view=o365-21vianet) | modified |
-| 4/23/2021 | [Capabilities of Basic Mobility and Security](/microsoft-365/admin/basic-mobility-security/capabilities?view=o365-21vianet) | modified |
-| 4/23/2021 | [What's new in Microsoft 365 compliance](/microsoft-365/compliance/whats-new?view=o365-21vianet) | modified |
-| 4/23/2021 | [Migration phases actions and impacts for the migration from Microsoft Cloud Deutschland)](/microsoft-365/enterprise/ms-cloud-germany-transition-phases?view=o365-21vianet) | modified |
-| 4/23/2021 | [Network connectivity in the Microsoft 365 Admin Center (preview)](/microsoft-365/enterprise/office-365-network-mac-perf-overview?view=o365-21vianet) | modified |
-| 4/23/2021 | [Create indicators for files](/microsoft-365/security/defender-endpoint/indicator-file?view=o365-21vianet) | modified |
-| 4/23/2021 | [What's new in Microsoft Defender for Endpoint on Mac](/microsoft-365/security/defender-endpoint/mac-whatsnew?view=o365-21vianet) | modified |
-| 4/23/2021 | [Safety tips in email messages](/microsoft-365/security/office-365-security/safety-tips-in-office-365?view=o365-21vianet) | modified |
--
-## Week of April 12, 2021
--
-| Published On |Topic title | Change |
-|||--|
-| 4/12/2021 | [Privacy information - Microsoft Defender for Endpoint on iOS](/microsoft-365/security/defender-endpoint/ios-privacy?view=o365-21vianet) | modified |
-| 4/12/2021 | [Communication compliance feature reference](/microsoft-365/compliance/communication-compliance-feature-reference?view=o365-21vianet) | modified |
-| 4/12/2021 | [Create a Litigation Hold](/microsoft-365/compliance/create-a-litigation-hold?view=o365-21vianet) | modified |
-| 4/12/2021 | [Create and configure retention policies to automatically retain or delete content](/microsoft-365/compliance/create-retention-policies?view=o365-21vianet) | modified |
-| 4/12/2021 | [Troubleshoot eDiscovery hold errors](/microsoft-365/compliance/hold-distribution-errors?view=o365-21vianet) | modified |
-| 4/12/2021 | [Learn about retention for Teams](/microsoft-365/compliance/retention-policies-teams?view=o365-21vianet) | modified |
-| 4/12/2021 | [Manage sensitivity labels in Office apps](/microsoft-365/compliance/sensitivity-labels-office-apps?view=o365-21vianet) | modified |
-| 4/12/2021 | [Register new devices yourself](/microsoft-365/managed-desktop/get-started/register-devices-self?view=o365-21vianet) | modified |
-| 4/12/2021 | [Configure Microsoft Defender for Endpoint on Android features](/microsoft-365/security/defender-endpoint/android-configure?view=o365-21vianet) | modified |
-| 4/12/2021 | [Deploy Microsoft Defender for Endpoint for Android with Microsoft Intune](/microsoft-365/security/defender-endpoint/android-intune?view=o365-21vianet) | modified |
-| 4/12/2021 | [Troubleshoot issues on Microsoft Defender for Endpoint on Android](/microsoft-365/security/defender-endpoint/android-support-signin?view=o365-21vianet) | modified |
-| 4/12/2021 | [Microsoft Defender ATP for Android Application license terms](/microsoft-365/security/defender-endpoint/android-terms?view=o365-21vianet) | modified |
-| 4/12/2021 | [Configure alert notifications in Microsoft Defender for Endpoint](/microsoft-365/security/defender-endpoint/configure-email-notifications?view=o365-21vianet) | modified |
-| 4/12/2021 | [Microsoft Defender for Endpoint documentation # < 60 chars](/microsoft-365/security/defender-endpoint/index?view=o365-21vianet) | modified |
-| 4/12/2021 | [App-based deployment for Microsoft Defender ATP for iOS](/microsoft-365/security/defender-endpoint/ios-install?view=o365-21vianet) | modified |
-| 4/12/2021 | [Microsoft Defender ATP for iOS Application license terms](/microsoft-365/security/defender-endpoint/ios-terms?view=o365-21vianet) | modified |
-| 4/12/2021 | [Deploy Microsoft Defender for Endpoint on Linux manually](/microsoft-365/security/defender-endpoint/linux-install-manually?view=o365-21vianet) | modified |
-| 4/12/2021 | [Deploy Microsoft Defender ATP for Linux with Ansible](/microsoft-365/security/defender-endpoint/linux-install-with-ansible?view=o365-21vianet) | modified |
-| 4/12/2021 | [Set preferences for Microsoft Defender ATP for Linux](/microsoft-365/security/defender-endpoint/linux-preferences?view=o365-21vianet) | modified |
-| 4/12/2021 | [Privacy for Microsoft Defender ATP for Linux](/microsoft-365/security/defender-endpoint/linux-privacy?view=o365-21vianet) | modified |
-| 4/12/2021 | [Detect and block potentially unwanted applications with Microsoft Defender ATP for Linux](/microsoft-365/security/defender-endpoint/linux-pua?view=o365-21vianet) | modified |
-| 4/12/2021 | [Microsoft Defender ATP for Linux static proxy discovery](/microsoft-365/security/defender-endpoint/linux-static-proxy-configuration?view=o365-21vianet) | modified |
-| 4/12/2021 | [Troubleshoot missing events or alerts issues for Microsoft Defender ATP for Linux](/microsoft-365/security/defender-endpoint/linux-support-events?view=o365-21vianet) | modified |
-| 4/12/2021 | [Troubleshoot installation issues for Microsoft Defender ATP for Linux](/microsoft-365/security/defender-endpoint/linux-support-install?view=o365-21vianet) | modified |
-| 4/12/2021 | [Troubleshoot performance issues for Microsoft Defender ATP for Linux](/microsoft-365/security/defender-endpoint/linux-support-perf?view=o365-21vianet) | modified |
-| 4/12/2021 | [How to schedule an update of the Microsoft Defender for Endpoint (Linux)](/microsoft-365/security/defender-endpoint/linux-update-mde-linux?view=o365-21vianet) | modified |
-| 4/12/2021 | [What's new in Microsoft Defender for Endpoint on Linux](/microsoft-365/security/defender-endpoint/linux-whatsnew?view=o365-21vianet) | modified |
-| 4/12/2021 | [Live response command examples](/microsoft-365/security/defender-endpoint/live-response-command-examples?view=o365-21vianet) | modified |
-| 4/12/2021 | [Device control for macOS](/microsoft-365/security/defender-endpoint/mac-device-control-overview?view=o365-21vianet) | modified |
-| 4/12/2021 | [Manual deployment for Microsoft Defender for Endpoint on macOS](/microsoft-365/security/defender-endpoint/mac-install-manually?view=o365-21vianet) | modified |
-| 4/12/2021 | [Deploying Microsoft Defender ATP for macOS with Jamf Pro](/microsoft-365/security/defender-endpoint/mac-install-with-jamf?view=o365-21vianet) | modified |
-| 4/12/2021 | [Set up device groups in Jamf Pro](/microsoft-365/security/defender-endpoint/mac-jamfpro-device-groups?view=o365-21vianet) | modified |
-| 4/12/2021 | [What's new in Microsoft Defender for Endpoint on Mac](/microsoft-365/security/defender-endpoint/mac-whatsnew?view=o365-21vianet) | modified |
-| 4/12/2021 | [Microsoft Defender ATP on Android](/microsoft-365/security/defender-endpoint/microsoft-defender-endpoint-android?view=o365-21vianet) | modified |
-| 4/12/2021 | [Microsoft Defender ATP for iOS overview](/microsoft-365/security/defender-endpoint/microsoft-defender-endpoint-ios?view=o365-21vianet) | modified |
-| 4/12/2021 | [Microsoft Defender for Endpoint on Linux](/microsoft-365/security/defender-endpoint/microsoft-defender-endpoint-linux?view=o365-21vianet) | modified |
-| 4/12/2021 | [Microsoft Defender for Endpoint on Mac](/microsoft-365/security/defender-endpoint/microsoft-defender-endpoint-mac?view=o365-21vianet) | modified |
-| 4/12/2021 | [Onboard to the Microsoft Defender for Endpoint service](/microsoft-365/security/defender-endpoint/onboarding?view=o365-21vianet) | modified |
-| 4/12/2021 | [Stream Microsoft Defender for Endpoint events to your Storage account](/microsoft-365/security/defender-endpoint/raw-data-export-storage?view=o365-21vianet) | modified |
-| 4/12/2021 | [Stream Microsoft Defender for Endpoint event](/microsoft-365/security/defender-endpoint/raw-data-export?view=o365-21vianet) | modified |
-| 4/12/2021 | [Take response actions on a device in Microsoft Defender for Endpoint](/microsoft-365/security/defender-endpoint/respond-machine-alerts?view=o365-21vianet) | modified |
-| 4/12/2021 | [Run a detection test on a newly onboarded Microsoft Defender for Endpoint device](/microsoft-365/security/defender-endpoint/run-detection-test?view=o365-21vianet) | modified |
-| 4/12/2021 | [Check the Microsoft Defender for Endpoint service health](/microsoft-365/security/defender-endpoint/service-status?view=o365-21vianet) | modified |
-| 4/12/2021 | [Switch to Microsoft Defender for Endpoint - Onboard](/microsoft-365/security/defender-endpoint/switch-to-microsoft-defender-onboard?view=o365-21vianet) | modified |
-| 4/12/2021 | [Track and respond to emerging threats with Microsoft Defender for Endpoint threat analytics](/microsoft-365/security/defender-endpoint/threat-analytics?view=o365-21vianet) | modified |
-| 4/12/2021 | [Threat protection report in Microsoft Defender for Endpoint](/microsoft-365/security/defender-endpoint/threat-protection-reports?view=o365-21vianet) | modified |
-| 4/12/2021 | [Troubleshoot Microsoft Defender for Endpoint live response issues](/microsoft-365/security/defender-endpoint/troubleshoot-live-response?view=o365-21vianet) | modified |
-| 4/12/2021 | [Troubleshoot Microsoft Defender for Endpoint onboarding issues](/microsoft-365/security/defender-endpoint/troubleshoot-onboarding?view=o365-21vianet) | modified |
-| 4/12/2021 | [Troubleshoot SIEM tool integration issues in Microsoft Defender for Endpoint](/microsoft-365/security/defender-endpoint/troubleshoot-siem?view=o365-21vianet) | modified |
-| 4/12/2021 | [Assign device value - threat and vulnerability management](/microsoft-365/security/defender-endpoint/tvm-assign-device-value?view=o365-21vianet) | modified |
-| 4/12/2021 | [Create and view exceptions for security recommendations - threat and vulnerability management](/microsoft-365/security/defender-endpoint/tvm-exception?view=o365-21vianet) | modified |
-| 4/12/2021 | [Remediate vulnerabilities with threat and vulnerability management](/microsoft-365/security/defender-endpoint/tvm-remediation?view=o365-21vianet) | modified |
-| 4/12/2021 | [Software inventory in threat and vulnerability management](/microsoft-365/security/defender-endpoint/tvm-software-inventory?view=o365-21vianet) | modified |
-| 4/12/2021 | [Vulnerabilities in my organization - threat and vulnerability management](/microsoft-365/security/defender-endpoint/tvm-weaknesses?view=o365-21vianet) | modified |
-| 4/12/2021 | [Update alert entity API](/microsoft-365/security/defender-endpoint/update-alert?view=o365-21vianet) | modified |
-| 4/12/2021 | [Web content filtering](/microsoft-365/security/defender-endpoint/web-content-filtering?view=o365-21vianet) | modified |
-| 4/12/2021 | [Monitoring web browsing security in Microsoft Defender for Endpoint](/microsoft-365/security/defender-endpoint/web-protection-monitoring?view=o365-21vianet) | modified |
-| 4/12/2021 | [Web protection](/microsoft-365/security/defender-endpoint/web-protection-overview?view=o365-21vianet) | modified |
-| 4/12/2021 | [Respond to web threats in Microsoft Defender for Endpoint](/microsoft-365/security/defender-endpoint/web-protection-response?view=o365-21vianet) | modified |
-| 4/12/2021 | [Protect your organization against web threats](/microsoft-365/security/defender-endpoint/web-threat-protection?view=o365-21vianet) | modified |
-| 4/12/2021 | [What's new in Microsoft Defender for Endpoint](/microsoft-365/security/defender-endpoint/whats-new-in-microsoft-defender-atp?view=o365-21vianet) | modified |
-| 4/12/2021 | [Anti-spam message headers](/microsoft-365/security/office-365-security/anti-spam-message-headers?view=o365-21vianet) | modified |
-| 4/12/2021 | [Order and precedence of email protection](/microsoft-365/security/office-365-security/how-policies-and-protections-are-combined?view=o365-21vianet) | modified |
-| 4/12/2021 | [Understand device profiles](/microsoft-365/managed-desktop/service-description/profiles?view=o365-21vianet) | added |
-| 4/12/2021 | [Reassign device profiles](/microsoft-365/managed-desktop/working-with-managed-desktop/change-device-profile?view=o365-21vianet) | added |
-| 4/12/2021 | [Steps for Partners to register devices](/microsoft-365/managed-desktop/get-started/register-devices-partner?view=o365-21vianet) | modified |
-| 4/12/2021 | [Register existing devices yourself](/microsoft-365/managed-desktop/get-started/register-reused-devices-self?view=o365-21vianet) | modified |
-| 4/12/2021 | [Deploy Microsoft Defender for Endpoint on Android with Microsoft Intune](/microsoft-365/security/defender-endpoint/android-intune?view=o365-21vianet) | modified |
-| 4/12/2021 | [Microsoft Defender ATP for Android - Privacy information](/microsoft-365/security/defender-endpoint/android-privacy?view=o365-21vianet) | modified |
-| 4/12/2021 | [Onboard non-Windows devices to the Microsoft Defender for Endpoint service](/microsoft-365/security/defender-endpoint/configure-endpoints-non-windows?view=o365-21vianet) | modified |
-| 4/12/2021 | [Enable attack surface reduction rules](/microsoft-365/security/defender-endpoint/enable-attack-surface-reduction?view=o365-21vianet) | modified |
-| 4/12/2021 | [Configure Microsoft Defender for Endpoint on iOS features](/microsoft-365/security/defender-endpoint/ios-configure-features?view=o365-21vianet) | modified |
-| 4/12/2021 | [What's new in Microsoft Defender for Endpoint on iOS](/microsoft-365/security/defender-endpoint/ios-whatsnew?view=o365-21vianet) | modified |
-| 4/12/2021 | [Configure and validate exclusions for Microsoft Defender ATP for Linux](/microsoft-365/security/defender-endpoint/linux-exclusions?view=o365-21vianet) | modified |
-| 4/12/2021 | [Deploy Microsoft Defender ATP for Linux with Puppet](/microsoft-365/security/defender-endpoint/linux-install-with-puppet?view=o365-21vianet) | modified |
-| 4/12/2021 | [Troubleshoot cloud connectivity issues for Microsoft Defender ATP for Linux](/microsoft-365/security/defender-endpoint/linux-support-connectivity?view=o365-21vianet) | modified |
-| 4/12/2021 | [Deploy updates for Microsoft Defender ATP for Linux](/microsoft-365/security/defender-endpoint/linux-updates?view=o365-21vianet) | modified |
-| 4/12/2021 | [Configure and validate exclusions for Microsoft Defender ATP for Mac](/microsoft-365/security/defender-endpoint/mac-exclusions?view=o365-21vianet) | modified |
-| 4/12/2021 | [Intune-based deployment for Microsoft Defender for Endpoint on macOS](/microsoft-365/security/defender-endpoint/mac-install-with-intune?view=o365-21vianet) | modified |
-| 4/12/2021 | [Deployment with a different Mobile Device Management (MDM) system for Microsoft Defender ATP for Mac](/microsoft-365/security/defender-endpoint/mac-install-with-other-mdm?view=o365-21vianet) | modified |
-| 4/12/2021 | [Enroll Microsoft Defender ATP for macOS devices into Jamf Pro](/microsoft-365/security/defender-endpoint/mac-jamfpro-enroll-devices?view=o365-21vianet) | modified |
-| 4/12/2021 | [Set up the Microsoft Defender ATP for macOS policies in Jamf Pro](/microsoft-365/security/defender-endpoint/mac-jamfpro-policies?view=o365-21vianet) | modified |
-| 4/12/2021 | [Set preferences for Microsoft Defender ATP for Mac](/microsoft-365/security/defender-endpoint/mac-preferences?view=o365-21vianet) | modified |
-| 4/12/2021 | [Privacy for Microsoft Defender ATP for Mac](/microsoft-365/security/defender-endpoint/mac-privacy?view=o365-21vianet) | modified |
-| 4/12/2021 | [Detect and block potentially unwanted applications with Microsoft Defender ATP for Mac](/microsoft-365/security/defender-endpoint/mac-pua?view=o365-21vianet) | modified |
-| 4/12/2021 | [Resources for Microsoft Defender ATP for Mac](/microsoft-365/security/defender-endpoint/mac-resources?view=o365-21vianet) | modified |
-| 4/12/2021 | [How to schedule scans with MDATP for macOS](/microsoft-365/security/defender-endpoint/mac-schedule-scan?view=o365-21vianet) | modified |
-| 4/12/2021 | [Troubleshoot installation issues for Microsoft Defender ATP for Mac](/microsoft-365/security/defender-endpoint/mac-support-install?view=o365-21vianet) | modified |
-| 4/12/2021 | [Troubleshoot kernel extension issues in Microsoft Defender for Endpoint on macOS](/microsoft-365/security/defender-endpoint/mac-support-kext?view=o365-21vianet) | modified |
-| 4/12/2021 | [Troubleshoot license issues for Microsoft Defender ATP for Mac](/microsoft-365/security/defender-endpoint/mac-support-license?view=o365-21vianet) | modified |
-| 4/12/2021 | [Troubleshoot performance issues for Microsoft Defender for Endpoint on macOS](/microsoft-365/security/defender-endpoint/mac-support-perf?view=o365-21vianet) | modified |
-| 4/12/2021 | [New configuration profiles for macOS Catalina and newer versions of macOS](/microsoft-365/security/defender-endpoint/mac-sysext-policies?view=o365-21vianet) | modified |
-| 4/12/2021 | [Microsoft Defender ATP for Mac - system extensions (Preview)](/microsoft-365/security/defender-endpoint/mac-sysext-preview?view=o365-21vianet) | modified |
-| 4/12/2021 | [Deploy updates for Microsoft Defender ATP for Mac](/microsoft-365/security/defender-endpoint/mac-updates?view=o365-21vianet) | modified |
-| 4/12/2021 | [Manage Microsoft Defender Antivirus updates and apply baselines](/microsoft-365/security/defender-endpoint/manage-updates-baselines-microsoft-defender-antivirus?view=o365-21vianet) | modified |
-| 4/12/2021 | [McAfee to Microsoft Defender for Endpoint - Prepare](/microsoft-365/security/defender-endpoint/mcafee-to-microsoft-defender-prepare?view=o365-21vianet) | modified |
-| 4/12/2021 | [Minimum requirements for Microsoft Defender for Endpoint](/microsoft-365/security/defender-endpoint/minimum-requirements?view=o365-21vianet) | modified |
-| 4/12/2021 | [Use network protection to help prevent connections to bad sites](/microsoft-365/security/defender-endpoint/network-protection?view=o365-21vianet) | modified |
-| 4/12/2021 | [Microsoft Defender ATP for non-Windows platforms](/microsoft-365/security/defender-endpoint/non-windows?view=o365-21vianet) | modified |
-| 4/12/2021 | [Switch to Microsoft Defender for Endpoint - Prepare](/microsoft-365/security/defender-endpoint/switch-to-microsoft-defender-prepare?view=o365-21vianet) | modified |
-| 4/12/2021 | [Symantec to Microsoft Defender for Endpoint - Phase 3, Onboarding](/microsoft-365/security/defender-endpoint/symantec-to-microsoft-defender-atp-onboard?view=o365-21vianet) | modified |
-| 4/12/2021 | [Symantec to Microsoft Defender for Endpoint - Phase 1, Preparing](/microsoft-365/security/defender-endpoint/symantec-to-microsoft-defender-atp-prepare?view=o365-21vianet) | modified |
-| 4/12/2021 | [Troubleshoot cloud connectivity issues for Microsoft Defender for Endpoint on macOS](/microsoft-365/security/defender-endpoint/troubleshoot-cloud-connect-mdemac?view=o365-21vianet) | modified |
-| 4/12/2021 | [Use attack surface reduction rules to prevent malware infection](/microsoft-365/security/defender-endpoint/attack-surface-reduction?view=o365-21vianet) | modified |
-| 4/12/2021 | [Configure device discovery](/microsoft-365/security/defender-endpoint/configure-device-discovery?view=o365-21vianet) | added |
-| 4/12/2021 | [Device discovery frequently asked questions](/microsoft-365/security/defender-endpoint/device-discovery-faq?view=o365-21vianet) | added |
-| 4/12/2021 | [Device discovery overview](/microsoft-365/security/defender-endpoint/device-discovery?view=o365-21vianet) | added |
-| 4/12/2021 | [Microsoft Defender ATP preview features](/microsoft-365/security/defender-endpoint/preview?view=o365-21vianet) | modified |
-| 4/13/2021 | [New alert policies in Microsoft Defender for Office 365](/microsoft-365/compliance/new-defender-alert-policies?view=o365-21vianet) | added |
-| 4/13/2021 | [Manage partner relationships](/microsoft-365/commerce/manage-partners?view=o365-21vianet) | modified |
-| 4/13/2021 | [Create a Litigation Hold](/microsoft-365/compliance/create-a-litigation-hold?view=o365-21vianet) | modified |
-| 4/13/2021 | [Decryption in eDiscovery](/microsoft-365/compliance/ediscovery-decryption?view=o365-21vianet) | modified |
-| 4/13/2021 | [Troubleshoot cloud connectivity issues for Microsoft Defender for Endpoint on macOS](/microsoft-365/security/defender-endpoint/troubleshoot-cloud-connect-mdemac?view=o365-21vianet) | modified |
-| 4/13/2021 | [Configure Microsoft Defender Antivirus with Group Policy](/microsoft-365/security/defender-endpoint/use-group-policy-microsoft-defender-antivirus?view=o365-21vianet) | modified |
-| 4/13/2021 | [Configure Microsoft Defender Antivirus with Configuration Manager and Intune](/microsoft-365/security/defender-endpoint/use-intune-config-manager-microsoft-defender-antivirus?view=o365-21vianet) | modified |
-| 4/13/2021 | [Use PowerShell cmdlets to configure and run Microsoft Defender AV](/microsoft-365/security/defender-endpoint/use-powershell-cmdlets-microsoft-defender-antivirus?view=o365-21vianet) | modified |
-| 4/13/2021 | [Configure Microsoft Defender Antivirus with WMI](/microsoft-365/security/defender-endpoint/use-wmi-microsoft-defender-antivirus?view=o365-21vianet) | modified |
-| 4/13/2021 | [CloudAppEvents table in the advanced hunting schema](/microsoft-365/security/defender/advanced-hunting-cloudappevents-table?view=o365-21vianet) | modified |
-| 4/13/2021 | [Get started with Microsoft 365 Defender](/microsoft-365/security/defender/get-started?view=o365-21vianet) | modified |
-| 4/13/2021 | [Investigate alerts in Microsoft 365 Defender](/microsoft-365/security/defender/investigate-alerts?view=o365-21vianet) | modified |
-| 4/13/2021 | [Investigate users in Microsoft 365 security center](/microsoft-365/security/defender/investigate-users?view=o365-21vianet) | modified |
-| 4/13/2021 | [Microsoft Defender for Endpoint in the Microsoft 365 security center](/microsoft-365/security/defender/microsoft-365-security-center-mde?view=o365-21vianet) | modified |
-| 4/13/2021 | [Microsoft Defender for Office 365 in the Microsoft 365 security center](/microsoft-365/security/defender/microsoft-365-security-center-mdo?view=o365-21vianet) | modified |
-| 4/13/2021 | [Redirecting accounts from Microsoft Defender for Endpoint to the Microsoft 365 security center](/microsoft-365/security/defender/microsoft-365-security-mde-redirection?view=o365-21vianet) | modified |
-| 4/13/2021 | [Microsoft 365 security center overview](/microsoft-365/security/defender/overview-security-center?view=o365-21vianet) | modified |
-| 4/13/2021 | [Get started with the data loss prevention alert dashboard](/microsoft-365/compliance/dlp-alerts-dashboard-get-started?view=o365-21vianet) | added |
-| 4/13/2021 | [Learn about the data loss prevention Alerts dashboard](/microsoft-365/compliance/dlp-alerts-dashboard-learn?view=o365-21vianet) | added |
-| 4/13/2021 | [Configure and view alerts for data loss prevention policies](/microsoft-365/compliance/dlp-configure-view-alerts-policies?view=o365-21vianet) | modified |
-| 4/13/2021 | [Configure the delivery of third-party phishing simulations to users and unfiltered messages to SecOps mailboxes](/microsoft-365/security/office-365-security/configure-advanced-delivery?view=o365-21vianet) | added |
-| 4/13/2021 | [About admin roles in the Microsoft 365 admin center](/microsoft-365/admin/add-users/about-admin-roles?view=o365-21vianet) | modified |
-| 4/13/2021 | [Add users and assign licenses](/microsoft-365/admin/add-users/add-users?view=o365-21vianet) | modified |
-| 4/13/2021 | [About admin roles](/microsoft-365/admin/add-users/admin-roles-page?view=o365-21vianet) | modified |
-| 4/13/2021 | [Azure Active Directory roles in the Microsoft 365 admin center](/microsoft-365/admin/add-users/azure-ad-roles-in-the-mac?view=o365-21vianet) | modified |
-| 4/13/2021 | [Create, edit, or delete a custom user view](/microsoft-365/admin/add-users/create-edit-or-delete-a-custom-user-view?view=o365-21vianet) | modified |
-| 4/13/2021 | [Delete a user from your organization](/microsoft-365/admin/add-users/delete-a-user?view=o365-21vianet) | modified |
-| 4/13/2021 | [Get access to and back up a former user's data](/microsoft-365/admin/add-users/get-access-to-and-back-up-a-former-user-s-data?view=o365-21vianet) | modified |
-| 4/13/2021 | [About Intune admin roles in the Microsoft 365 admin center](/microsoft-365/admin/add-users/intune-admin-roles-in-the-mac?view=o365-21vianet) | modified |
-| 4/13/2021 | [Get started with Microsoft 365 for business](/microsoft-365/admin/admin-overview/get-started-with-office-365?view=o365-21vianet) | modified |
-| 4/13/2021 | [Export a Content Search report](/microsoft-365/compliance/export-a-content-search-report?view=o365-21vianet) | modified |
-| 4/13/2021 | [Export Content Search results](/microsoft-365/compliance/export-search-results?view=o365-21vianet) | modified |
-| 4/13/2021 | [Message Encryption (OME) version comparison](/microsoft-365/compliance/ome-version-comparison?view=o365-21vianet) | modified |
-| 4/13/2021 | [Office 365 endpoints for Germany](/microsoft-365/enterprise/microsoft-365-germany-endpoints?view=o365-21vianet) | modified |
-| 4/13/2021 | [Pre-migration activities for the migration from Microsoft Cloud Deutschland](/microsoft-365/enterprise/ms-cloud-germany-transition-add-pre-work?view=o365-21vianet) | modified |
-| 4/13/2021 | [Migration phases actions and impacts for the migration from Microsoft Cloud Deutschland)](/microsoft-365/enterprise/ms-cloud-germany-transition-phases?view=o365-21vianet) | modified |
-| 4/13/2021 | [Microsoft 365 data locations](/microsoft-365/enterprise/o365-data-locations?view=o365-21vianet) | modified |
-| 4/13/2021 | [Manage topics in the topic center in Microsoft Viva Topics](/microsoft-365/knowledge/manage-topics) | modified |
-| 4/13/2021 | [Topic center overview in Microsoft Viva Topics](/microsoft-365/knowledge/topic-center-overview) | modified |
-| 4/13/2021 | [Onboard Windows 10 multi-session devices in Windows Virtual Desktop](/microsoft-365/security/defender-endpoint/onboard-windows-10-multi-session-device?view=o365-21vianet) | modified |
-| 4/13/2021 | [Onboarding tools and methods for Windows 10 devices](/microsoft-365/security/defender-endpoint/configure-endpoints?view=o365-21vianet) | modified |
-| 4/13/2021 | [Address false positives/negatives in Microsoft Defender for Endpoint](/microsoft-365/security/defender-endpoint/defender-endpoint-false-positives-negatives?view=o365-21vianet) | modified |
-| 4/13/2021 | [Investigate entities on devices using live response in Microsoft Defender ATP](/microsoft-365/security/defender-endpoint/live-response?view=o365-21vianet) | modified |
-| 4/13/2021 | [Migrating from a third-party HIPS to ASR rules](/microsoft-365/security/defender-endpoint/migrating-asr-rules?view=o365-21vianet) | modified |
-| 4/13/2021 | [Troubleshoot problems with Network protection](/microsoft-365/security/defender-endpoint/troubleshoot-np?view=o365-21vianet) | modified |
-| 4/13/2021 | [Troubleshoot Microsoft Defender for Endpoint onboarding issues](/microsoft-365/security/defender-endpoint/troubleshoot-onboarding?view=o365-21vianet) | modified |
-| 4/13/2021 | [Get relevant info about an entity with go hunt](/microsoft-365/security/defender/advanced-hunting-go-hunt?view=o365-21vianet) | modified |
-| 4/13/2021 | [Prioritize incidents in Microsoft 365 Defender](/microsoft-365/security/defender/incident-queue?view=o365-21vianet) | modified |
-| 4/13/2021 | [Incidents in Microsoft 365 Defender](/microsoft-365/security/defender/incidents-overview?view=o365-21vianet) | modified |
-| 4/13/2021 | [Investigate incidents in Microsoft 365 Defender](/microsoft-365/security/defender/investigate-incidents?view=o365-21vianet) | modified |
-| 4/13/2021 | [Manage incidents in Microsoft 365 Defender](/microsoft-365/security/defender/manage-incidents?view=o365-21vianet) | modified |
-| 4/13/2021 | [Microsoft Defender for Office 365 documentation # < 60 chars](/microsoft-365/security/office-365-security/index?view=o365-21vianet) | modified |
-| 4/13/2021 | [Set up a connector to archive Cisco Jabber on Oracle data in Microsoft 365](/microsoft-365/compliance/archive-ciscojabberonoracle-data?view=o365-21vianet) | added |
-| 4/13/2021 | [Set up a connector to archive Cisco Jabber on PostgreSQL data in Microsoft 365](/microsoft-365/compliance/archive-ciscojabberonpostgresql-data?view=o365-21vianet) | added |
-| 4/13/2021 | [Archive third-party data](/microsoft-365/compliance/archiving-third-party-data?view=o365-21vianet) | modified |
-| 4/13/2021 | [Cloud-delivered protection and Microsoft Defender Antivirus](/microsoft-365/security/defender-endpoint/cloud-protection-microsoft-defender-antivirus?view=o365-21vianet) | modified |
-| 4/13/2021 | [Collect diagnostic data for Update Compliance and Windows Defender Microsoft Defender Antivirus](/microsoft-365/security/defender-endpoint/collect-diagnostic-data-update-compliance?view=o365-21vianet) | modified |
-| 4/13/2021 | [Collect diagnostic data of Microsoft Defender Antivirus](/microsoft-365/security/defender-endpoint/collect-diagnostic-data?view=o365-21vianet) | modified |
-| 4/13/2021 | [Use the command line to manage Microsoft Defender Antivirus](/microsoft-365/security/defender-endpoint/command-line-arguments-microsoft-defender-antivirus?view=o365-21vianet) | modified |
-| 4/13/2021 | [Common mistakes to avoid when defining exclusions](/microsoft-365/security/defender-endpoint/common-exclusion-mistakes-microsoft-defender-antivirus?view=o365-21vianet) | modified |
-| 4/13/2021 | [Manage Windows Defender in your business](/microsoft-365/security/defender-endpoint/configuration-management-reference-microsoft-defender-antivirus?view=o365-21vianet) | modified |
-| 4/13/2021 | [Configure scanning options for Microsoft Defender AV](/microsoft-365/security/defender-endpoint/configure-advanced-scan-types-microsoft-defender-antivirus?view=o365-21vianet) | modified |
-| 4/13/2021 | [Enable block at first sight to detect malware in seconds](/microsoft-365/security/defender-endpoint/configure-block-at-first-sight-microsoft-defender-antivirus?view=o365-21vianet) | modified |
-| 4/13/2021 | [Configure the Microsoft Defender Antivirus cloud block timeout period](/microsoft-365/security/defender-endpoint/configure-cloud-block-timeout-period-microsoft-defender-antivirus?view=o365-21vianet) | modified |
-| 4/13/2021 | [Configure device discovery](/microsoft-365/security/defender-endpoint/configure-device-discovery?view=o365-21vianet) | modified |
-| 4/13/2021 | [Configure how users can interact with Microsoft Defender AV](/microsoft-365/security/defender-endpoint/configure-end-user-interaction-microsoft-defender-antivirus?view=o365-21vianet) | modified |
-| 4/13/2021 | [Set up exclusions for Microsoft Defender Antivirus scans](/microsoft-365/security/defender-endpoint/configure-exclusions-microsoft-defender-antivirus?view=o365-21vianet) | modified |
-| 4/13/2021 | [Configure and validate exclusions based on extension, name, or location](/microsoft-365/security/defender-endpoint/configure-extension-file-exclusions-microsoft-defender-antivirus?view=o365-21vianet) | modified |
-| 4/13/2021 | [Configure local overrides for Microsoft Defender AV settings](/microsoft-365/security/defender-endpoint/configure-local-policy-overrides-microsoft-defender-antivirus?view=o365-21vianet) | modified |
-| 4/13/2021 | [Configure Microsoft Defender Antivirus features](/microsoft-365/security/defender-endpoint/configure-microsoft-defender-antivirus-features?view=o365-21vianet) | modified |
-| 4/13/2021 | [Configure and validate Microsoft Defender Antivirus network connections](/microsoft-365/security/defender-endpoint/configure-network-connections-microsoft-defender-antivirus?view=o365-21vianet) | modified |
-| 4/13/2021 | [Configure Microsoft Defender Antivirus notifications](/microsoft-365/security/defender-endpoint/configure-notifications-microsoft-defender-antivirus?view=o365-21vianet) | modified |
-| 4/13/2021 | [Configure exclusions for files opened by specific processes](/microsoft-365/security/defender-endpoint/configure-process-opened-file-exclusions-microsoft-defender-antivirus?view=o365-21vianet) | modified |
-| 4/13/2021 | [Enable and configure Microsoft Defender Antivirus protection features](/microsoft-365/security/defender-endpoint/configure-protection-features-microsoft-defender-antivirus?view=o365-21vianet) | modified |
-| 4/13/2021 | [Enable and configure Microsoft Defender Antivirus protection capabilities](/microsoft-365/security/defender-endpoint/configure-real-time-protection-microsoft-defender-antivirus?view=o365-21vianet) | modified |
-| 4/13/2021 | [Configure remediation for Microsoft Defender Antivirus detections](/microsoft-365/security/defender-endpoint/configure-remediation-microsoft-defender-antivirus?view=o365-21vianet) | modified |
-| 4/13/2021 | [Configure Microsoft Defender Antivirus exclusions on Windows Server](/microsoft-365/security/defender-endpoint/configure-server-exclusions-microsoft-defender-antivirus?view=o365-21vianet) | modified |
-| 4/13/2021 | [Run and customize scheduled and on-demand scans](/microsoft-365/security/defender-endpoint/customize-run-review-remediate-scans-microsoft-defender-antivirus?view=o365-21vianet) | modified |
-| 4/13/2021 | [Run and customize scheduled and on-demand scans](/microsoft-365/security/defender-endpoint/customize-run-review-remediate-scans-windows-defender-antivirus?view=o365-21vianet) | modified |
-| 4/13/2021 | [Deploy, manage, and report on Microsoft Defender Antivirus](/microsoft-365/security/defender-endpoint/deploy-manage-report-microsoft-defender-antivirus?view=o365-21vianet) | modified |
-| 4/13/2021 | [Deploy and enable Microsoft Defender Antivirus](/microsoft-365/security/defender-endpoint/deploy-microsoft-defender-antivirus?view=o365-21vianet) | modified |
-| 4/13/2021 | [Microsoft Defender Antivirus Virtual Desktop Infrastructure deployment guide](/microsoft-365/security/defender-endpoint/deployment-vdi-microsoft-defender-antivirus?view=o365-21vianet) | modified |
-| 4/13/2021 | [Block potentially unwanted applications with Microsoft Defender Antivirus](/microsoft-365/security/defender-endpoint/detect-block-potentially-unwanted-apps-microsoft-defender-antivirus?view=o365-21vianet) | modified |
-| 4/13/2021 | [Device discovery frequently asked questions](/microsoft-365/security/defender-endpoint/device-discovery-faq?view=o365-21vianet) | modified |
-| 4/13/2021 | [Device discovery overview](/microsoft-365/security/defender-endpoint/device-discovery?view=o365-21vianet) | modified |
-| 4/13/2021 | [Turn on cloud-delivered protection in Microsoft Defender Antivirus](/microsoft-365/security/defender-endpoint/enable-cloud-protection-microsoft-defender-antivirus?view=o365-21vianet) | modified |
-| 4/13/2021 | [Evaluate Microsoft Defender Antivirus](/microsoft-365/security/defender-endpoint/evaluate-microsoft-defender-antivirus?view=o365-21vianet) | modified |
-| 4/13/2021 | [What's new in Microsoft Defender for Endpoint on iOS](/microsoft-365/security/defender-endpoint/ios-whatsnew?view=o365-21vianet) | modified |
-| 4/13/2021 | [Enable the limited periodic Microsoft Defender Antivirus scanning feature](/microsoft-365/security/defender-endpoint/limited-periodic-scanning-microsoft-defender-antivirus?view=o365-21vianet) | modified |
-| 4/13/2021 | [Apply Microsoft Defender Antivirus updates after certain events](/microsoft-365/security/defender-endpoint/manage-event-based-updates-microsoft-defender-antivirus?view=o365-21vianet) | modified |
-| 4/13/2021 | [Apply Microsoft Defender AV protection updates to out of date endpoints](/microsoft-365/security/defender-endpoint/manage-outdated-endpoints-microsoft-defender-antivirus?view=o365-21vianet) | modified |
-| 4/13/2021 | [Schedule Microsoft Defender Antivirus protection updates](/microsoft-365/security/defender-endpoint/manage-protection-update-schedule-microsoft-defender-antivirus?view=o365-21vianet) | modified |
-| 4/13/2021 | [Manage how and where Microsoft Defender Antivirus receives updates](/microsoft-365/security/defender-endpoint/manage-protection-updates-microsoft-defender-antivirus?view=o365-21vianet) | modified |
-| 4/13/2021 | [Manage Microsoft Defender Antivirus updates and apply baselines](/microsoft-365/security/defender-endpoint/manage-updates-baselines-microsoft-defender-antivirus?view=o365-21vianet) | modified |
-| 4/13/2021 | [Define how mobile devices are updated by Microsoft Defender Antivirus](/microsoft-365/security/defender-endpoint/manage-updates-mobile-devices-vms-microsoft-defender-antivirus?view=o365-21vianet) | modified |
-| 4/13/2021 | [Microsoft Defender Antivirus compatibility with other security products](/microsoft-365/security/defender-endpoint/microsoft-defender-antivirus-compatibility?view=o365-21vianet) | modified |
-| 4/13/2021 | [Next-generation protection](/microsoft-365/security/defender-endpoint/microsoft-defender-antivirus-in-windows-10?view=o365-21vianet) | modified |
-| 4/13/2021 | [Microsoft Defender Antivirus on Windows Server](/microsoft-365/security/defender-endpoint/microsoft-defender-antivirus-on-windows-server?view=o365-21vianet) | modified |
-| 4/13/2021 | [Microsoft Defender Offline in Windows 10](/microsoft-365/security/defender-endpoint/microsoft-defender-offline?view=o365-21vianet) | modified |
-| 4/13/2021 | [Microsoft Defender Antivirus in the Windows Security app](/microsoft-365/security/defender-endpoint/microsoft-defender-security-center-antivirus?view=o365-21vianet) | modified |
-| 4/13/2021 | [Better together - Microsoft Defender Antivirus and Office 365 (including OneDrive) - better protection from ransomware and cyberthreats](/microsoft-365/security/defender-endpoint/office-365-microsoft-defender-antivirus?view=o365-21vianet) | modified |
-| 4/13/2021 | [Protect security settings with tamper protection](/microsoft-365/security/defender-endpoint/prevent-changes-to-security-settings-with-tamper-protection?view=o365-21vianet) | modified |
-| 4/13/2021 | [Hide the Microsoft Defender Antivirus interface](/microsoft-365/security/defender-endpoint/prevent-end-user-interaction-microsoft-defender-antivirus?view=o365-21vianet) | modified |
-| 4/13/2021 | [Monitor and report on Microsoft Defender Antivirus protection](/microsoft-365/security/defender-endpoint/report-monitor-microsoft-defender-antivirus?view=o365-21vianet) | modified |
-| 4/13/2021 | [Restore quarantined files in Microsoft Defender AV](/microsoft-365/security/defender-endpoint/restore-quarantined-files-microsoft-defender-antivirus?view=o365-21vianet) | modified |
-| 4/13/2021 | [Review the results of Microsoft Defender AV scans](/microsoft-365/security/defender-endpoint/review-scan-results-microsoft-defender-antivirus?view=o365-21vianet) | modified |
-| 4/13/2021 | [Run and customize on-demand scans in Microsoft Defender AV](/microsoft-365/security/defender-endpoint/run-scan-microsoft-defender-antivirus?view=o365-21vianet) | modified |
-| 4/13/2021 | [Schedule regular quick and full scans with Microsoft Defender Antivirus](/microsoft-365/security/defender-endpoint/scheduled-catch-up-scans-microsoft-defender-antivirus?view=o365-21vianet) | modified |
-| 4/13/2021 | [Specify the cloud-delivered protection level for Microsoft Defender Antivirus](/microsoft-365/security/defender-endpoint/specify-cloud-protection-level-microsoft-defender-antivirus?view=o365-21vianet) | modified |
-| 4/13/2021 | [Integrate Microsoft Defender for Endpoint with other Microsoft solutions](/microsoft-365/security/defender-endpoint/threat-protection-integration?view=o365-21vianet) | modified |
-| 4/13/2021 | [Troubleshoot Microsoft Defender Antivirus while migrating from a third-party solution](/microsoft-365/security/defender-endpoint/troubleshoot-microsoft-defender-antivirus-when-migrating?view=o365-21vianet) | modified |
-| 4/13/2021 | [Microsoft Defender AV event IDs and error codes](/microsoft-365/security/defender-endpoint/troubleshoot-microsoft-defender-antivirus?view=o365-21vianet) | modified |
-| 4/13/2021 | [Troubleshoot problems with reporting tools for Microsoft Defender AV](/microsoft-365/security/defender-endpoint/troubleshoot-reporting?view=o365-21vianet) | modified |
-| 4/13/2021 | [Why you should use Microsoft Defender Antivirus together with Microsoft Defender for Endpoint](/microsoft-365/security/defender-endpoint/why-use-microsoft-defender-antivirus?view=o365-21vianet) | modified |
-| 4/13/2021 | [Configure and manage Microsoft Threat Experts capabilities through Microsoft 365 Defender](/microsoft-365/security/mtp/configure-microsoft-threat-experts?view=o365-21vianet) | modified |
-| 4/13/2021 | [Microsoft Threat Experts in Microsoft 365 Defender overview](/microsoft-365/security/mtp/microsoft-threat-experts?view=o365-21vianet) | modified |
-| 4/14/2021 | [Enable co-authoring for documents encrypted by sensitivity labels in Microsoft 365](/microsoft-365/compliance/sensitivity-labels-coauthoring?view=o365-21vianet) | modified |
-| 4/14/2021 | [Device discovery frequently asked questions](/microsoft-365/security/defender-endpoint/device-discovery-faq?view=o365-21vianet) | modified |
-| 4/14/2021 | [Configure and validate exclusions for Microsoft Defender ATP for Mac](/microsoft-365/security/defender-endpoint/mac-exclusions?view=o365-21vianet) | modified |
-| 4/14/2021 | [Intune-based deployment for Microsoft Defender for Endpoint on macOS](/microsoft-365/security/defender-endpoint/mac-install-with-intune?view=o365-21vianet) | modified |
-| 4/14/2021 | [Deployment with a different Mobile Device Management (MDM) system for Microsoft Defender ATP for Mac](/microsoft-365/security/defender-endpoint/mac-install-with-other-mdm?view=o365-21vianet) | modified |
-| 4/14/2021 | [Set up the Microsoft Defender ATP for macOS policies in Jamf Pro](/microsoft-365/security/defender-endpoint/mac-jamfpro-policies?view=o365-21vianet) | modified |
-| 4/14/2021 | [Privacy for Microsoft Defender ATP for Mac](/microsoft-365/security/defender-endpoint/mac-privacy?view=o365-21vianet) | modified |
-| 4/14/2021 | [Turn on Microsoft 365 Defender in the Microsoft 365 security center](/microsoft-365/security/defender/m365d-enable?view=o365-21vianet) | modified |
-| 4/14/2021 | [What's new in the Microsoft 365 admin center?](/microsoft-365/admin/whats-new-in-preview?view=o365-21vianet) | modified |
-| 4/14/2021 | [Network connectivity in the Microsoft 365 Admin Center (preview)](/microsoft-365/enterprise/office-365-network-mac-perf-overview?view=o365-21vianet) | modified |
-| 4/14/2021 | [Manage topic discovery in Microsoft Viva Topics](/microsoft-365/knowledge/topic-experiences-discovery) | modified |
-| 4/14/2021 | [Device requirements](/microsoft-365/managed-desktop/service-description/device-requirements?view=o365-21vianet) | modified |
-| 4/14/2021 | [Onboard Windows servers to the Microsoft Defender for Endpoint service](/microsoft-365/security/defender-endpoint/configure-server-endpoints?view=o365-21vianet) | modified |
-| 4/14/2021 | [Contact Microsoft Defender ATP support](/microsoft-365/security/defender-endpoint/contact-support?view=o365-21vianet) | modified |
-| 4/14/2021 | [Turn on network protection](/microsoft-365/security/defender-endpoint/enable-network-protection?view=o365-21vianet) | modified |
-| 4/14/2021 | [Next-generation protection](/microsoft-365/security/defender-endpoint/microsoft-defender-antivirus-in-windows-10?view=o365-21vianet) | modified |
-| 4/14/2021 | [Microsoft Defender for Endpoint on Android](/microsoft-365/security/defender-endpoint/microsoft-defender-endpoint-android?view=o365-21vianet) | modified |
-| 4/14/2021 | [Microsoft Defender ATP on iOS](/microsoft-365/security/defender-endpoint/microsoft-defender-endpoint-ios?view=o365-21vianet) | modified |
-| 4/14/2021 | [Use network protection to help prevent connections to bad sites](/microsoft-365/security/defender-endpoint/network-protection?view=o365-21vianet) | modified |
-| 4/14/2021 | [Troubleshoot Microsoft Defender for Endpoint onboarding issues](/microsoft-365/security/defender-endpoint/troubleshoot-onboarding?view=o365-21vianet) | modified |
-| 4/14/2021 | [Microsoft 365 security documentation # < 60 chars](/microsoft-365/security/index?view=o365-21vianet) | modified |
-| 4/14/2021 | [About the Microsoft Defender for Office 365 trial](/microsoft-365/security/office-365-security/about-defender-for-office-365-trial?view=o365-21vianet) | modified |
-| 4/14/2021 | [Anti-spoofing protection](/microsoft-365/security/office-365-security/anti-spoofing-protection?view=o365-21vianet) | modified |
-| 4/14/2021 | [Order and precedence of email protection](/microsoft-365/security/office-365-security/how-policies-and-protections-are-combined?view=o365-21vianet) | modified |
-| 4/14/2021 | [The Microsoft Defender for Office 365 (MDO) email entity page](/microsoft-365/security/office-365-security/mdo-email-entity-page?view=o365-21vianet) | modified |
-| 4/14/2021 | [Automated investigation and response in Microsoft Defender for Office 365](/microsoft-365/security/office-365-security/office-365-air?view=o365-21vianet) | modified |
-| 4/14/2021 | [Evaluate Microsoft Defender for Office 365](/microsoft-365/security/office-365-security/office-365-evaluation?view=o365-21vianet) | modified |
-| 4/15/2021 | [How to Deploy Defender for Endpoint on Linux with Chef](/microsoft-365/security/defender-endpoint/linux-deploy-defender-for-endpoint-with-chef?view=o365-21vianet) | added |
-| 4/15/2021 | [Troubleshoot performance issues](/microsoft-365/security/defender-endpoint/troubleshoot-performance-issues?view=o365-21vianet) | added |
-| 4/15/2021 | [Network device discovery and vulnerability management](/microsoft-365/security/defender-endpoint/network-devices?view=o365-21vianet) | modified |
-| 4/15/2021 | [Get incident notifications in Microsoft 365 Defender](/microsoft-365/security/defender/get-incident-notifications?view=o365-21vianet) | modified |
-| 4/15/2021 | [Prioritize incidents in Microsoft 365 Defender](/microsoft-365/security/defender/incident-queue?view=o365-21vianet) | modified |
-| 4/15/2021 | [Incidents in Microsoft 365 Defender](/microsoft-365/security/defender/incidents-overview?view=o365-21vianet) | modified |
-| 4/15/2021 | [Investigate alerts in Microsoft 365 Defender](/microsoft-365/security/defender/investigate-alerts?view=o365-21vianet) | modified |
-| 4/15/2021 | [Investigate users in Microsoft 365 security center](/microsoft-365/security/defender/investigate-users?view=o365-21vianet) | modified |
-| 4/15/2021 | [Manage incidents in Microsoft 365 Defender](/microsoft-365/security/defender/manage-incidents?view=o365-21vianet) | modified |
-| 4/15/2021 | [Microsoft 365 Reports in the admin center - Microsoft 365 Apps usage](/microsoft-365/admin/activity-reports/microsoft365-apps-usage-ww?view=o365-21vianet) | modified |
-| 4/15/2021 | [Delete a user from your organization](/microsoft-365/admin/add-users/delete-a-user?view=o365-21vianet) | modified |
-| 4/15/2021 | [Remove a former employee](/microsoft-365/admin/add-users/remove-former-employee?view=o365-21vianet) | modified |
-| 4/15/2021 | [Using Domain Connect](/microsoft-365/admin/get-help-with-domains/domain-connect?view=o365-21vianet) | modified |
-| 4/15/2021 | [Determine if Centralized Deployment of add-ins works for your organization](/microsoft-365/admin/manage/centralized-deployment-of-add-ins?view=o365-21vianet) | modified |
-| 4/15/2021 | [Quick help Contacts](/microsoft-365/admin/misc/contacts?view=o365-21vianet) | modified |
-| 4/15/2021 | [Empower your small business with remote work](/microsoft-365/admin/misc/empower-your-small-business-with-remote-work?view=o365-21vianet) | modified |
-| 4/15/2021 | [Upgrade your Office 2010 to Microsoft 365 - Microsoft 365 admin](/microsoft-365/admin/setup/upgrade-users-to-latest-office-client?view=o365-21vianet) | modified |
-| 4/15/2021 | [Get started with Microsoft Teams in your small business](/microsoft-365/business-video/get-started-teams-small-business?view=o365-21vianet) | modified |
-| 4/15/2021 | [Close your account](/microsoft-365/commerce/close-your-account?view=o365-21vianet) | modified |
-| 4/15/2021 | [Manage software-as-a-service apps for your organization](/microsoft-365/commerce/manage-saas-apps?view=o365-21vianet) | modified |
-| 4/15/2021 | [Back up data before changing plans](/microsoft-365/commerce/subscriptions/back-up-data-before-switching-plans?view=o365-21vianet) | modified |
-| 4/15/2021 | [Learn about communication compliance](/microsoft-365/compliance/communication-compliance?view=o365-21vianet) | modified |
-| 4/15/2021 | [Export Content Search results](/microsoft-365/compliance/export-search-results?view=o365-21vianet) | modified |
-| 4/15/2021 | [Troubleshoot eDiscovery hold errors](/microsoft-365/compliance/hold-distribution-errors?view=o365-21vianet) | modified |
-| 4/15/2021 | [Limits for content search and Core eDiscovery in the compliance center](/microsoft-365/compliance/limits-for-content-search?view=o365-21vianet) | modified |
-| 4/15/2021 | [Overview of the Advanced eDiscovery solution in Microsoft 365](/microsoft-365/compliance/overview-ediscovery-20?view=o365-21vianet) | modified |
-| 4/15/2021 | [Network connectivity in the Microsoft 365 Admin Center (preview)](/microsoft-365/enterprise/office-365-network-mac-perf-overview?view=o365-21vianet) | modified |
-| 4/15/2021 | [What's new in Microsoft Defender for Endpoint on iOS](/microsoft-365/security/defender-endpoint/ios-whatsnew?view=o365-21vianet) | modified |
-| 4/15/2021 | [Troubleshoot performance issues for Microsoft Defender for Endpoint for Linux](/microsoft-365/security/defender-endpoint/linux-support-perf?view=o365-21vianet) | modified |
-| 4/15/2021 | [Deploy updates for Microsoft Defender for Endpoint for Linux](/microsoft-365/security/defender-endpoint/linux-updates?view=o365-21vianet) | modified |
-| 4/15/2021 | [Investigate entities on devices using live response in Microsoft Defender for Endpoint](/microsoft-365/security/defender-endpoint/live-response?view=o365-21vianet) | modified |
-| 4/15/2021 | [Configure and validate exclusions for Microsoft Defender for Endpoint for Mac](/microsoft-365/security/defender-endpoint/mac-exclusions?view=o365-21vianet) | modified |
-| 4/15/2021 | [Deploying Microsoft Defender for Endpoint for macOS with Jamf Pro](/microsoft-365/security/defender-endpoint/mac-install-with-jamf?view=o365-21vianet) | modified |
-| 4/15/2021 | [Deployment with a different Mobile Device Management (MDM) system for Microsoft Defender for Endpoint for Mac](/microsoft-365/security/defender-endpoint/mac-install-with-other-mdm?view=o365-21vianet) | modified |
-| 4/15/2021 | [Set up device groups in Jamf Pro](/microsoft-365/security/defender-endpoint/mac-jamfpro-device-groups?view=o365-21vianet) | modified |
-| 4/15/2021 | [Enroll Microsoft Defender for Endpoint for macOS devices into Jamf Pro](/microsoft-365/security/defender-endpoint/mac-jamfpro-enroll-devices?view=o365-21vianet) | modified |
-| 4/15/2021 | [Set up the Microsoft Defender for Endpoint for macOS policies in Jamf Pro](/microsoft-365/security/defender-endpoint/mac-jamfpro-policies?view=o365-21vianet) | modified |
-| 4/15/2021 | [Set preferences for Microsoft Defender for Endpoint for Mac](/microsoft-365/security/defender-endpoint/mac-preferences?view=o365-21vianet) | modified |
-| 4/15/2021 | [Privacy for Microsoft Defender for Endpoint for Mac](/microsoft-365/security/defender-endpoint/mac-privacy?view=o365-21vianet) | modified |
-| 4/15/2021 | [Detect and block potentially unwanted applications with Microsoft Defender for Endpoint for Mac](/microsoft-365/security/defender-endpoint/mac-pua?view=o365-21vianet) | modified |
-| 4/15/2021 | [Resources for Microsoft Defender for Endpoint for Mac](/microsoft-365/security/defender-endpoint/mac-resources?view=o365-21vianet) | modified |
-| 4/15/2021 | [How to schedule scans with MDATP for macOS](/microsoft-365/security/defender-endpoint/mac-schedule-scan?view=o365-21vianet) | modified |
-| 4/15/2021 | [Troubleshoot installation issues for Microsoft Defender for Endpoint for Mac](/microsoft-365/security/defender-endpoint/mac-support-install?view=o365-21vianet) | modified |
-| 4/15/2021 | [Troubleshoot license issues for Microsoft Defender for Endpoint for Mac](/microsoft-365/security/defender-endpoint/mac-support-license?view=o365-21vianet) | modified |
-| 4/15/2021 | [Microsoft Defender for Endpoint for Mac - system extensions (Preview)](/microsoft-365/security/defender-endpoint/mac-sysext-preview?view=o365-21vianet) | modified |
-| 4/15/2021 | [Deploy updates for Microsoft Defender for Endpoint for Mac](/microsoft-365/security/defender-endpoint/mac-updates?view=o365-21vianet) | modified |
-| 4/15/2021 | [Create and manage device groups in Microsoft Defender for Endpoint](/microsoft-365/security/defender-endpoint/machine-groups?view=o365-21vianet) | modified |
-| 4/15/2021 | [Device health and compliance report in Microsoft Defender for Endpoint](/microsoft-365/security/defender-endpoint/machine-reports?view=o365-21vianet) | modified |
-| 4/15/2021 | [View and organize the Microsoft Defender for Endpoint devices list](/microsoft-365/security/defender-endpoint/machines-view-overview?view=o365-21vianet) | modified |
-| 4/15/2021 | [Manage Microsoft Defender for Endpoint incidents](/microsoft-365/security/defender-endpoint/manage-incidents?view=o365-21vianet) | modified |
-| 4/15/2021 | [Manage Microsoft Defender for Endpoint suppression rules](/microsoft-365/security/defender-endpoint/manage-suppression-rules?view=o365-21vianet) | modified |
-| 4/15/2021 | [Overview of management and APIs](/microsoft-365/security/defender-endpoint/management-apis?view=o365-21vianet) | modified |
-| 4/15/2021 | [McAfee to Microsoft Defender for Endpoint - Onboard](/microsoft-365/security/defender-endpoint/mcafee-to-microsoft-defender-onboard?view=o365-21vianet) | modified |
-| 4/15/2021 | [McAfee to Microsoft Defender for Endpoint - Prepare](/microsoft-365/security/defender-endpoint/mcafee-to-microsoft-defender-prepare?view=o365-21vianet) | modified |
-| 4/15/2021 | [Microsoft Defender for Endpoint on iOS](/microsoft-365/security/defender-endpoint/microsoft-defender-endpoint-ios?view=o365-21vianet) | modified |
-| 4/15/2021 | [Microsoft Defender for Endpoint on Linux](/microsoft-365/security/defender-endpoint/microsoft-defender-endpoint-linux?view=o365-21vianet) | modified |
-| 4/15/2021 | [Microsoft Defender for Endpoint](/microsoft-365/security/defender-endpoint/microsoft-defender-endpoint?view=o365-21vianet) | modified |
-| 4/15/2021 | [Supported managed security service providers](/microsoft-365/security/defender-endpoint/mssp-list?view=o365-21vianet) | modified |
-| 4/15/2021 | [Managed security service provider (MSSP) partnership opportunities](/microsoft-365/security/defender-endpoint/mssp-support?view=o365-21vianet) | modified |
-| 4/15/2021 | [Use network protection to help prevent connections to bad sites](/microsoft-365/security/defender-endpoint/network-protection?view=o365-21vianet) | modified |
-| 4/15/2021 | [Threat and vulnerability management](/microsoft-365/security/defender-endpoint/next-gen-threat-and-vuln-mgt?view=o365-21vianet) | modified |
-| 4/15/2021 | [Microsoft Defender for Endpoint for non-Windows platforms](/microsoft-365/security/defender-endpoint/non-windows?view=o365-21vianet) | modified |
-| 4/15/2021 | [Offboard devices from the Microsoft Defender for Endpoint service](/microsoft-365/security/defender-endpoint/offboard-machines?view=o365-21vianet) | modified |
-| 4/15/2021 | [Onboard devices to the Microsoft Defender for Endpoint service](/microsoft-365/security/defender-endpoint/onboard-configure?view=o365-21vianet) | modified |
-| 4/15/2021 | [Onboard previous versions of Windows on Microsoft Defender for Endpoint](/microsoft-365/security/defender-endpoint/onboard-downlevel?view=o365-21vianet) | modified |
-| 4/15/2021 | [Onboard devices without Internet access to Microsoft Defender for Endpoint](/microsoft-365/security/defender-endpoint/onboard-offline-machines?view=o365-21vianet) | modified |
-| 4/15/2021 | [Configure and manage Microsoft Defender for Endpoint capabilities](/microsoft-365/security/defender-endpoint/onboard?view=o365-21vianet) | modified |
-| 4/15/2021 | [Onboard to the Microsoft Defender for Endpoint service](/microsoft-365/security/defender-endpoint/onboarding?view=o365-21vianet) | modified |
-| 4/15/2021 | [Overview of attack surface reduction](/microsoft-365/security/defender-endpoint/overview-attack-surface-reduction?view=o365-21vianet) | modified |
-| 4/15/2021 | [Overview of endpoint detection and response capabilities](/microsoft-365/security/defender-endpoint/overview-endpoint-detection-response?view=o365-21vianet) | modified |
-| 4/15/2021 | [Partner applications in Microsoft Defender for Endpoint](/microsoft-365/security/defender-endpoint/partner-applications?view=o365-21vianet) | modified |
-| 4/15/2021 | [Microsoft Defender for Endpoint partner opportunities and scenarios](/microsoft-365/security/defender-endpoint/partner-integration?view=o365-21vianet) | modified |
-| 4/15/2021 | [Prepare Microsoft Defender for Endpoint deployment](/microsoft-365/security/defender-endpoint/prepare-deployment?view=o365-21vianet) | modified |
-| 4/15/2021 | [Turn on the preview experience in Microsoft Defender for Endpoint](/microsoft-365/security/defender-endpoint/preview-settings?view=o365-21vianet) | modified |
-| 4/15/2021 | [Microsoft Defender for Endpoint preview features](/microsoft-365/security/defender-endpoint/preview?view=o365-21vianet) | modified |
-| 4/15/2021 | [Stream Microsoft Defender for Endpoint events to Azure Event Hubs](/microsoft-365/security/defender-endpoint/raw-data-export-event-hub?view=o365-21vianet) | modified |
-| 4/15/2021 | [Investigate incidents in Microsoft 365 Defender](/microsoft-365/security/defender/investigate-incidents?view=o365-21vianet) | modified |
-| 4/15/2021 | Configure and manage Microsoft Defender for Endpoint capabilities | removed |
-| 4/15/2021 | [Automatically apply a sensitivity label to content in Microsoft 365](/microsoft-365/compliance/apply-sensitivity-label-automatically?view=o365-21vianet) | modified |
-| 4/15/2021 | [Learn about retention policies & labels to automatically retain or delete content](/microsoft-365/compliance/retention?view=o365-21vianet) | modified |
-| 4/15/2021 | [Use sensitivity labels with Microsoft Teams, Microsoft 365 groups, and SharePoint sites](/microsoft-365/compliance/sensitivity-labels-teams-groups-sites?view=o365-21vianet) | modified |
-| 4/16/2021 | [Data Loss Prevention policy tips reference](/microsoft-365/compliance/dlp-policy-t365-21vianet) | added |
-| 4/16/2021 | [Microsoft Productivity Score](/microsoft-365/admin/productivity/productivity-score?view=o365-worldwide) | modified |
-| 4/16/2021 | [Configure IRM to use an on-premises AD RMS server](/microsoft-365/compliance/configure-irm-to-use-an-on-premises-ad-rms-server?view=o365-21vianet) | modified |
-| 4/16/2021 | [Configure IRM to use Azure Rights Management](/microsoft-365/compliance/configure-irm-to-use-azure-rights-management?view=o365-21vianet) | modified |
-| 4/16/2021 | [Exchange Online mail encryption with AD RMS](/microsoft-365/compliance/information-rights-management-in-exchange-online?view=o365-21vianet) | modified |
-| 4/16/2021 | Message Encryption FAQ | removed |
-| 4/16/2021 | [Set up encryption in Office 365 Enterprise](/microsoft-365/compliance/set-up-encryption?view=o365-21vianet) | modified |
-| 4/16/2021 | [Set up new Message Encryption capabilities](/microsoft-365/compliance/set-up-new-message-encryption-capabilities?view=o365-21vianet) | modified |
-| 4/16/2021 | [Cross-tenant mailbox migration](/microsoft-365/enterprise/cross-tenant-mailbox-migration?view=o365-21vianet) | modified |
-| 4/16/2021 | [Microsoft Defender ATP for Android - Privacy information](/microsoft-365/security/defender-endpoint/android-privacy?view=o365-21vianet) | modified |
-| 4/16/2021 | [Troubleshoot performance issues](/microsoft-365/security/defender-endpoint/troubleshoot-performance-issues?view=o365-21vianet) | modified |
-| 4/16/2021 | [Prioritize incidents in Microsoft 365 Defender](/microsoft-365/security/defender/incident-queue?view=o365-21vianet) | modified |
-| 4/16/2021 | [Create a keyword dictionary](/microsoft-365/compliance/create-a-keyword-dictionary?view=o365-21vianet) | modified |
-| 4/16/2021 | [Overview of data loss prevention](/microsoft-365/compliance/data-loss-prevention-policies?view=o365-21vianet) | modified |
-| 4/16/2021 | [Use sensitivity labels as conditions in DLP policies](/microsoft-365/compliance/dlp-sensitivity-label-as-condition?view=o365-21vianet) | modified |
-| 4/16/2021 | [Configure the delivery of third-party phishing simulations to users and unfiltered messages to SecOps mailboxes](/microsoft-365/security/office-365-security/configure-advanced-delivery?view=o365-21vianet) | modified |
-| 4/16/2021 | [Permissions - Security & Compliance Center](/microsoft-365/security/office-365-security/permissions-in-the-security-and-compliance-center?view=o365-21vianet) | modified |
-| 4/16/2021 | Change nameservers to set up Microsoft with 1&1 IONOS | removed |
-| 4/16/2021 | Change nameservers to set up Microsoft with Amazon Web Services (AWS) | removed |
-| 4/16/2021 | Change nameservers to set up Microsoft with Bluehost | removed |
-| 4/16/2021 | Change nameservers to set up Microsoft with Google Domains | removed |
-| 4/16/2021 | Change nameservers to set up Microsoft with Hostgator | removed |
-| 4/16/2021 | Change nameservers to set up Microsoft with MyDomain | removed |
-| 4/16/2021 | Change nameservers to set up Microsoft with Namecheap | removed |
-| 4/16/2021 | Change nameservers to set up Microsoft with Network Solutions | removed |
-| 4/16/2021 | Create DNS records at 1&1 IONOS for Microsoft | removed |
-| 4/16/2021 | Create DNS records at 123-reg.co.uk for Microsoft | removed |
-| 4/16/2021 | Create DNS records at Amazon Web Services (AWS) for Microsoft | removed |
-| 4/16/2021 | Create DNS records at Cloudflare for Microsoft | removed |
-| 4/16/2021 | Create DNS records at Crazy Domains for Microsoft | removed |
-| 4/16/2021 | Create DNS records at DNSMadeEasy for Microsoft | removed |
-| 4/16/2021 | Create DNS records at Dreamhost for Microsoft | removed |
-| 4/16/2021 | Create DNS records at Dyn.com for Microsoft | removed |
-| 4/16/2021 | Create DNS records at eNomCentral for Microsoft | removed |
-| 4/16/2021 | Create DNS records at Freenom for Microsoft | removed |
-| 4/16/2021 | Create DNS records at GoDaddy for Microsoft | removed |
-| 4/16/2021 | Create DNS records at Google Domains for Microsoft | removed |
-| 4/16/2021 | Create DNS records at Hostgator for Microsoft | removed |
-| 4/16/2021 | Create DNS records at MyDomain for Microsoft | removed |
-| 4/16/2021 | Create DNS records at name.com for Microsoft | removed |
-| 4/16/2021 | Create DNS records at Namecheap for Microsoft | removed |
-| 4/16/2021 | Create DNS records at Names.co.uk for Microsoft | removed |
-| 4/16/2021 | Create DNS records at Netregistry for Microsoft | removed |
-| 4/16/2021 | Create DNS records at Network Solutions for Microsoft | removed |
-| 4/16/2021 | Create DNS records at OVH for Microsoft | removed |
-| 4/16/2021 | Create DNS records at Register.com for Microsoft | removed |
-| 4/16/2021 | Create DNS records at Register365 for Microsoft | removed |
-| 4/16/2021 | Create DNS records at web.com for Microsoft | removed |
-| 4/16/2021 | Create DNS records at Wix for Microsoft | removed |
-| 4/16/2021 | Create DNS records at Yahoo! Small Business for Microsoft | removed |
-| 4/16/2021 | Create DNS records for Azure DNS zones | removed |
-| 4/16/2021 | Create DNS records when your domain is managed by Google (eNom) | removed |
-| 4/16/2021 | Create DNS records at easyDNS for Microsoft | removed |
-| 4/16/2021 | [Set up your domain (host-specific instructions)](/microsoft-365/admin/get-help-with-domains/set-up-your-domain-host-specific-instructions?view=o365-21vianet) | modified |
-| 4/16/2021 | [Manage sensitivity labels in Office apps](/microsoft-365/compliance/sensitivity-labels-office-apps?view=o365-21vianet) | modified |
-| 4/16/2021 | [Microsoft 365 productivity illustrations](/microsoft-365/solutions/productivity-illustrations?view=o365-21vianet) | modified |
+++
+## Week of August 23, 2021
++
+| Published On |Topic title | Change |
+|||--|
+| 8/26/2021 | [About admin roles in the Microsoft 365 admin center](/microsoft-365/admin/add-users/about-admin-roles?view=o365-21vianet) | modified |
+| 8/26/2021 | [About admin roles](/microsoft-365/admin/add-users/admin-roles-page?view=o365-21vianet) | modified |
+| 8/26/2021 | [Assign admin roles the Microsoft 365 admin center](/microsoft-365/admin/add-users/assign-admin-roles?view=o365-21vianet) | modified |
+| 8/26/2021 | [Pin apps to your users' app launcher](/microsoft-365/admin/manage/pin-apps-to-app-launcher?view=o365-21vianet) | modified |
+| 8/26/2021 | [Get started with Windows 365 Business and Cloud PCs](/microsoft-365/admin/setup/get-started-windows-365-business?view=o365-worldwide) | modified |
+| 8/26/2021 | [Enable domain-joined Windows 10 devices to be managed by Microsoft 365 for business](/microsoft-365/admin/setup/manage-windows-devices?view=o365-21vianet) | modified |
+| 8/26/2021 | [Secure Windows 10 computers](/microsoft-365/admin/setup/secure-win-10-pcs?view=o365-21vianet) | modified |
+| 8/26/2021 | [Troubleshoot Windows 365 Business Cloud PC setup issues](/microsoft-365/admin/setup/troubleshoot-windows-365-business?view=o365-worldwide) | modified |
+| 8/26/2021 | [Microsoft 365 usage analytics data model](/microsoft-365/admin/usage-analytics/usage-analytics-data-model?view=o365-21vianet) | modified |
+| 8/26/2021 | [Understand the proposal workflow](/microsoft-365/commerce/understand-proposal-workflow?view=o365-21vianet) | modified |
+| 8/26/2021 | [Get started with visibility and insights](/microsoft-365/compliance/app-governance-visibility-insights-get-started?view=o365-21vianet) | modified |
+| 8/26/2021 | [Get started with Microsoft Compliance Manager](/microsoft-365/compliance/compliance-manager-setup?view=o365-21vianet) | modified |
+| 8/26/2021 | [Create custom sensitive information types with Exact Data Match](/microsoft-365/compliance/create-custom-sensitive-information-types-with-exact-data-match-based-classification?view=o365-21vianet) | modified |
+| 8/26/2021 | [Data Loss Prevention Reference](/microsoft-365/compliance/data-loss-prevention-policies?view=o365-21vianet) | modified |
+| 8/26/2021 | [Collect eDiscovery diagnostic information](/microsoft-365/compliance/ediscovery-diagnostic-info?view=o365-21vianet) | modified |
+| 8/26/2021 | [Insider risk management settings](/microsoft-365/compliance/insider-risk-management-settings?view=o365-21vianet) | modified |
+| 8/26/2021 | [Use a script to add users to a hold in a Core eDiscovery case](/microsoft-365/compliance/use-a-script-to-add-users-to-a-hold-in-ediscovery?view=o365-21vianet) | modified |
+| 8/26/2021 | [Send email notifications and show policy tips for DLP policies](/microsoft-365/compliance/use-notifications-and-policy-tips?view=o365-21vianet) | modified |
+| 8/26/2021 | [Assign roles to Microsoft 365 user accounts with PowerShell](/microsoft-365/enterprise/assign-roles-to-user-accounts-with-microsoft-365-powershell?view=o365-21vianet) | modified |
+| 8/26/2021 | [Content delivery networks](/microsoft-365/enterprise/content-delivery-networks?view=o365-21vianet) | modified |
+| 8/26/2021 | [Exchange Online monitoring for Microsoft 365](/microsoft-365/enterprise/microsoft-365-exchange-monitoring?view=o365-21vianet) | modified |
+| 8/26/2021 | [Access the Admin portal](/microsoft-365/managed-desktop/get-started/access-admin-portal?view=o365-21vianet) | modified |
+| 8/26/2021 | [Deploy Microsoft Defender for Endpoint on Android with Microsoft Intune](/microsoft-365/security/defender-endpoint/android-intune?view=o365-21vianet) | modified |
+| 8/26/2021 | [Troubleshoot issues on Microsoft Defender for Endpoint on Android](/microsoft-365/security/defender-endpoint/android-support-signin?view=o365-21vianet) | modified |
+| 8/26/2021 | [Contact Microsoft Defender for Endpoint support](/microsoft-365/security/defender-endpoint/contact-support?view=o365-21vianet) | modified |
+| 8/26/2021 | [Endpoint detection and response in block mode](/microsoft-365/security/defender-endpoint/edr-in-block-mode?view=o365-21vianet) | modified |
+| 8/26/2021 | [Enable attack surface reduction rules](/microsoft-365/security/defender-endpoint/enable-attack-surface-reduction?view=o365-21vianet) | modified |
+| 8/26/2021 | [Turn on cloud-delivered protection in Microsoft Defender Antivirus](/microsoft-365/security/defender-endpoint/enable-cloud-protection-microsoft-defender-antivirus?view=o365-21vianet) | modified |
+| 8/26/2021 | [Enable controlled folder access](/microsoft-365/security/defender-endpoint/enable-controlled-folders?view=o365-21vianet) | modified |
+| 8/26/2021 | [Turn on exploit protection to help mitigate against attacks](/microsoft-365/security/defender-endpoint/enable-exploit-protection?view=o365-21vianet) | modified |
+| 8/26/2021 | [Turn on network protection](/microsoft-365/security/defender-endpoint/enable-network-protection?view=o365-21vianet) | modified |
+| 8/26/2021 | [Enable SIEM integration in Microsoft Defender for Endpoint](/microsoft-365/security/defender-endpoint/enable-siem-integration?view=o365-21vianet) | modified |
+| 8/26/2021 | [Pilot Defender for Endpoint evaluation](/microsoft-365/security/defender-endpoint/evaluate-defender-endpoint-enable?view=o365-21vianet) | modified |
+| 8/26/2021 | [Experience Microsoft Defender for Endpoint (MDE) through simulated attacks](/microsoft-365/security/defender-endpoint/evaluate-defender-endpoint-pilot?view=o365-21vianet) | modified |
+| 8/26/2021 | [See how Exploit protection works in a demo](/microsoft-365/security/defender-endpoint/evaluate-exploit-protection?view=o365-21vianet) | modified |
+| 8/26/2021 | [Evaluate Microsoft Defender Antivirus](/microsoft-365/security/defender-endpoint/evaluate-microsoft-defender-antivirus?view=o365-21vianet) | modified |
+| 8/26/2021 | [Microsoft Defender for Endpoint evaluation lab](/microsoft-365/security/defender-endpoint/evaluation-lab?view=o365-21vianet) | modified |
+| 8/26/2021 | [Review events and errors using Event Viewer](/microsoft-365/security/defender-endpoint/event-error-codes?view=o365-21vianet) | modified |
+| 8/26/2021 | [View attack surface reduction events](/microsoft-365/security/defender-endpoint/event-views?view=o365-21vianet) | modified |
+| 8/26/2021 | [Use Microsoft Defender for Endpoint APIs](/microsoft-365/security/defender-endpoint/exposed-apis-create-app-nativeapp?view=o365-21vianet) | modified |
+| 8/26/2021 | [Create an Application to access Microsoft Defender for Endpoint without a user](/microsoft-365/security/defender-endpoint/exposed-apis-create-app-partners?view=o365-21vianet) | modified |
+| 8/26/2021 | [Create an app to access Microsoft Defender for Endpoint without a user](/microsoft-365/security/defender-endpoint/exposed-apis-create-app-webapp?view=o365-21vianet) | modified |
+| 8/26/2021 | [Fetch alerts from MSSP customer tenant](/microsoft-365/security/defender-endpoint/fetch-alerts-mssp?view=o365-21vianet) | modified |
+| 8/26/2021 | [Export assessment methods and properties per device](/microsoft-365/security/defender-endpoint/get-assessment-methods-properties?view=o365-21vianet) | modified |
+| 8/26/2021 | [Export secure configuration assessment per device](/microsoft-365/security/defender-endpoint/get-assessment-secure-config?view=o365-21vianet) | modified |
+| 8/26/2021 | [Export software vulnerabilities assessment per device](/microsoft-365/security/defender-endpoint/get-assessment-software-vulnerabilities?view=o365-21vianet) | modified |
+| 8/26/2021 | [Get domain-related alerts API](/microsoft-365/security/defender-endpoint/get-domain-related-alerts?view=o365-21vianet) | modified |
+| 8/26/2021 | [Get exposure score](/microsoft-365/security/defender-endpoint/get-exposure-score?view=o365-21vianet) | modified |
+| 8/26/2021 | [Get IP related alerts API](/microsoft-365/security/defender-endpoint/get-ip-related-alerts?view=o365-21vianet) | modified |
+| 8/26/2021 | [Get live response results](/microsoft-365/security/defender-endpoint/get-live-response-result?view=o365-21vianet) | modified |
+| 8/26/2021 | [List machineActions API](/microsoft-365/security/defender-endpoint/get-machineactions-collection?view=o365-21vianet) | modified |
+| 8/26/2021 | [Get RBAC machine groups collection API](/microsoft-365/security/defender-endpoint/get-machinegroups-collection?view=o365-21vianet) | modified |
+| 8/26/2021 | [Get missing KBs by software ID](/microsoft-365/security/defender-endpoint/get-missing-kbs-software?view=o365-21vianet) | modified |
+| 8/26/2021 | [List all remediation activities](/microsoft-365/security/defender-endpoint/get-remediation-all-activities?view=o365-21vianet) | modified |
+| 8/26/2021 | [Use sensitivity labels to prioritize incident response](/microsoft-365/security/defender-endpoint/information-protection-investigation?view=o365-21vianet) | modified |
+| 8/26/2021 | [Investigate devices in the Defender for Endpoint Devices list](/microsoft-365/security/defender-endpoint/investigate-machines?view=o365-21vianet) | modified |
+| 8/26/2021 | [Set up the Microsoft Defender for Endpoint on macOS policies in Jamf Pro](/microsoft-365/security/defender-endpoint/mac-jamfpro-policies?view=o365-21vianet) | modified |
+| 8/26/2021 | [Troubleshoot license issues for Microsoft Defender for Endpoint on Mac](/microsoft-365/security/defender-endpoint/mac-support-license?view=o365-21vianet) | modified |
+| 8/26/2021 | [New configuration profiles for macOS Catalina and newer versions of macOS](/microsoft-365/security/defender-endpoint/mac-sysext-policies?view=o365-21vianet) | modified |
+| 8/26/2021 | [Device health and compliance report in Microsoft Defender for Endpoint](/microsoft-365/security/defender-endpoint/machine-reports?view=o365-21vianet) | modified |
+| 8/26/2021 | [Microsoft Defender for Endpoint on Linux](/microsoft-365/security/defender-endpoint/microsoft-defender-endpoint-linux?view=o365-21vianet) | modified |
+| 8/26/2021 | [Microsoft Threat Experts](/microsoft-365/security/defender-endpoint/microsoft-threat-experts?view=o365-21vianet) | modified |
+| 8/26/2021 | [Onboarding using Microsoft Endpoint Configuration Manager](/microsoft-365/security/defender-endpoint/onboarding-endpoint-configuration-manager?view=o365-21vianet) | modified |
+| 8/26/2021 | [Prepare Microsoft Defender for Endpoint deployment](/microsoft-365/security/defender-endpoint/prepare-deployment?view=o365-21vianet) | modified |
+| 8/26/2021 | [Run and customize on-demand scans in Microsoft Defender Antivirus](/microsoft-365/security/defender-endpoint/run-scan-microsoft-defender-antivirus?view=o365-21vianet) | modified |
+| 8/26/2021 | [Switch to Microsoft Defender for Endpoint - Setup](/microsoft-365/security/defender-endpoint/switch-to-microsoft-defender-setup?view=o365-21vianet) | modified |
+| 8/26/2021 | [Event timeline in threat and vulnerability management](/microsoft-365/security/defender-endpoint/threat-and-vuln-mgt-event-timeline?view=o365-21vianet) | modified |
+| 8/26/2021 | [Indicator resource type](/microsoft-365/security/defender-endpoint/ti-indicator?view=o365-21vianet) | modified |
+| 8/26/2021 | [Create and manage custom detection rules in Microsoft 365 Defender](/microsoft-365/security/defender/custom-detection-rules?view=o365-21vianet) | modified |
+| 8/26/2021 | [Go to the Action center to view and approve your automated investigation and remediation tasks](/microsoft-365/security/defender/m365d-action-center?view=o365-21vianet) | modified |
+| 8/26/2021 | [Manage access to Microsoft 365 Defender data in the Microsoft 365 Defender portal](/microsoft-365/security/defender/m365d-permissions?view=o365-21vianet) | modified |
+| 8/26/2021 | [Microsoft 365 Defender](/microsoft-365/security/defender/microsoft-365-defender?view=o365-21vianet) | modified |
+| 8/26/2021 | [Microsoft 365 Defender prerequisites](/microsoft-365/security/defender/prerequisites?view=o365-21vianet) | modified |
+| 8/26/2021 | [Mail flow insights in the Mail flow dashboard](/microsoft-365/security/office-365-security/mail-flow-insights-v2?view=o365-21vianet) | modified |
+| 8/26/2021 | [Automated investigation and response in Microsoft Defender for Office 365](/microsoft-365/security/office-365-security/office-365-air?view=o365-21vianet) | modified |
+| 8/26/2021 | [Threat investigation & response capabilities - Microsoft Defender for Office 365 Plan 2](/microsoft-365/security/office-365-security/office-365-ti?view=o365-21vianet) | modified |
+| 8/26/2021 | [Permissions - Security & Compliance Center](/microsoft-365/security/office-365-security/permissions-in-the-security-and-compliance-center?view=o365-21vianet) | modified |
+| 8/26/2021 | [Protect against threats in Microsoft Defender for Office 365, Anti-malware, Anti-Phishing, Anti-spam, Safe links, Safe attachments, Zero-hour auto purge (ZAP), MDO security configuration](/microsoft-365/security/office-365-security/protect-against-threats?view=o365-21vianet) | modified |
+| 8/26/2021 | [Turn on Safe Attachments for SharePoint, OneDrive, and Microsoft Teams](/microsoft-365/security/office-365-security/turn-on-mdo-for-spo-odb-and-teams?view=o365-21vianet) | modified |
+| 8/26/2021 | [Use Privileged Identity Management (PIM) in Defender for Office 365.](/microsoft-365/security/office-365-security/use-privileged-identity-management-in-defender-for-office-365?view=o365-21vianet) | modified |
+| 8/26/2021 | [View Defender for Office 365 reports](/microsoft-365/security/office-365-security/view-reports-for-mdo?view=o365-21vianet) | modified |
+| 8/26/2021 | [Create your collaboration governance plan](/microsoft-365/solutions/collaboration-governance-first?view=o365-21vianet) | modified |
+| 8/26/2021 | [Microsoft 365 enterprise resource planning - Security architecture](/microsoft-365/solutions/identity-design-principles?view=o365-21vianet) | modified |
+| 8/26/2021 | [Advanced eDiscovery limits](/microsoft-365/compliance/limits-ediscovery20?view=o365-21vianet) | modified |
+| 8/26/2021 | [Microsoft Defender for Endpoint on Mac](/microsoft-365/security/defender-endpoint/microsoft-defender-endpoint-mac?view=o365-21vianet) | modified |
security TOC https://github.com/MicrosoftDocs/microsoft-365-docs/commits/public/microsoft-365/security/defender-endpoint/TOC.md
##### [Customize controlled folder access](customize-controlled-folders.md) #### [Device Control]()
+##### [Device Control Reports](device-control-report.md)
##### [Control USB devices and other removable media](control-usb-devices-using-intune.md) ##### [Removable Storage Protection](device-control-removable-storage-protection.md) ##### [Removable Storage Access Control](device-control-removable-storage-access-control.md)
security Configure Server Endpoints https://github.com/MicrosoftDocs/microsoft-365-docs/commits/public/microsoft-365/security/defender-endpoint/configure-server-endpoints.md
You can onboard Windows Server 2008 R2 SP1, Windows Server 2012 R2, and Windows
After completing the onboarding steps using any of the provided options, you'll need to [Configure and update System Center Endpoint Protection clients](#configure-and-update-system-center-endpoint-protection-clients). > [!NOTE]
-> Defender for Endpoint standalone server license is required, per node, in order to onboard a Windows server through Microsoft Monitoring Agent (Option 1), or through Microsoft Endpoint Manager (Option 3). Alternatively, an Azure Defender for Servers license is required, per node, in order to onboard a Windows server through Azure Security Center (Option 2), see [Supported features available in Azure Defender](/azure/security-center/security-center-services).
+> Defender for Endpoint standalone server license is required, per node, in order to onboard a Windows server through Microsoft Monitoring Agent (Option 1), or through Microsoft Endpoint Manager (Option 3). Alternatively, an Azure Defender for Servers license is required, per node, in order to onboard a Windows server through Azure Security Center (Option 2). For more information, see [Supported features available in Azure Defender](/azure/security-center/security-center-services).
+> Unlike user licenses, these licenses are not to be assigned to any user or object. They are required to be in the tenant for compliance.
### Option 1: Onboard by installing and configuring Microsoft Monitoring Agent (MMA)
security Device Control Report https://github.com/MicrosoftDocs/microsoft-365-docs/commits/public/microsoft-365/security/defender-endpoint/device-control-report.md
+
+ Title: Protect your organization's data with device control
+description: Monitor your organization's data security through device control reports.
+ms.mktglfcycl: deploy
+ms.sitesec: library
+ms.pagetype: security
+localization_priority: normal
+++++
+audience: ITPro
+ms.technology: mde
+
+# Protect your organization's data with device control
+
+**Applies to:** [Microsoft Defender for Endpoint](https://go.microsoft.com/fwlink/p/?linkid=2154037)
+
+Microsoft Defender for Endpoint device control protects against data loss, by monitoring and controlling media use by devices in your organization, such as the use of removable storage devices and USB drives.
+
+With the device control report, you can view events that relate to media usage, such as:
+
+- **Audit events:** Shows the number of audit events that occur when external media is connected.
+- **Policy events:** Shows the number of policy events that occur when a device control policy is triggered.
+
+> [!NOTE]
+> The audit event to track media usage is enabled by default for devices onboarded to Microsoft Defender for Endpoint.
+
+## Understanding the audit events
+
+The audit events include:
+
+- **USB drive mount and unmount:** Audit events that are generated when a USB drive is mounted or unmounted.
+- **PnP:** Plug and Play audit events are generated when removable storage, a printer, or Bluetooth media is connected.
+
+## Monitor device control security
+
+Device control in Microsoft Defender for Endpoint empowers security administrators with tools that enable them to track their organization's device control security through reports. You can find the device control report in the Microsoft 365 security center by going to **Reports > Device protection**.
+
+The Device protection card on the **Reports** dashboard shows the number of audit events generated by media type, over the last 180 days.
+
+> [!div class="mx-imgBorder"]
+> ![DeviceControlReportCard](images/devicecontrolcard.png)
+
+The **View details** button shows more media usage data in the **device control report** page.
+
+The page provides a dashboard with aggregated number of events per type and a list of events. Administrators can filter on time range, media class name, and device ID.
+
+> [!div class="mx-imgBorder"]
+> ![DeviceControlReportDetails](images/Detaileddevicecontrolreport.png)
+
+When you select an event, a flyout appears that shows you more information:
+
+- **General details:** Date, Action mode, and the policy of this event.
+- **Media information:** Media information includes Media name, Class name, Class GUID, Device ID, Vendor ID, Volume, Serial number, and Bus type.
+- **Location details:** Device name and MDATP device ID.
+
+> [!div class="mx-imgBorder"]
+> ![FilterOnDeviceControlReport](images/devicecontrolreportfilter.png)
+
+To see real-time activity for this media across the organization, select the **Open Advanced hunting** button. This includes an embedded, pre-defined query.
+
+> [!div class="mx-imgBorder"]
+> ![QueryOnDeviceControlReport](images/Devicecontrolreportquery.png)
+
+To see the security of the device, select the **Open device page** button on the flyout. This button opens the device entity page.
+
+> [!div class="mx-imgBorder"]
+> ![DeviceEntityPage](images/Devicesecuritypage.png)
+
+## Reporting delays
+
+The device control report can have a 12-hour delay from the time a media connection occurs to the time the event is reflected in the card or in the domain list.
security Device Discovery Faq https://github.com/MicrosoftDocs/microsoft-365-docs/commits/public/microsoft-365/security/defender-endpoint/device-discovery-faq.md
Find answers to frequently asked questions (FAQs) about device discovery.
This mode allows every Microsoft Defender for Endpoint onboarded device to collect network data and discover neighboring devices. Onboarded endpoints passively collect events in the network and extract device information from them. No network traffic will be initiated. Onboarded endpoints will simply extract data from every network traffic that is seen by an onboarded device. This data used to list unmanaged devices in your network. ## Can I disable Basic discovery?
-You have the option to turn off device discovery through the [Advanced features](advanced-features.md) page. However, you will lose visibility on unmanaged devices in your network.
+You have the option to turn off device discovery through the [Advanced features](advanced-features.md) page. However, you will lose visibility on unmanaged devices in your network. Note that SenseNDR.exe will still be running on the onboarded devices regardless discovery is turned off.
## What is Standard discovery mode? In this mode endpoints onboarded to Microsoft Defender for Endpoint can actively probe observed devices in the network to enrich collected data (with negligible amount of network traffic). This mode is highly recommended for building a reliable and coherent device inventory. If you choose to disable this mode, and select Basic discovery mode, you will likely only gain limited visibility of unmanaged endpoints in your network.
Yes, you can apply filters exclude unmanaged devices from the device inventory l
## Which onboarded devices can perform discovery?
- Onboarded devices running on Windows 10 version 1809 or later can perform discovery.
+ Onboarded devices running on Windows 10 version 1809 or later can perform discovery. Servers cannot perform discovery at this point.
## What happens if my onboarded devices is connected to my home network, or to public access point?
- The discovery engine distinguishes between network events that are received in the corporate network versus outside of the corporate network. By correlating network identifiers across all tenant's clients, events are differentiated between ones that were received from private networks and corporate networks. For example, if the majority of the devices in the network report that they are connected to the same network name, with the same default gateway and DHCP server address, it can be assumed that this network is likely a corporate network. Private network devices will not be listed in the inventory and will not be actively probed.
+ The discovery engine distinguishes between network events that are received in the corporate network versus outside of the corporate network. By correlating network identifiers across all tenant's clients, events are differentiated between ones that were received from private networks and corporate networks. For example, if the majority of the devices in the organization report that they are connected to the same network name, with the same default gateway and DHCP server address, it can be assumed that this network is likely a corporate network. Private network devices will not be listed in the inventory and will not be actively probed.
## What protocols are you capturing and analyzing? By default, all onboarded devices running on Windows 10 version 1809 or later are capturing and analyzing the following protocols:
-ARP, CDP, DHCP, DHCPv6, IP (headers), LLDP, LLMNR, mDNS, MNDP, NBNS, SSDP, TCP (headers), UDP (headers), WSD
+ARP, CDP, DHCP, DHCPv6, IP (headers), LLDP, LLMNR, mDNS, MNDP, NBNS, SSDP, TCP (SYN headers), UDP (headers), WSD
## Which protocols do you use for active probing in Standard discovery? When a device is configured to run Standard discovery, exposed services are being probed by using the following protocols:
ARP, FTP, HTTP, HTTPS, ICMP, LLMNR, NBNS, RDP, SIP, SMTP, SNMP, SSH, Telnet, UPN
## My security tool raised alert on UnicastScanner.ps1 or port scanning activity initiated by it, what should I do? The active probing scripts are signed by Microsoft and are safe. You can add the following path to your exclusion list:
-`C:\ProgramData\Microsoft\Windows Defender Advanced Threat Protection\Downloads\*.ps`
+`C:\ProgramData\Microsoft\Windows Defender Advanced Threat Protection\Downloads\*.ps1`
## What is the amount of traffic being generated by the Standard discovery active probe?
When considering Standard discovery, you may be wondering about the implication
As opposed to malicious activity, which would typically scan the entire network from a small number of compromised devices, Microsoft Defender for Endpoint’s Standard discovery probing is initiated from all onboarded Windows devices making the activity benign and non-anomalous. The probing is centrally managed from the cloud to balance the probing attempt between all the supported onboarded devices in the network.   ### Active probing generates negligible amount of extra traffic
-Unmanaged devices would typically get probed no more than once in a three-week period and generate less than 50KB of traffic. Malicious activity usually includes high repetitive probing attempts and in some cases data exfiltration that generates a significant amount of network traffic that can be identified an anomaly by network monitoring tools. 
+Unmanaged devices would typically get probed no more than once in a three-week period and generate less than 50KB of traffic. Malicious activity usually includes high repetitive probing attempts and in some cases data exfiltration that generates a significant amount of network traffic that can be identified as an anomaly by network monitoring tools. 
### Your Windows device already runs active discovery Active discovery capabilities have always been embedded in the Windows operating system, to find nearby devices, endpoints, and printers, for easier "plug and play" experiences and file sharing between endpoints in the network. Similar functionality is implemented in mobile devices, network equipment and inventory applications just to name a few.  
security Linux Resources https://github.com/MicrosoftDocs/microsoft-365-docs/commits/public/microsoft-365/security/defender-endpoint/linux-resources.md
By default, the command-line tool outputs the result in human-readable format. I
The following table lists commands for some of the most common scenarios. Run `mdatp help` from the Terminal to view the full list of supported commands.
-|Group |Scenario |Command |
-|-|--|--|
-|Configuration |Turn on/off real-time protection |`mdatp config real-time-protection --value [enabled\|disabled]` |
-|Configuration |Turn on/off behavior monitoring |`mdatp config behavior-monitoring --value [enabled\|disabled]`
-|Configuration |Turn on/off cloud protection |`mdatp config cloud --value [enabled\|disabled]` |
-|Configuration |Turn on/off product diagnostics |`mdatp config cloud-diagnostic --value [enabled\|disabled]` |
-|Configuration |Turn on/off automatic sample submission |`mdatp config cloud-automatic-sample-submission [enabled\|disabled]` |
-|Configuration |Turn on/off AV passive mode |`mdatp config passive-mode --value [enabled\|disabled]` |
-|Configuration |Add/remove an antivirus exclusion for a file extension |`mdatp exclusion extension [add\|remove] --name [extension]` |
-|Configuration |Add/remove an antivirus exclusion for a file |`mdatp exclusion file [add\|remove] --path [path-to-file]` |
-|Configuration |Add/remove an antivirus exclusion for a directory |`mdatp exclusion folder [add\|remove] --path [path-to-directory]` |
-|Configuration |Add/remove an antivirus exclusion for a process |`mdatp exclusion process [add\|remove] --path [path-to-process]`<br/>`mdatp exclusion process [add\|remove] --name [process-name]` |
-|Configuration |List all antivirus exclusions |`mdatp exclusion list` |
-|Configuration |Add a threat name to the allowed list |`mdatp threat allowed add --name [threat-name]` |
-|Configuration |Remove a threat name from the allowed list |`mdatp threat allowed remove --name [threat-name]` |
-|Configuration |List all allowed threat names |`mdatp threat allowed list` |
-|Configuration |Turn on PUA protection |`mdatp threat policy set --type potentially_unwanted_application --action block` |
-|Configuration |Turn off PUA protection |`mdatp threat policy set --type potentially_unwanted_application --action off` |
-|Configuration |Turn on audit mode for PUA protection |`mdatp threat policy set --type potentially_unwanted_application --action audit` |
-|Diagnostics |Change the log level |`mdatp log level set --level verbose [error|warning|info|verbose]` |
-|Diagnostics |Generate diagnostic logs |`mdatp diagnostic create --path [directory]` |
-|Health |Check the product's health |`mdatp health` |
-|Protection |Scan a path |`mdatp scan custom --path [path] [--ignore-exclusions]` |
-|Protection |Do a quick scan |`mdatp scan quick` |
-|Protection |Do a full scan |`mdatp scan full` |
-|Protection |Cancel an ongoing on-demand scan |`mdatp scan cancel` |
-|Protection |Request a security intelligence update |`mdatp definitions update` |
-|Protection history |Print the full protection history |`mdatp threat list` |
-|Protection history |Get threat details |`mdatp threat get --id [threat-id]` |
-|Quarantine management |List all quarantined files |`mdatp threat quarantine list` |
-|Quarantine management |Remove all files from the quarantine |`mdatp threat quarantine remove-all` |
-|Quarantine management |Add a file detected as a threat to the quarantine |`mdatp threat quarantine add --id [threat-id]` |
-|Quarantine management |Remove a file detected as a threat from the quarantine |`mdatp threat quarantine remove --id [threat-id]` |
-|Quarantine management |Restore a file from the quarantine |`mdatp threat quarantine restore --id [threat-id]` |
-|Endpoint Detection and Response |Set early preview (unused) |`mdatp edr early-preview [enable|disable]` |
-|Endpoint Detection and Response |Set group-id |`mdatp edr group-ids --group-id [group-id]` |
-|Endpoint Detection and Response |Set/Remove tag, only `GROUP` supported |`mdatp edr tag set --name GROUP --value [tag]` |
-|Endpoint Detection and Response |list exclusions (root) |`mdatp edr exclusion list [processes|paths|extensions|all]` |
+<br>
+
+****
+
+|Group|Scenario|Command|
+||||
+|Configuration|Turn on/off real-time protection|`mdatp config real-time-protection --value [enabled\|disabled]`|
+|Configuration|Turn on/off behavior monitoring|`mdatp config behavior-monitoring --value [enabled\|disabled]`
+|Configuration|Turn on/off cloud protection|`mdatp config cloud --value [enabled\|disabled]`|
+|Configuration|Turn on/off product diagnostics|`mdatp config cloud-diagnostic --value [enabled\|disabled]`|
+|Configuration|Turn on/off automatic sample submission|`mdatp config cloud-automatic-sample-submission [enabled\|disabled]`|
+|Configuration|Turn on/off AV passive mode|`mdatp config passive-mode --value [enabled\|disabled]`|
+|Configuration|Add/remove an antivirus exclusion for a file extension|`mdatp exclusion extension [add\|remove] --name [extension]`|
+|Configuration|Add/remove an antivirus exclusion for a file|`mdatp exclusion file [add\|remove] --path [path-to-file]`|
+|Configuration|Add/remove an antivirus exclusion for a directory|`mdatp exclusion folder [add\|remove] --path [path-to-directory]`|
+|Configuration|Add/remove an antivirus exclusion for a process|`mdatp exclusion process [add\|remove] --path [path-to-process]` <p> `mdatp exclusion process [add\|remove] --name [process-name]`|
+|Configuration|List all antivirus exclusions|`mdatp exclusion list`|
+|Configuration|Add a threat name to the allowed list|`mdatp threat allowed add --name [threat-name]`|
+|Configuration|Remove a threat name from the allowed list|`mdatp threat allowed remove --name [threat-name]`|
+|Configuration|List all allowed threat names|`mdatp threat allowed list`|
+|Configuration|Turn on PUA protection|`mdatp threat policy set --type potentially_unwanted_application --action block`|
+|Configuration|Turn off PUA protection|`mdatp threat policy set --type potentially_unwanted_application --action off`|
+|Configuration|Turn on audit mode for PUA protection|`mdatp threat policy set --type potentially_unwanted_application --action audit`|
+|Diagnostics|Change the log level|`mdatp log level set --level verbose [error|warning|info|verbose]`|
+|Diagnostics|Generate diagnostic logs|`mdatp diagnostic create --path [directory]`|
+|Health|Check the product's health|`mdatp health`|
+|Protection|Scan a path|`mdatp scan custom --path [path] [--ignore-exclusions]`|
+|Protection|Do a quick scan|`mdatp scan quick`|
+|Protection|Do a full scan|`mdatp scan full`|
+|Protection|Cancel an ongoing on-demand scan|`mdatp scan cancel`|
+|Protection|Request a security intelligence update|`mdatp definitions update`|
+|Protection history|Print the full protection history|`mdatp threat list`|
+|Protection history|Get threat details|`mdatp threat get --id [threat-id]`|
+|Quarantine management|List all quarantined files|`mdatp threat quarantine list`|
+|Quarantine management|Remove all files from the quarantine|`mdatp threat quarantine remove-all`|
+|Quarantine management|Add a file detected as a threat to the quarantine|`mdatp threat quarantine add --id [threat-id]`|
+|Quarantine management|Remove a file detected as a threat from the quarantine|`mdatp threat quarantine remove --id [threat-id]`|
+|Quarantine management|Restore a file from the quarantine|`mdatp threat quarantine restore --id [threat-id]`|
+|Endpoint Detection and Response|Set early preview (unused)|`mdatp edr early-preview [enable|disable]`|
+|Endpoint Detection and Response|Set group-id|`mdatp edr group-ids --group-id [group-id]`|
+|Endpoint Detection and Response|Set/Remove tag, only `GROUP` supported|`mdatp edr tag set --name GROUP --value [tag]`|
+|Endpoint Detection and Response|list exclusions (root)|`mdatp edr exclusion list [processes|paths|extensions|all]`|
+|
## Microsoft Defender for Endpoint portal information
security Linux Support Install https://github.com/MicrosoftDocs/microsoft-365-docs/commits/public/microsoft-365/security/defender-endpoint/linux-support-install.md
ms.technology: mde
An error in installation may or may not result in a meaningful error message by the package manager. To verify if the installation succeeded, obtain and check the installation logs using: ```bash
- sudo journalctl --no-pager | grep 'microsoft-mdatp' > installation.log
+ sudo journalctl --no-pager|grep 'microsoft-mdatp' > installation.log
``` ```bash
Also check the [Client configuration](linux-install-manually.md#client-configura
Please mind that the package you are installing is matching the host distribution and version.
-| package | distribution |
-|-||
-| mdatp-rhel8.Linux.x86_64.rpm | Oracle, RHEL and CentOS 8.x |
-| mdatp-sles12.Linux.x86_64.rpm | SuSE Linux Enterprise Server 12.x |
-| mdatp-sles15.Linux.x86_64.rpm | SuSE Linux Enterprise Server 15.x |
-| mdatp.Linux.x86_64.rpm | Oracle, RHEL and CentOS 7.x |
-| mdatp.Linux.x86_64.deb | Debian and Ubuntu 16.04, 18.04 and 20.04 |
+<br>
+
+****
+
+|package|distribution|
+|||
+|mdatp-rhel8.Linux.x86_64.rpm|Oracle, RHEL and CentOS 8.x|
+|mdatp-sles12.Linux.x86_64.rpm|SuSE Linux Enterprise Server 12.x|
+|mdatp-sles15.Linux.x86_64.rpm|SuSE Linux Enterprise Server 15.x|
+|mdatp.Linux.x86_64.rpm|Oracle, RHEL and CentOS 7.x|
+|mdatp.Linux.x86_64.deb|Debian and Ubuntu 16.04, 18.04 and 20.04|
+|
For [manual deployment](linux-install-manually.md), make sure the correct distro and version had been chosen.
security Linux Support Perf https://github.com/MicrosoftDocs/microsoft-365-docs/commits/public/microsoft-365/security/defender-endpoint/linux-support-perf.md
The following steps can be used to troubleshoot and mitigate these issues:
```bash mdatp config real-time-protection --value disabled ```+ ```Output Configuration property updated ```
The following steps can be used to troubleshoot and mitigate these issues:
> This feature is available in version 100.90.70 or newer. This feature is enabled by default on the `Dogfood` and `InsiderFast` channels. If you're using a different update channel, this feature can be enabled from the command line:+ ```bash mdatp config real-time-protection-statistics --value enabled ```
The following steps can be used to troubleshoot and mitigate these issues:
```bash mdatp config real-time-protection --value enabled ```+ ```Output Configuration property updated ```
The following steps can be used to troubleshoot and mitigate these issues:
```bash wget -c https://raw.githubusercontent.com/microsoft/mdatp-xplat/master/linux/diagnostic/high_cpu_parser.py ```+ The output of this command should be similar to the following: ```Output
The following steps can be used to troubleshoot and mitigate these issues:
To improve the performance of Defender for Endpoint on Linux, locate the one with the highest number under the `Total files scanned` row and add an exclusion for it. For more information, see [Configure and validate exclusions for Defender for Endpoint on Linux](linux-exclusions.md).
- >[!NOTE]
+ > [!NOTE]
> The application stores statistics in memory and only keeps track of file activity since it was started and real-time protection was enabled. Processes that were launched before or during periods when real time protection was off are not counted. Additionally, only events which triggered scans are counted. 5. Configure Microsoft Defender for Endpoint on Linux with exclusions for the processes or disk locations that contribute to the performance issues and re-enable real-time protection.
The following steps can be used to troubleshoot and mitigate these issues:
For more information, see [Configure and validate exclusions for Microsoft Defender for Endpoint on Linux](linux-exclusions.md). ## See also+ - [Investigate agent health issues](health-status.md)
security Live Response Command Examples https://github.com/MicrosoftDocs/microsoft-365-docs/commits/public/microsoft-365/security/defender-endpoint/live-response-command-examples.md
getfile c:\Users\user\Desktop\work.txt
getfile c:\Users\user\Desktop\work.txt -auto ```
->[!NOTE]
+> [!NOTE]
> > The following file types **cannot** be downloaded using this command from within Live Response: >
run script.ps1
run get-process-by-name.ps1 -parameters "-processName Registry" ```
->[!NOTE]
+> [!NOTE]
> > For long running commands such as '**run**' or '**getfile**', you may want to use the '**&**' symbol at the end of the command to perform that action in the background. > This will allow you to continue investigating the machine and return to the background command when done using '**fg**' [basic command](live-response.md#basic-commands).
security Live Response https://github.com/MicrosoftDocs/microsoft-365-docs/commits/public/microsoft-365/security/defender-endpoint/live-response.md
Depending on the role that's been granted to you, you can run basic or advanced
The following commands are available for user roles that are granted the ability to run **basic** live response commands. For more information on role assignments, see [Create and manage roles](user-roles.md).
+<br>
+
+****
+ |Command|Description|
-||||
+|||
|`cd`|Changes the current directory.| |`cls`|Clears the console screen.| |`connect`|Initiates a live response session to the device.| |`connections`|Shows all the active connections.| |`dir`|Shows a list of files and subdirectories in a directory.| |`drivers`|Shows all drivers installed on the device.|
-|`fg <command ID>`|Place the specified job in the foreground in the foreground, making it the current job. <br> NOTE: fg takes a "command ID" available from jobs, not a PID|
+|`fg <command ID>`|Place the specified job in the foreground in the foreground, making it the current job. <p> **NOTE**: fg takes a "command ID" available from jobs, not a PID|
|`fileinfo`|Get information about a file.| |`findfile`|Locates files by a given name on the device.| |`getfile <file_path>`|Downloads a file.|
The following commands are available for user roles that are granted the ability
|`scheduledtasks`|Shows all scheduled tasks on the device.| |`services`|Shows all services on the device.| |`trace`|Sets the terminal's logging mode to debug.|
+|
### Advanced commands The following commands are available for user roles that are granted the ability to run **advanced** live response commands. For more information on role assignments, see [Create and manage roles](user-roles.md).
+<br>
+
+****
+ |Command|Description| ||| |`analyze`|Analyses the entity with various incrimination engines to reach a verdict.| |`run`|Runs a PowerShell script from the library on the device.| |`library`|Lists files that were uploaded to the live response library.| |`putfile`|Puts a file from the library to the device. Files are saved in a working folder and are deleted when the device restarts by default.|
-|`remediate`|Remediates an entity on the device. The remediation action will vary depending on the entity type:<br>- File: delete<br>- Process: stop, delete image file<br>- Service: stop, delete image file<br>- Registry entry: delete<br>- Scheduled task: remove<br>- Startup folder item: delete file <br> NOTE: This command has a prerequisite command. You can use the `-auto` command in conjunction with `remediate` to automatically run the prerequisite command.
+|`remediate`|Remediates an entity on the device. The remediation action will vary depending on the entity type: <ul><li>File: delete</li><li>Process: stop, delete image file</li><li>Service: stop, delete image file</li><li>Registry entry: delete</li><li>Scheduled task: remove</li><li>Startup folder item: delete file</li></ul> <p> **NOTE**: This command has a prerequisite command. You can use the `-auto` command in conjunction with `remediate` to automatically run the prerequisite command.
|`undo`|Restores an entity that was remediated.|
+|
## Use live response commands
To enable your security operations team to continue investigating an impacted de
Here are some examples:
+<br>
+
+****
+ |Command|What it does| ||| |`getfile "C:\windows\some_file.exe" &`|Starts downloading a file named *some_file.exe* in the background.| |`fg 1234`|Returns a download with command ID *1234* to the foreground.|
+|
### Put a file in the library
security Mac Device Control Intune https://github.com/MicrosoftDocs/microsoft-365-docs/commits/public/microsoft-365/security/defender-endpoint/mac-device-control-intune.md
localization_priority: Normal audience: ITPro-+ - m365-security-compliance - m365initiative-defender-endpoint
This document contains examples of device control policies that you can customiz
The following example restricts access to all removable media. Note the `none` permission that is applied at the top level of the policy, meaning that all file operations will be disallowed. ```xml
-<?xml version="1.0" encoding="utf-8"?>
-<!DOCTYPE plist PUBLIC "-//Apple//DTD PLIST 1.0//EN" "http://www.apple.com/DTDs/PropertyList-1.0.dtd">
-<plist version="1">
- <dict>
- <key>PayloadUUID</key>
- <string>C4E6A782-0C8D-44AB-A025-EB893987A295</string>
- <key>PayloadType</key>
- <string>Configuration</string>
- <key>PayloadOrganization</key>
- <string>Microsoft</string>
- <key>PayloadIdentifier</key>
- <string>com.microsoft.wdav</string>
- <key>PayloadDisplayName</key>
- <string>Microsoft Defender ATP settings</string>
- <key>PayloadDescription</key>
- <string>Microsoft Defender ATP configuration settings</string>
- <key>PayloadVersion</key>
- <integer>1</integer>
- <key>PayloadEnabled</key>
- <true/>
- <key>PayloadRemovalDisallowed</key>
- <true/>
- <key>PayloadScope</key>
- <string>System</string>
- <key>PayloadContent</key>
- <array>
- <dict>
- <key>PayloadUUID</key>
- <string>99DBC2BC-3B3A-46A2-A413-C8F9BB9A7295</string>
- <key>PayloadType</key>
- <string>com.microsoft.wdav</string>
- <key>PayloadOrganization</key>
- <string>Microsoft</string>
- <key>PayloadIdentifier</key>
- <string>com.microsoft.wdav</string>
- <key>PayloadDisplayName</key>
- <string>Microsoft Defender ATP configuration settings</string>
- <key>PayloadDescription</key>
- <string/>
- <key>PayloadVersion</key>
- <integer>1</integer>
- <key>PayloadEnabled</key>
- <true/>
- <key>deviceControl</key>
- <dict>
- <key>removableMediaPolicy</key>
- <dict>
- <key>enforcementLevel</key>
- <string>block</string>
- <key>permission</key>
- <array>
- <string>none</string>
- </array>
- </dict>
+<?xml version="1.0" encoding="utf-8"?>
+<!DOCTYPE plist PUBLIC "-//Apple//DTD PLIST 1.0//EN" "http://www.apple.com/DTDs/PropertyList-1.0.dtd">
+<plist version="1">
+ <dict>
+ <key>PayloadUUID</key>
+ <string>C4E6A782-0C8D-44AB-A025-EB893987A295</string>
+ <key>PayloadType</key>
+ <string>Configuration</string>
+ <key>PayloadOrganization</key>
+ <string>Microsoft</string>
+ <key>PayloadIdentifier</key>
+ <string>com.microsoft.wdav</string>
+ <key>PayloadDisplayName</key>
+ <string>Microsoft Defender ATP settings</string>
+ <key>PayloadDescription</key>
+ <string>Microsoft Defender ATP configuration settings</string>
+ <key>PayloadVersion</key>
+ <integer>1</integer>
+ <key>PayloadEnabled</key>
+ <true/>
+ <key>PayloadRemovalDisallowed</key>
+ <true/>
+ <key>PayloadScope</key>
+ <string>System</string>
+ <key>PayloadContent</key>
+ <array>
+ <dict>
+ <key>PayloadUUID</key>
+ <string>99DBC2BC-3B3A-46A2-A413-C8F9BB9A7295</string>
+ <key>PayloadType</key>
+ <string>com.microsoft.wdav</string>
+ <key>PayloadOrganization</key>
+ <string>Microsoft</string>
+ <key>PayloadIdentifier</key>
+ <string>com.microsoft.wdav</string>
+ <key>PayloadDisplayName</key>
+ <string>Microsoft Defender ATP configuration settings</string>
+ <key>PayloadDescription</key>
+ <string/>
+ <key>PayloadVersion</key>
+ <integer>1</integer>
+ <key>PayloadEnabled</key>
+ <true/>
+ <key>deviceControl</key>
+ <dict>
+ <key>removableMediaPolicy</key>
+ <dict>
+ <key>enforcementLevel</key>
+ <string>block</string>
+ <key>permission</key>
+ <array>
+ <string>none</string>
+ </array>
+ </dict>
</dict>
- </dict>
- </array>
- </dict>
+ </dict>
+ </array>
+ </dict>
</plist> ```
The following example restricts access to all removable media. Note the `none` p
The following example configures all removable media to be read-only. Note the `read` permission that is applied at the top level of the policy, meaning that all write and execute operations will be disallowed. ```xml
-<?xml version="1.0" encoding="utf-8"?>
-<!DOCTYPE plist PUBLIC "-//Apple//DTD PLIST 1.0//EN" "http://www.apple.com/DTDs/PropertyList-1.0.dtd">
-<plist version="1">
- <dict>
- <key>PayloadUUID</key>
- <string>C4E6A782-0C8D-44AB-A025-EB893987A295</string>
- <key>PayloadType</key>
- <string>Configuration</string>
- <key>PayloadOrganization</key>
- <string>Microsoft</string>
- <key>PayloadIdentifier</key>
- <string>com.microsoft.wdav</string>
- <key>PayloadDisplayName</key>
- <string>Microsoft Defender ATP settings</string>
- <key>PayloadDescription</key>
- <string>Microsoft Defender ATP configuration settings</string>
- <key>PayloadVersion</key>
- <integer>1</integer>
- <key>PayloadEnabled</key>
- <true/>
- <key>PayloadRemovalDisallowed</key>
- <true/>
- <key>PayloadScope</key>
- <string>System</string>
- <key>PayloadContent</key>
- <array>
- <dict>
- <key>PayloadUUID</key>
- <string>99DBC2BC-3B3A-46A2-A413-C8F9BB9A7295</string>
- <key>PayloadType</key>
- <string>com.microsoft.wdav</string>
- <key>PayloadOrganization</key>
- <string>Microsoft</string>
- <key>PayloadIdentifier</key>
- <string>com.microsoft.wdav</string>
- <key>PayloadDisplayName</key>
- <string>Microsoft Defender ATP configuration settings</string>
- <key>PayloadDescription</key>
- <string/>
- <key>PayloadVersion</key>
- <integer>1</integer>
- <key>PayloadEnabled</key>
- <true/>
- <key>deviceControl</key>
- <dict>
- <key>removableMediaPolicy</key>
- <dict>
- <key>enforcementLevel</key>
- <string>block</string>
- <key>permission</key>
- <array>
- <string>read</string>
- </array>
- </dict>
+<?xml version="1.0" encoding="utf-8"?>
+<!DOCTYPE plist PUBLIC "-//Apple//DTD PLIST 1.0//EN" "http://www.apple.com/DTDs/PropertyList-1.0.dtd">
+<plist version="1">
+ <dict>
+ <key>PayloadUUID</key>
+ <string>C4E6A782-0C8D-44AB-A025-EB893987A295</string>
+ <key>PayloadType</key>
+ <string>Configuration</string>
+ <key>PayloadOrganization</key>
+ <string>Microsoft</string>
+ <key>PayloadIdentifier</key>
+ <string>com.microsoft.wdav</string>
+ <key>PayloadDisplayName</key>
+ <string>Microsoft Defender ATP settings</string>
+ <key>PayloadDescription</key>
+ <string>Microsoft Defender ATP configuration settings</string>
+ <key>PayloadVersion</key>
+ <integer>1</integer>
+ <key>PayloadEnabled</key>
+ <true/>
+ <key>PayloadRemovalDisallowed</key>
+ <true/>
+ <key>PayloadScope</key>
+ <string>System</string>
+ <key>PayloadContent</key>
+ <array>
+ <dict>
+ <key>PayloadUUID</key>
+ <string>99DBC2BC-3B3A-46A2-A413-C8F9BB9A7295</string>
+ <key>PayloadType</key>
+ <string>com.microsoft.wdav</string>
+ <key>PayloadOrganization</key>
+ <string>Microsoft</string>
+ <key>PayloadIdentifier</key>
+ <string>com.microsoft.wdav</string>
+ <key>PayloadDisplayName</key>
+ <string>Microsoft Defender ATP configuration settings</string>
+ <key>PayloadDescription</key>
+ <string/>
+ <key>PayloadVersion</key>
+ <integer>1</integer>
+ <key>PayloadEnabled</key>
+ <true/>
+ <key>deviceControl</key>
+ <dict>
+ <key>removableMediaPolicy</key>
+ <dict>
+ <key>enforcementLevel</key>
+ <string>block</string>
+ <key>permission</key>
+ <array>
+ <string>read</string>
+ </array>
+ </dict>
</dict>
- </dict>
- </array>
- </dict>
+ </dict>
+ </array>
+ </dict>
</plist> ```
The following example configures all removable media to be read-only. Note the `
The following example shows how program execution from removable media can be disallowed. Note the `read` and `write` permissions that are applied at the top level of the policy. ```xml
-<?xml version="1.0" encoding="utf-8"?>
-<!DOCTYPE plist PUBLIC "-//Apple//DTD PLIST 1.0//EN" "http://www.apple.com/DTDs/PropertyList-1.0.dtd">
-<plist version="1">
- <dict>
- <key>PayloadUUID</key>
- <string>C4E6A782-0C8D-44AB-A025-EB893987A295</string>
- <key>PayloadType</key>
- <string>Configuration</string>
- <key>PayloadOrganization</key>
- <string>Microsoft</string>
- <key>PayloadIdentifier</key>
- <string>com.microsoft.wdav</string>
- <key>PayloadDisplayName</key>
- <string>Microsoft Defender ATP settings</string>
- <key>PayloadDescription</key>
- <string>Microsoft Defender ATP configuration settings</string>
- <key>PayloadVersion</key>
- <integer>1</integer>
- <key>PayloadEnabled</key>
- <true/>
- <key>PayloadRemovalDisallowed</key>
- <true/>
- <key>PayloadScope</key>
- <string>System</string>
- <key>PayloadContent</key>
- <array>
- <dict>
- <key>PayloadUUID</key>
- <string>99DBC2BC-3B3A-46A2-A413-C8F9BB9A7295</string>
- <key>PayloadType</key>
- <string>com.microsoft.wdav</string>
- <key>PayloadOrganization</key>
- <string>Microsoft</string>
- <key>PayloadIdentifier</key>
- <string>com.microsoft.wdav</string>
- <key>PayloadDisplayName</key>
- <string>Microsoft Defender ATP configuration settings</string>
- <key>PayloadDescription</key>
- <string/>
- <key>PayloadVersion</key>
- <integer>1</integer>
- <key>PayloadEnabled</key>
- <true/>
- <key>deviceControl</key>
- <dict>
- <key>removableMediaPolicy</key>
- <dict>
- <key>enforcementLevel</key>
- <string>block</string>
- <key>permission</key>
- <array>
+<?xml version="1.0" encoding="utf-8"?>
+<!DOCTYPE plist PUBLIC "-//Apple//DTD PLIST 1.0//EN" "http://www.apple.com/DTDs/PropertyList-1.0.dtd">
+<plist version="1">
+ <dict>
+ <key>PayloadUUID</key>
+ <string>C4E6A782-0C8D-44AB-A025-EB893987A295</string>
+ <key>PayloadType</key>
+ <string>Configuration</string>
+ <key>PayloadOrganization</key>
+ <string>Microsoft</string>
+ <key>PayloadIdentifier</key>
+ <string>com.microsoft.wdav</string>
+ <key>PayloadDisplayName</key>
+ <string>Microsoft Defender ATP settings</string>
+ <key>PayloadDescription</key>
+ <string>Microsoft Defender ATP configuration settings</string>
+ <key>PayloadVersion</key>
+ <integer>1</integer>
+ <key>PayloadEnabled</key>
+ <true/>
+ <key>PayloadRemovalDisallowed</key>
+ <true/>
+ <key>PayloadScope</key>
+ <string>System</string>
+ <key>PayloadContent</key>
+ <array>
+ <dict>
+ <key>PayloadUUID</key>
+ <string>99DBC2BC-3B3A-46A2-A413-C8F9BB9A7295</string>
+ <key>PayloadType</key>
+ <string>com.microsoft.wdav</string>
+ <key>PayloadOrganization</key>
+ <string>Microsoft</string>
+ <key>PayloadIdentifier</key>
+ <string>com.microsoft.wdav</string>
+ <key>PayloadDisplayName</key>
+ <string>Microsoft Defender ATP configuration settings</string>
+ <key>PayloadDescription</key>
+ <string/>
+ <key>PayloadVersion</key>
+ <integer>1</integer>
+ <key>PayloadEnabled</key>
+ <true/>
+ <key>deviceControl</key>
+ <dict>
+ <key>removableMediaPolicy</key>
+ <dict>
+ <key>enforcementLevel</key>
+ <string>block</string>
+ <key>permission</key>
+ <array>
<string>read</string>
- <string>write</string>
- </array>
- </dict>
+ <string>write</string>
+ </array>
+ </dict>
</dict>
- </dict>
- </array>
- </dict>
-</plist>
+ </dict>
+ </array>
+ </dict>
+</plist>
``` ## Restrict all devices from specific vendors
The following example shows how program execution from removable media can be di
The following example restricts all devices from specific vendors (in this case identified by `fff0` and `4525`). All other devices will be unrestricted, since the permission defined at the top level of the policy lists all possible permissions (read, write, and execute). ```xml
-<?xml version="1.0" encoding="utf-8"?>
-<!DOCTYPE plist PUBLIC "-//Apple//DTD PLIST 1.0//EN" "http://www.apple.com/DTDs/PropertyList-1.0.dtd">
-<plist version="1">
- <dict>
- <key>PayloadUUID</key>
- <string>C4E6A782-0C8D-44AB-A025-EB893987A295</string>
- <key>PayloadType</key>
- <string>Configuration</string>
- <key>PayloadOrganization</key>
- <string>Microsoft</string>
- <key>PayloadIdentifier</key>
- <string>com.microsoft.wdav</string>
- <key>PayloadDisplayName</key>
- <string>Microsoft Defender ATP settings</string>
- <key>PayloadDescription</key>
- <string>Microsoft Defender ATP configuration settings</string>
- <key>PayloadVersion</key>
- <integer>1</integer>
- <key>PayloadEnabled</key>
- <true/>
- <key>PayloadRemovalDisallowed</key>
- <true/>
- <key>PayloadScope</key>
- <string>System</string>
- <key>PayloadContent</key>
- <array>
- <dict>
- <key>PayloadUUID</key>
- <string>99DBC2BC-3B3A-46A2-A413-C8F9BB9A7295</string>
- <key>PayloadType</key>
- <string>com.microsoft.wdav</string>
- <key>PayloadOrganization</key>
- <string>Microsoft</string>
- <key>PayloadIdentifier</key>
- <string>com.microsoft.wdav</string>
- <key>PayloadDisplayName</key>
- <string>Microsoft Defender ATP configuration settings</string>
- <key>PayloadDescription</key>
- <string/>
- <key>PayloadVersion</key>
- <integer>1</integer>
- <key>PayloadEnabled</key>
- <true/>
- <key>deviceControl</key>
- <dict>
- <key>removableMediaPolicy</key>
- <dict>
- <key>enforcementLevel</key>
- <string>block</string>
- <key>permission</key>
- <array>
+<?xml version="1.0" encoding="utf-8"?>
+<!DOCTYPE plist PUBLIC "-//Apple//DTD PLIST 1.0//EN" "http://www.apple.com/DTDs/PropertyList-1.0.dtd">
+<plist version="1">
+ <dict>
+ <key>PayloadUUID</key>
+ <string>C4E6A782-0C8D-44AB-A025-EB893987A295</string>
+ <key>PayloadType</key>
+ <string>Configuration</string>
+ <key>PayloadOrganization</key>
+ <string>Microsoft</string>
+ <key>PayloadIdentifier</key>
+ <string>com.microsoft.wdav</string>
+ <key>PayloadDisplayName</key>
+ <string>Microsoft Defender ATP settings</string>
+ <key>PayloadDescription</key>
+ <string>Microsoft Defender ATP configuration settings</string>
+ <key>PayloadVersion</key>
+ <integer>1</integer>
+ <key>PayloadEnabled</key>
+ <true/>
+ <key>PayloadRemovalDisallowed</key>
+ <true/>
+ <key>PayloadScope</key>
+ <string>System</string>
+ <key>PayloadContent</key>
+ <array>
+ <dict>
+ <key>PayloadUUID</key>
+ <string>99DBC2BC-3B3A-46A2-A413-C8F9BB9A7295</string>
+ <key>PayloadType</key>
+ <string>com.microsoft.wdav</string>
+ <key>PayloadOrganization</key>
+ <string>Microsoft</string>
+ <key>PayloadIdentifier</key>
+ <string>com.microsoft.wdav</string>
+ <key>PayloadDisplayName</key>
+ <string>Microsoft Defender ATP configuration settings</string>
+ <key>PayloadDescription</key>
+ <string/>
+ <key>PayloadVersion</key>
+ <integer>1</integer>
+ <key>PayloadEnabled</key>
+ <true/>
+ <key>deviceControl</key>
+ <dict>
+ <key>removableMediaPolicy</key>
+ <dict>
+ <key>enforcementLevel</key>
+ <string>block</string>
+ <key>permission</key>
+ <array>
<string>read</string> <string>write</string>
- <string>execute</string>
- </array>
- <key>vendors</key>
- <dict>
- <key>fff0</key>
- <dict>
- <key>permission</key>
- <array>
- <string>none</string>
- </array>
- </dict>
- <key>4525</key>
- <dict>
- <key>permission</key>
- <array>
- <string>none</string>
- </array>
- </dict>
- </dict>
- </dict>
+ <string>execute</string>
+ </array>
+ <key>vendors</key>
+ <dict>
+ <key>fff0</key>
+ <dict>
+ <key>permission</key>
+ <array>
+ <string>none</string>
+ </array>
+ </dict>
+ <key>4525</key>
+ <dict>
+ <key>permission</key>
+ <array>
+ <string>none</string>
+ </array>
+ </dict>
+ </dict>
+ </dict>
</dict>
- </dict>
- </array>
- </dict>
+ </dict>
+ </array>
+ </dict>
</plist> ```
The following example restricts all devices from specific vendors (in this case
The following example restricts two specific devices, identified by vendor ID `fff0`, product ID `1000`, and serial numbers `04ZSSMHI2O7WBVOA` and `04ZSSMHI2O7WBVOB`. At all other levels of the policy the permissions include all possible values (read, write, and execute), meaning that all other devices will be unrestricted. ```xml
-<?xml version="1.0" encoding="utf-8"?>
-<!DOCTYPE plist PUBLIC "-//Apple//DTD PLIST 1.0//EN" "http://www.apple.com/DTDs/PropertyList-1.0.dtd">
-<plist version="1">
- <dict>
- <key>PayloadUUID</key>
- <string>C4E6A782-0C8D-44AB-A025-EB893987A295</string>
- <key>PayloadType</key>
- <string>Configuration</string>
- <key>PayloadOrganization</key>
- <string>Microsoft</string>
- <key>PayloadIdentifier</key>
- <string>com.microsoft.wdav</string>
- <key>PayloadDisplayName</key>
- <string>Microsoft Defender ATP settings</string>
- <key>PayloadDescription</key>
- <string>Microsoft Defender ATP configuration settings</string>
- <key>PayloadVersion</key>
- <integer>1</integer>
- <key>PayloadEnabled</key>
- <true/>
- <key>PayloadRemovalDisallowed</key>
- <true/>
- <key>PayloadScope</key>
- <string>System</string>
- <key>PayloadContent</key>
- <array>
- <dict>
- <key>PayloadUUID</key>
- <string>99DBC2BC-3B3A-46A2-A413-C8F9BB9A7295</string>
- <key>PayloadType</key>
- <string>com.microsoft.wdav</string>
- <key>PayloadOrganization</key>
- <string>Microsoft</string>
- <key>PayloadIdentifier</key>
- <string>com.microsoft.wdav</string>
- <key>PayloadDisplayName</key>
- <string>Microsoft Defender ATP configuration settings</string>
- <key>PayloadDescription</key>
- <string/>
- <key>PayloadVersion</key>
- <integer>1</integer>
- <key>PayloadEnabled</key>
- <true/>
- <key>deviceControl</key>
- <dict>
- <key>removableMediaPolicy</key>
- <dict>
- <key>enforcementLevel</key>
- <string>block</string>
- <key>permission</key>
- <array>
+<?xml version="1.0" encoding="utf-8"?>
+<!DOCTYPE plist PUBLIC "-//Apple//DTD PLIST 1.0//EN" "http://www.apple.com/DTDs/PropertyList-1.0.dtd">
+<plist version="1">
+ <dict>
+ <key>PayloadUUID</key>
+ <string>C4E6A782-0C8D-44AB-A025-EB893987A295</string>
+ <key>PayloadType</key>
+ <string>Configuration</string>
+ <key>PayloadOrganization</key>
+ <string>Microsoft</string>
+ <key>PayloadIdentifier</key>
+ <string>com.microsoft.wdav</string>
+ <key>PayloadDisplayName</key>
+ <string>Microsoft Defender ATP settings</string>
+ <key>PayloadDescription</key>
+ <string>Microsoft Defender ATP configuration settings</string>
+ <key>PayloadVersion</key>
+ <integer>1</integer>
+ <key>PayloadEnabled</key>
+ <true/>
+ <key>PayloadRemovalDisallowed</key>
+ <true/>
+ <key>PayloadScope</key>
+ <string>System</string>
+ <key>PayloadContent</key>
+ <array>
+ <dict>
+ <key>PayloadUUID</key>
+ <string>99DBC2BC-3B3A-46A2-A413-C8F9BB9A7295</string>
+ <key>PayloadType</key>
+ <string>com.microsoft.wdav</string>
+ <key>PayloadOrganization</key>
+ <string>Microsoft</string>
+ <key>PayloadIdentifier</key>
+ <string>com.microsoft.wdav</string>
+ <key>PayloadDisplayName</key>
+ <string>Microsoft Defender ATP configuration settings</string>
+ <key>PayloadDescription</key>
+ <string/>
+ <key>PayloadVersion</key>
+ <integer>1</integer>
+ <key>PayloadEnabled</key>
+ <true/>
+ <key>deviceControl</key>
+ <dict>
+ <key>removableMediaPolicy</key>
+ <dict>
+ <key>enforcementLevel</key>
+ <string>block</string>
+ <key>permission</key>
+ <array>
<string>read</string> <string>write</string> <string>execute</string>
- </array>
- <key>vendors</key>
- <dict>
- <key>fff0</key>
- <dict>
- <key>permission</key>
- <array>
- <string>read</string>
+ </array>
+ <key>vendors</key>
+ <dict>
+ <key>fff0</key>
+ <dict>
+ <key>permission</key>
+ <array>
+ <string>read</string>
<string>write</string>
- <string>execute</string>
- </array>
- <key>products</key>
- <dict>
- <key>1000</key>
- <dict>
- <key>permission</key>
- <array>
- <string>read</string>
+ <string>execute</string>
+ </array>
+ <key>products</key>
+ <dict>
+ <key>1000</key>
+ <dict>
+ <key>permission</key>
+ <array>
+ <string>read</string>
<string>write</string> <string>execute</string>
- </array>
- <key>serialNumbers</key>
- <dict>
- <key>04ZSSMHI2O7WBVOA</key>
- <array>
- <string>none</string>
- </array>
+ </array>
+ <key>serialNumbers</key>
+ <dict>
+ <key>04ZSSMHI2O7WBVOA</key>
+ <array>
+ <string>none</string>
+ </array>
<key>04ZSSMHI2O7WBVOB</key>
- <array>
- <string>none</string>
- </array>
- </dict>
- </dict>
- </dict>
+ <array>
+ <string>none</string>
+ </array>
+ </dict>
+ </dict>
+ </dict>
</dict>
- </dict>
- </dict>
+ </dict>
+ </dict>
</dict>
- </dict>
- </array>
- </dict>
+ </dict>
+ </array>
+ </dict>
</plist> ```
security Mac Device Control Jamf https://github.com/MicrosoftDocs/microsoft-365-docs/commits/public/microsoft-365/security/defender-endpoint/mac-device-control-jamf.md
localization_priority: Normal audience: ITPro-+ - m365-security-compliance - m365initiative-defender-endpoint
This document contains examples of device control policies that you can customiz
The following example restricts access to all removable media. Note the `none` permission that is applied at the top level of the policy, meaning that all file operations will be prohibited. ```xml
-<?xml version="1.0" encoding="UTF-8"?>
-<!DOCTYPE plist PUBLIC "-//Apple//DTD PLIST 1.0//EN" "http://www.apple.com/DTDs/PropertyList-1.0.dtd">
-<plist version="1.0">
-<dict>
- <key>deviceControl</key>
- <dict>
- <key>removableMediaPolicy</key>
- <dict>
- <key>enforcementLevel</key>
- <string>block</string>
- <key>permission</key>
- <array>
- <string>none</string>
- </array>
- </dict>
- </dict>
-</dict>
+<?xml version="1.0" encoding="UTF-8"?>
+<!DOCTYPE plist PUBLIC "-//Apple//DTD PLIST 1.0//EN" "http://www.apple.com/DTDs/PropertyList-1.0.dtd">
+<plist version="1.0">
+<dict>
+ <key>deviceControl</key>
+ <dict>
+ <key>removableMediaPolicy</key>
+ <dict>
+ <key>enforcementLevel</key>
+ <string>block</string>
+ <key>permission</key>
+ <array>
+ <string>none</string>
+ </array>
+ </dict>
+ </dict>
+</dict>
</plist> ```
The following example restricts access to all removable media. Note the `none` p
The following example configures all removable media to be read-only. Note the `read` permission that is applied at the top level of the policy, meaning that all write and execute operations will be disallowed. ```xml
-<?xml version="1.0" encoding="UTF-8"?>
-<!DOCTYPE plist PUBLIC "-//Apple//DTD PLIST 1.0//EN" "http://www.apple.com/DTDs/PropertyList-1.0.dtd">
-<plist version="1.0">
-<dict>
- <key>deviceControl</key>
- <dict>
- <key>removableMediaPolicy</key>
- <dict>
- <key>enforcementLevel</key>
- <string>block</string>
- <key>permission</key>
- <array>
- <string>read</string>
- </array>
- </dict>
- </dict>
-</dict>
+<?xml version="1.0" encoding="UTF-8"?>
+<!DOCTYPE plist PUBLIC "-//Apple//DTD PLIST 1.0//EN" "http://www.apple.com/DTDs/PropertyList-1.0.dtd">
+<plist version="1.0">
+<dict>
+ <key>deviceControl</key>
+ <dict>
+ <key>removableMediaPolicy</key>
+ <dict>
+ <key>enforcementLevel</key>
+ <string>block</string>
+ <key>permission</key>
+ <array>
+ <string>read</string>
+ </array>
+ </dict>
+ </dict>
+</dict>
</plist> ```
The following example configures all removable media to be read-only. Note the `
The following example shows how program execution from removable media can be disallowed. Note the `read` and `write` permissions that are applied at the top level of the policy. ```xml
-<?xml version="1.0" encoding="UTF-8"?>
-<!DOCTYPE plist PUBLIC "-//Apple//DTD PLIST 1.0//EN" "http://www.apple.com/DTDs/PropertyList-1.0.dtd">
-<plist version="1.0">
-<dict>
- <key>deviceControl</key>
- <dict>
- <key>removableMediaPolicy</key>
- <dict>
- <key>enforcementLevel</key>
- <string>block</string>
- <key>permission</key>
- <array>
+<?xml version="1.0" encoding="UTF-8"?>
+<!DOCTYPE plist PUBLIC "-//Apple//DTD PLIST 1.0//EN" "http://www.apple.com/DTDs/PropertyList-1.0.dtd">
+<plist version="1.0">
+<dict>
+ <key>deviceControl</key>
+ <dict>
+ <key>removableMediaPolicy</key>
+ <dict>
+ <key>enforcementLevel</key>
+ <string>block</string>
+ <key>permission</key>
+ <array>
<string>read</string>
- <string>write</string>
- </array>
- </dict>
- </dict>
-</dict>
+ <string>write</string>
+ </array>
+ </dict>
+ </dict>
+</dict>
</plist> ```
The following example shows how program execution from removable media can be di
The following example restricts all devices from specific vendors (in this case identified by `fff0` and `4525`). All other devices will be unrestricted, since the permission defined at the top level of the policy lists all possible permissions (read, write, and execute). ```xml
-<?xml version="1.0" encoding="UTF-8"?>
-<!DOCTYPE plist PUBLIC "-//Apple//DTD PLIST 1.0//EN" "http://www.apple.com/DTDs/PropertyList-1.0.dtd">
-<plist version="1.0">
-<dict>
- <key>deviceControl</key>
- <dict>
- <key>removableMediaPolicy</key>
- <dict>
- <key>enforcementLevel</key>
- <string>block</string>
- <key>permission</key>
- <array>
+<?xml version="1.0" encoding="UTF-8"?>
+<!DOCTYPE plist PUBLIC "-//Apple//DTD PLIST 1.0//EN" "http://www.apple.com/DTDs/PropertyList-1.0.dtd">
+<plist version="1.0">
+<dict>
+ <key>deviceControl</key>
+ <dict>
+ <key>removableMediaPolicy</key>
+ <dict>
+ <key>enforcementLevel</key>
+ <string>block</string>
+ <key>permission</key>
+ <array>
<string>read</string> <string>write</string>
- <string>execute</string>
- </array>
- <key>vendors</key>
- <dict>
- <key>fff0</key>
- <dict>
- <key>permission</key>
- <array>
- <string>none</string>
- </array>
- </dict>
- <key>4525</key>
- <dict>
- <key>permission</key>
- <array>
- <string>none</string>
- </array>
- </dict>
- </dict>
- </dict>
- </dict>
-</dict>
-</plist>
+ <string>execute</string>
+ </array>
+ <key>vendors</key>
+ <dict>
+ <key>fff0</key>
+ <dict>
+ <key>permission</key>
+ <array>
+ <string>none</string>
+ </array>
+ </dict>
+ <key>4525</key>
+ <dict>
+ <key>permission</key>
+ <array>
+ <string>none</string>
+ </array>
+ </dict>
+ </dict>
+ </dict>
+ </dict>
+</dict>
+</plist>
``` ## Restrict specific devices identified by vendor ID, product ID, and serial number
The following example restricts all devices from specific vendors (in this case
The following example restricts two specific devices, identified by vendor ID `fff0`, product ID `1000`, and serial numbers `04ZSSMHI2O7WBVOA` and `04ZSSMHI2O7WBVOB`. At all other levels of the policy the permissions include all possible values (read, write, and execute), meaning that all other devices will be unrestricted. ```xml
-<?xml version="1.0" encoding="UTF-8"?>
-<!DOCTYPE plist PUBLIC "-//Apple//DTD PLIST 1.0//EN" "http://www.apple.com/DTDs/PropertyList-1.0.dtd">
-<plist version="1.0">
-<dict>
- <key>deviceControl</key>
- <dict>
- <key>removableMediaPolicy</key>
- <dict>
- <key>enforcementLevel</key>
- <string>block</string>
- <key>permission</key>
- <array>
+<?xml version="1.0" encoding="UTF-8"?>
+<!DOCTYPE plist PUBLIC "-//Apple//DTD PLIST 1.0//EN" "http://www.apple.com/DTDs/PropertyList-1.0.dtd">
+<plist version="1.0">
+<dict>
+ <key>deviceControl</key>
+ <dict>
+ <key>removableMediaPolicy</key>
+ <dict>
+ <key>enforcementLevel</key>
+ <string>block</string>
+ <key>permission</key>
+ <array>
<string>read</string> <string>write</string> <string>execute</string>
- </array>
- <key>vendors</key>
- <dict>
- <key>fff0</key>
- <dict>
- <key>permission</key>
- <array>
- <string>read</string>
+ </array>
+ <key>vendors</key>
+ <dict>
+ <key>fff0</key>
+ <dict>
+ <key>permission</key>
+ <array>
+ <string>read</string>
<string>write</string>
- <string>execute</string>
- </array>
- <key>products</key>
- <dict>
- <key>1000</key>
- <dict>
- <key>permission</key>
- <array>
- <string>read</string>
+ <string>execute</string>
+ </array>
+ <key>products</key>
+ <dict>
+ <key>1000</key>
+ <dict>
+ <key>permission</key>
+ <array>
+ <string>read</string>
<string>write</string> <string>execute</string>
- </array>
- <key>serialNumbers</key>
- <dict>
- <key>04ZSSMHI2O7WBVOA</key>
- <array>
- <string>none</string>
- </array>
+ </array>
+ <key>serialNumbers</key>
+ <dict>
+ <key>04ZSSMHI2O7WBVOA</key>
+ <array>
+ <string>none</string>
+ </array>
<key>04ZSSMHI2O7WBVOB</key>
- <array>
- <string>none</string>
- </array>
- </dict>
- </dict>
- </dict>
+ <array>
+ <string>none</string>
+ </array>
+ </dict>
+ </dict>
+ </dict>
</dict>
- </dict>
- </dict>
- </dict>
-</dict>
-</plist>
+ </dict>
+ </dict>
+ </dict>
+</dict>
+</plist>
``` ## Related topics
security Mac Device Control Overview https://github.com/MicrosoftDocs/microsoft-365-docs/commits/public/microsoft-365/security/defender-endpoint/mac-device-control-overview.md
localization_priority: Normal audience: ITPro-+ - m365-security-compliance - m365initiative-defender-endpoint
ms.technology: mde
Device control for macOS has the following prerequisites:
->[!div class="checklist"]
+> [!div class="checklist"]
+>
> - Microsoft Defender for Endpoint entitlement (can be trial) > - Minimum OS version: macOS 11 or higher > - Minimum product version: 101.34.20
The device control policy is included in the configuration profile used to confi
Within the configuration profile, the device control policy is defined in the following section:
+<br>
+
+****
+ |Section|Value|
-|:|:|
-| **Domain** | `com.microsoft.wdav` |
-| **Key** | deviceControl |
-| **Data type** | Dictionary (nested preference) |
-| **Comments** | See the following sections for a description of the dictionary contents. |
+|||
+|**Domain**|`com.microsoft.wdav`|
+|**Key**|deviceControl|
+|**Data type**|Dictionary (nested preference)|
+|**Comments**|See the following sections for a description of the dictionary contents.|
+|
The device control policy can be used to:
When the device control policy that you have put in place is enforced on a devic
When end users click this notification, a web page is opened in the default browser. You can configure the URL that is opened when end users click the notification.
+<br>
+
+****
+ |Section|Value|
-|:|:|
-| **Domain** | `com.microsoft.wdav` |
-| **Key** | navigationTarget |
-| **Data type** | String |
-| **Comments** | If not defined, the product uses a default URL pointing to a generic page explaining the action taken by the product. |
+|||
+|**Domain**|`com.microsoft.wdav`|
+|**Key**|navigationTarget|
+|**Data type**|String|
+|**Comments**|If not defined, the product uses a default URL pointing to a generic page explaining the action taken by the product.|
+|
### Allow or block removable devices
-The removable media section of the device control policy is used to restrict access to removable media.
+The removable media section of the device control policy is used to restrict access to removable media.
> [!NOTE] > The following types of removable media are currently supported and can be included in the policy: USB storage devices.
+<br>
+
+****
+ |Section|Value|
-|:|:|
-| **Domain** | `com.microsoft.wdav` |
-| **Key** | removableMediaPolicy |
-| **Data type** | Dictionary (nested preference) |
-| **Comments** | See the following sections for a description of the dictionary contents. |
+|||
+|**Domain**|`com.microsoft.wdav`|
+|**Key**|removableMediaPolicy|
+|**Data type**|Dictionary (nested preference)|
+|**Comments**|See the following sections for a description of the dictionary contents.|
+|
This section of the policy is hierarchical, allowing for maximum flexibility and covering a wide range of use cases. At the top level are vendors, identified by a vendor ID. For each vendor, there are products, identified by a product ID. Finally, for each product there are serial numbers denoting specific devices.
-```
-|-- policy top level
- |-- vendor 1
- |-- product 1
- |-- serial number 1
+```text
+|-- policy top level
+ |-- vendor 1
+ |-- product 1
+ |-- serial number 1
...
- |-- serial number N
+ |-- serial number N
...
- |-- product N
+ |-- product N
... |-- vendor N ```
The policy is evaluated from the most specific entry to the most general one. Me
Under the removable media section, there is an option to set the enforcement level, which can take one of the following values: - `audit` - Under this enforcement level, if access to a device is restricted, a notification is displayed to the user, however the device can still be used. This enforcement level can be useful to evaluate the effectiveness of a policy.-- `block` - Under this enforcement level, the operations that the user can perform on the device are limited to what is defined in the policy. Furthermore, a notification is raised to the user.
+- `block` - Under this enforcement level, the operations that the user can perform on the device are limited to what is defined in the policy. Furthermore, a notification is raised to the user.
-> [!NOTE]
-> By default, the enforcement level is set to `audit`.
+> [!NOTE]
+> By default, the enforcement level is set to `audit`.
+
+<br>
+
+****
|Section|Value|
-|:|:|
-| **Domain** | `com.microsoft.wdav` |
-| **Key** | enforcementLevel |
-| **Data type** | String |
-| **Possible values** | audit (default) <br/> block |
+|||
+|**Domain**|`com.microsoft.wdav`|
+|**Key**|enforcementLevel|
+|**Data type**|String|
+|**Possible values**|audit (default) <p> block|
+|
#### Default permission level
This setting can be set to:
- `none` - No operations can be performed on the device - A combination of the following values:
- - `read` - Read operations are permitted on the device
- - `write` - Write operations are permitted on the device
- - `execute` - Execute operations are permitted on the device
+ - `read` - Read operations are permitted on the device
+ - `write` - Write operations are permitted on the device
+ - `execute` - Execute operations are permitted on the device
> [!NOTE] > If `none` is present in the permission level, any other permissions (`read`, `write`, or `execute`) will be ignored.-
-> [!NOTE]
+>
> The `execute` permission only refers to execution of Mach-O binaries. It does not include execution of scripts or other types of payloads.
+<br>
+
+****
+ |Section|Value|
-|:|:|
-| **Domain** | `com.microsoft.wdav` |
-| **Key** | permission |
-| **Data type** | Array of strings |
-| **Possible values** | none <br/> read <br/> write <br/> execute |
+|||
+|**Domain**|`com.microsoft.wdav`|
+|**Key**|permission|
+|**Data type**|Array of strings|
+|**Possible values**|none <p> read <p> write <p> execute|
+|
#### Restrict removable media by vendor, product, and serial number As described in [Allow or block removable devices](#allow-or-block-removable-devices), removable media such as USB devices can be identified by the vendor ID, product ID, and serial number.
-At the top level of the removable media policy, you can optionally define more granular restrictions at the vendor level.
+At the top level of the removable media policy, you can optionally define more granular restrictions at the vendor level.
The `vendors` dictionary contains one or more entries, with each entry being identified by the vendor ID.
+<br>
+
+****
+ |Section|Value|
-|:|:|
-| **Domain** | `com.microsoft.wdav` |
-| **Key** | vendors |
-| **Data type** | Dictionary (nested preference) |
+|||
+|**Domain**|`com.microsoft.wdav`|
+|**Key**|vendors|
+|**Data type**|Dictionary (nested preference)|
+|
For each vendor, you can specify the desired permission level for devices from that vendor.
+<br>
+
+****
+ |Section|Value|
-|:|:|
-| **Domain** | `com.microsoft.wdav` |
-| **Key** | permission |
-| **Data type** | Array of strings |
-| **Possible values** | Same as [Default permission level](#default-permission-level) |
+|||
+|**Domain**|`com.microsoft.wdav`|
+|**Key**|permission|
+|**Data type**|Array of strings|
+|**Possible values**|Same as [Default permission level](#default-permission-level)|
+|
-Furthermore, you can optionally specify the set of products belonging to that vendor for which more granular permissions are defined. The `products` dictionary contains one or more entries, with each entry being identified by the product ID.
+Furthermore, you can optionally specify the set of products belonging to that vendor for which more granular permissions are defined. The `products` dictionary contains one or more entries, with each entry being identified by the product ID.
+
+<br>
+
+****
|Section|Value|
-|:|:|
-| **Domain** | `com.microsoft.wdav` |
-| **Key** | products |
-| **Data type** | Dictionary (nested preference) |
+|||
+|**Domain**|`com.microsoft.wdav`|
+|**Key**|products|
+|**Data type**|Dictionary (nested preference)|
+|
For each product, you can specify the desired permission level for that product.
+<br>
+
+****
+ |Section|Value|
-|:|:|
-| **Domain** | `com.microsoft.wdav` |
-| **Key** | permission |
-| **Data type** | Array of strings |
-| **Possible values** | Same as [Default permission level](#default-permission-level) |
+|||
+|**Domain**|`com.microsoft.wdav`|
+|**Key**|permission|
+|**Data type**|Array of strings|
+|**Possible values**|Same as [Default permission level](#default-permission-level)|
+|
Furthermore, you can specify an optional set of serial numbers for which more granular permissions are defined. The `serialNumbers` dictionary contains one or more entries, with each entry being identified by the serial number.
+<br>
+
+****
+ |Section|Value|
-|:|:|
-| **Domain** | `com.microsoft.wdav` |
-| **Key** | serialNumbers |
-| **Data type** | Dictionary (nested preference) |
+|||
+|**Domain**|`com.microsoft.wdav`|
+|**Key**|serialNumbers|
+|**Data type**|Dictionary (nested preference)|
+|
For each serial number, you can specify the desired permission level.
+<br>
+
+****
+ |Section|Value|
-|:|:|
-| **Domain** | `com.microsoft.wdav` |
-| **Key** | permission |
-| **Data type** | Array of strings |
-| **Possible values** | Same as [Default permission level](#default-permission-level) |
+|||
+|**Domain**|`com.microsoft.wdav`|
+|**Key**|permission|
+|**Data type**|Array of strings|
+|**Possible values**|Same as [Default permission level](#default-permission-level)|
+|
#### Example device control policy The following example shows how all of the above concepts can be combined into a device control policy. In the following example, note the hierarchical nature of the removable media policy. ```xml
-<?xml version="1.0" encoding="UTF-8"?>
-<!DOCTYPE plist PUBLIC "-//Apple//DTD PLIST 1.0//EN" "http://www.apple.com/DTDs/PropertyList-1.0.dtd">
-<plist version="1.0">
-<dict>
- <key>deviceControl</key>
- <dict>
- <key>navigationTarget</key>
- <string>[custom URL for notifications]</string>
- <key>removableMediaPolicy</key>
- <dict>
- <key>enforcementLevel</key>
- <string>[enforcement level]</string> <!-- audit / block -->
- <key>permission</key>
- <array>
- <string>[permission]</string> <!-- none / read / write / execute -->
+<?xml version="1.0" encoding="UTF-8"?>
+<!DOCTYPE plist PUBLIC "-//Apple//DTD PLIST 1.0//EN" "http://www.apple.com/DTDs/PropertyList-1.0.dtd">
+<plist version="1.0">
+<dict>
+ <key>deviceControl</key>
+ <dict>
+ <key>navigationTarget</key>
+ <string>[custom URL for notifications]</string>
+ <key>removableMediaPolicy</key>
+ <dict>
+ <key>enforcementLevel</key>
+ <string>[enforcement level]</string> <!-- audit / block -->
+ <key>permission</key>
+ <array>
+ <string>[permission]</string> <!-- none / read / write / execute -->
<!-- other permissions -->
- </array>
- <key>vendors</key>
- <dict>
- <key>[vendor id]</key>
+ </array>
+ <key>vendors</key>
+ <dict>
+ <key>[vendor id]</key>
<dict>
- <key>permission</key>
- <array>
- <string>[permission]</string> <!-- none / read / write / execute -->
+ <key>permission</key>
+ <array>
+ <string>[permission]</string> <!-- none / read / write / execute -->
<!-- other permissions -->
- </array>
- <key>products</key>
- <dict>
- <key>[product id]</key>
- <dict>
- <key>permission</key>
- <array>
- <string>[permission]</string> <!-- none / read / write / execute -->
+ </array>
+ <key>products</key>
+ <dict>
+ <key>[product id]</key>
+ <dict>
+ <key>permission</key>
+ <array>
+ <string>[permission]</string> <!-- none / read / write / execute -->
<!-- other permissions -->
- </array>
- <key>serialNumbers</key>
- <dict>
- <key>[serial-number]</key>
- <array>
- <string>[permission]</string> <!-- none / read / write / execute -->
+ </array>
+ <key>serialNumbers</key>
+ <dict>
+ <key>[serial-number]</key>
+ <array>
+ <string>[permission]</string> <!-- none / read / write / execute -->
<!-- other permissions -->
- </array>
- <!-- other serial numbers -->
- </dict>
- </dict>
- <!-- other products -->
- </dict>
- </dict>
- <!-- other vendors -->
- </dict>
- </dict>
- </dict>
-</dict>
-</plist>
+ </array>
+ <!-- other serial numbers -->
+ </dict>
+ </dict>
+ <!-- other products -->
+ </dict>
+ </dict>
+ <!-- other vendors -->
+ </dict>
+ </dict>
+ </dict>
+</dict>
+</plist>
``` We have included more examples of device control policies in the following documents:
To find the vendor ID, product ID, and serial number of a USB device:
You can view mount, unmount, and volume change events originating from USB devices in Microsoft Defender for Endpoint advanced hunting. These events can be helpful to identify suspicious usage activity or perform internal investigations.
-```
-DeviceEvents
+```bash
+DeviceEvents
| where ActionType == "UsbDriveMounted" or ActionType == "UsbDriveUnmounted" or ActionType == "UsbDriveDriveLetterChanged" | where DeviceId == "<device ID>" ```
security Mac Exclusions https://github.com/MicrosoftDocs/microsoft-365-docs/commits/public/microsoft-365/security/defender-endpoint/mac-exclusions.md
localization_priority: Normal audience: ITPro-+ - m365-security-compliance - m365initiative-defender-endpoint
Wildcard|Description|Example|Matches|Does not match
\*|Matches any number of any characters including none (note that when this wildcard is used inside a path it will substitute only one folder)|`/var/*/*.log`|`/var/log/system.log`|`/var/log/nested/system.log` ?|Matches any single character|`file?.log`|`file1.log` <p> `file2.log`|`file123.log`
->[!NOTE]
->The product attempts to resolve firmlinks when evaluating exclusions. Firmlink resolution does not work when the exclusion contains wildcards or the target file (on the `Data` volume) does not exist.
+> [!NOTE]
+> The product attempts to resolve firmlinks when evaluating exclusions. Firmlink resolution does not work when the exclusion contains wildcards or the target file (on the `Data` volume) does not exist.
## How to configure the list of exclusions
For more information on how to configure exclusions from JAMF, Intune, or anothe
### From the user interface
-Open the Defender for Endpoint application and navigate to **Manage settings** > **Add or Remove Exclusion...**, as shown in the following screenshot:
+Open the Defender for Endpoint application and navigate to **Manage settings** \> **Add or Remove Exclusion...**, as shown in the following screenshot:
![Manage exclusions screenshot.](images/mdatp-37-exclusions.png)
security Mac Install Manually https://github.com/MicrosoftDocs/microsoft-365-docs/commits/public/microsoft-365/security/defender-endpoint/mac-install-manually.md
To complete this process, you must have admin privileges on the device.
![System extension security preferences2.](images/big-sur-install-4.png)
-7. Open **System Preferences** > **Security & Privacy** and navigate to the **Privacy** tab. Grant **Full Disk Access** permission to **Microsoft Defender ATP** and **Microsoft Defender ATP Endpoint Security Extension**.
+7. Open **System Preferences** \> **Security & Privacy** and navigate to the **Privacy** tab. Grant **Full Disk Access** permission to **Microsoft Defender ATP** and **Microsoft Defender ATP Endpoint Security Extension**.
![Full disk access.](images/big-sur-install-5.png)
To complete this process, you must have admin privileges on the device.
> [!CAUTION] > macOS 10.15 (Catalina) contains new security and privacy enhancements. Beginning with this version, by default, applications are not able to access certain locations on disk (such as Documents, Downloads, Desktop, etc.) without explicit consent. In the absence of this consent, Microsoft Defender for Endpoint is not able to fully protect your device.
-1. To grant consent, open **System Preferences** > **Security & Privacy** > **Privacy** > **Full Disk Access**. Click the lock icon to make changes (bottom of the dialog box). Select Microsoft Defender for Endpoint.
+1. To grant consent, open **System Preferences** \> **Security & Privacy** \> **Privacy** \> **Full Disk Access**. Click the lock icon to make changes (bottom of the dialog box). Select Microsoft Defender for Endpoint.
2. Run an AV detection test to verify that the device is properly onboarded and reporting to the service. Perform the following steps on the newly onboarded device:
security Mac Install With Intune https://github.com/MicrosoftDocs/microsoft-365-docs/commits/public/microsoft-365/security/defender-endpoint/mac-install-with-intune.md
localization_priority: Normal audience: ITPro-+ - m365-security-compliance - m365initiative-defender-endpoint
Before you get started, see [the main Microsoft Defender for Endpoint on macOS p
The following table summarizes the steps you would need to take to deploy and manage Microsoft Defender for Endpoint on Macs, via Intune. More detailed steps are available below.
-| Step | Sample file names | BundleIdentifier |
-|-|-|-|
-| [Download the onboarding package](#download-the-onboarding-package) | WindowsDefenderATPOnboarding__MDATP_wdav.atp.xml | com.microsoft.wdav.atp |
-| [Approve System Extension for Microsoft Defender for Endpoint](#approve-system-extensions) | MDATP_SysExt.xml | N/A |
-| [Approve Kernel Extension for Microsoft Defender for Endpoint](#download-the-onboarding-package) | MDATP_KExt.xml | N/A |
-| [Grant full disk access to Microsoft Defender for Endpoint](#full-disk-access) | MDATP_tcc_Catalina_or_newer.xml | com.microsoft.wdav.tcc |
-| [Network Extension policy](#network-filter) | MDATP_NetExt.xml | N/A |
-| [Configure Microsoft AutoUpdate (MAU)](mac-updates.md#intune) | MDATP_Microsoft_AutoUpdate.xml | com.microsoft.autoupdate2 |
-| [Microsoft Defender for Endpoint configuration settings](mac-preferences.md#intune-profile-1)<br/><br/> **Note:** If you're planning to run a third-party AV for macOS, set `passiveMode` to `true`. | MDATP_WDAV_and_exclusion_settings_Preferences.xml | com.microsoft.wdav |
-| [Configure Microsoft Defender for Endpoint and MS AutoUpdate (MAU) notifications](mac-updates.md) | MDATP_MDAV_Tray_and_AutoUpdate2.mobileconfig | com.microsoft.autoupdate2 or com.microsoft.wdav.tray |
+<br>
+****
+
+|Step|Sample file names|BundleIdentifier|
+||||
+|[Download the onboarding package](#download-the-onboarding-package)|WindowsDefenderATPOnboarding__MDATP_wdav.atp.xml|com.microsoft.wdav.atp|
+|[Approve System Extension for Microsoft Defender for Endpoint](#approve-system-extensions)|MDATP_SysExt.xml|N/A|
+|[Approve Kernel Extension for Microsoft Defender for Endpoint](#download-the-onboarding-package)|MDATP_KExt.xml|N/A|
+|[Grant full disk access to Microsoft Defender for Endpoint](#full-disk-access)|MDATP_tcc_Catalina_or_newer.xml|com.microsoft.wdav.tcc|
+|[Network Extension policy](#network-filter)|MDATP_NetExt.xml|N/A|
+|[Configure Microsoft AutoUpdate (MAU)](mac-updates.md#intune)|MDATP_Microsoft_AutoUpdate.xml|com.microsoft.autoupdate2|
+|[Microsoft Defender for Endpoint configuration settings](mac-preferences.md#intune-full-profile) <p> **Note:** If you're planning to run a third-party AV for macOS, set `passiveMode` to `true`.|MDATP_WDAV_and_exclusion_settings_Preferences.xml|com.microsoft.wdav|
+|[Configure Microsoft Defender for Endpoint and MS AutoUpdate (MAU) notifications](mac-updates.md)|MDATP_MDAV_Tray_and_AutoUpdate2.mobileconfig|com.microsoft.autoupdate2 or com.microsoft.wdav.tray|
+|
## Download the onboarding package Download the onboarding packages from Microsoft 365 Defender portal:
-1. In Microsoft 365 Defender portal, go to **Settings** > **Endpoints** > **Device management** > **Onboarding**.
+1. In Microsoft 365 Defender portal, go to **Settings** \> **Endpoints** \> **Device management** \> **Onboarding**.
2. Set the operating system to **macOS** and the deployment method to **Mobile Device Management / Microsoft Intune**.
Download the onboarding packages from Microsoft 365 Defender portal:
```bash unzip WindowsDefenderATPOnboardingPackage.zip ```+ ```Output Archive: WindowsDefenderATPOnboardingPackage.zip warning: WindowsDefenderATPOnboardingPackage.zip appears to use backslashes as path separators
Download the onboarding packages from Microsoft 365 Defender portal:
## Create System Configuration profiles The next step is to create system configuration profiles that Microsoft Defender for Endpoint needs.
-In the [Microsoft Endpoint Manager admin center](https://endpoint.microsoft.com/), open **Devices** > **Configuration profiles**.
+In the [Microsoft Endpoint Manager admin center](https://endpoint.microsoft.com/), open **Devices** \> **Configuration profiles**.
### Onboarding blob
This profile contains a license information for Microsoft Defender for Endpoint,
> ![Custom Configuration Profile - assignment.](images/mdatp-6-systemconfigurationprofiles-2.png) 1. Review and **Create**.
-1. Open **Devices** > **Configuration profiles**, you can see your created profile there.
+1. Open **Devices** \> **Configuration profiles**, you can see your created profile there.
> [!div class="mx-imgBorder"] > ![Custom Configuration Profile - done.](images/mdatp-6-systemconfigurationprofiles-3.png)
This profile is needed for macOS 10.15 (Catalina) or newer. It will be ignored o
1. In the **Basics** tab, give a name to this new profile. 1. In the **Configuration settings** tab, expand **System Extensions** add the following entries in the **Allowed system extensions** section:
- Bundle identifier | Team identifier
- --|-
- com.microsoft.wdav.epsext | UBF8T346G9
- com.microsoft.wdav.netext | UBF8T346G9
+ |Bundle identifier|Team identifier|
+ |||
+ |com.microsoft.wdav.epsext|UBF8T346G9|
+ |com.microsoft.wdav.netext|UBF8T346G9|
> [!div class="mx-imgBorder"] > ![System extension settings.](images/mac-system-extension-intune2.png)
Follow the instructions for [Onboarding blob](#onboarding-blob) from above, usin
### View Status
-Once the Intune changes are propagated to the enrolled devices, you can see them listed under **Monitor** > **Device status**:
+Once the Intune changes are propagated to the enrolled devices, you can see them listed under **Monitor** \> **Device status**:
> [!div class="mx-imgBorder"] > ![View of Device Status in Monitor.](images/mdatp-7-devicestatusblade.png)
This step enables deploying Microsoft Defender for Endpoint to enrolled machines
> ![Intune assignments info screenshot.](images/mdatp-11-assignments.png) 1. Review and **Create**.
-1. You can visit **Apps** > **By platform** > **macOS** to see it on the list of all applications.
+1. You can visit **Apps** \> **By platform** \> **macOS** to see it on the list of all applications.
> [!div class="mx-imgBorder"] > ![Applications list.](images/mdatp-12-applications.png)
You don't need any special provisioning for a Mac device beyond a standard [Comp
You may now enroll more devices. You can also enroll them later, after you have finished provisioning system configuration and application packages.
-3. In Intune, open **Manage** > **Devices** > **All devices**. Here you can see your device among those listed:
+3. In Intune, open **Manage** \> **Devices** \> **All devices**. Here you can see your device among those listed:
> [!div class="mx-imgBorder"] > ![Add Devices screenshot.](images/mdatp-5-alldevices.png) ## Verify client device state
-1. After the configuration profiles are deployed to your devices, open **System Preferences** > **Profiles** on your Mac device.
+1. After the configuration profiles are deployed to your devices, open **System Preferences** \> **Profiles** on your Mac device.
> [!div class="mx-imgBorder"] > ![System Preferences screenshot.](images/mdatp-13-systempreferences.png)
security Mac Jamfpro Enroll Devices https://github.com/MicrosoftDocs/microsoft-365-docs/commits/public/microsoft-365/security/defender-endpoint/mac-jamfpro-enroll-devices.md
localization_priority: Normal audience: ITPro-+ - m365-security-compliance - m365initiative-defender-endpoint ms.technology: mde
-# Enroll Microsoft Defender for Endpoint on macOS devices into Jamf Pro
+# Enroll Microsoft Defender for Endpoint on macOS devices into Jamf Pro
[!INCLUDE [Microsoft 365 Defender rebranding](../../includes/microsoft-defender.md)]
This article will guide you on two methods:
For a complete list, see [About Computer Enrollment](https://docs.jamf.com/9.9/casper-suite/administrator-guide/About_Computer_Enrollment.html). - ## Enrollment Method 1: Enrollment Invitations 1. In the Jamf Pro dashboard, navigate to **Enrollment invitations**.
For a complete list, see [About Computer Enrollment](https://docs.jamf.com/9.9/c
![Image of Jamf Pro enrollment1.](images/jamfpro-ca-certificate.png)
-2. Once CA certificate is installed, return to the browser window and select **Continue** and install the MDM profile.
+2. Once CA certificate is installed, return to the browser window and select **Continue** and install the MDM profile.
![Image of Jamf Pro enrollment2.](images/jamfpro-install-mdm-profile.png)
For a complete list, see [About Computer Enrollment](https://docs.jamf.com/9.9/c
![Image of Jamf Pro enrollment3.](images/jamfpro-download.png)
-4. Select **Continue** to proceed with the MDM Profile installation.
+4. Select **Continue** to proceed with the MDM Profile installation.
![Image of Jamf Pro enrollment4.](images/jamfpro-install-mdm.png)
For a complete list, see [About Computer Enrollment](https://docs.jamf.com/9.9/c
![Image of Jamf Pro enrollment5.](images/jamfpro-mdm-unverified.png)
-6. Select **Continue** to complete the configuration.
+6. Select **Continue** to complete the configuration.
![Image of Jamf Pro enrollment6.](images/jamfpro-mdm-profile.png)
security Mac Jamfpro Policies https://github.com/MicrosoftDocs/microsoft-365-docs/commits/public/microsoft-365/security/defender-endpoint/mac-jamfpro-policies.md
All you need to do to have updates is to download an updated schema, edit existi
- tags - hideStatusMenuIcon
- For information, see [Property list for Jamf configuration profile](mac-preferences.md#property-list-for-jamf-configuration-profile).
+ For information, see [Property list for JAMF full configuration profile](mac-preferences.md#property-list-for-jamf-full-configuration-profile).
```XML <?xml version="1.0" encoding="UTF-8"?>
security Mac Preferences https://github.com/MicrosoftDocs/microsoft-365-docs/commits/public/microsoft-365/security/defender-endpoint/mac-preferences.md
ms.technology: mde
- [Microsoft Defender for Endpoint on macOS](microsoft-defender-endpoint-mac.md)
->[!IMPORTANT]
->This article contains instructions for how to set preferences for Microsoft Defender for Endpoint on macOS in enterprise organizations. To configure Microsoft Defender for Endpoint on macOS using the command-line interface, see [Resources](mac-resources.md#configuring-from-the-command-line).
+> [!IMPORTANT]
+> This article contains instructions for how to set preferences for Microsoft Defender for Endpoint on macOS in enterprise organizations. To configure Microsoft Defender for Endpoint on macOS using the command-line interface, see [Resources](mac-resources.md#configuring-from-the-command-line).
## Summary
This article describes the structure of the configuration profile, includes a re
The configuration profile is a *.plist* file that consists of entries identified by a key (which denotes the name of the preference), followed by a value, which depends on the nature of the preference. Values can either be simple (such as a numerical value) or complex, such as a nested list of preferences.
->[!CAUTION]
+> [!CAUTION]
>The layout of the configuration profile depends on the management console that you are using. The following sections contain examples of configuration profiles for JAMF and Intune. The top level of the configuration profile includes product-wide preferences and entries for subareas of Microsoft Defender for Endpoint, which are explained in more detail in the next sections.
The top level of the configuration profile includes product-wide preferences and
The *antivirusEngine* section of the configuration profile is used to manage the preferences of the antivirus component of Microsoft Defender for Endpoint.
+<br>
+
+****
+ |Section|Value|
-|:|:|
+|||
|**Domain**|`com.microsoft.wdav`| |**Key**|antivirusEngine| |**Data type**|Dictionary (nested preference)| |**Comments**|See the following sections for a description of the dictionary contents.|
+|||
#### Enable / disable real-time protection Specify whether to enable real-time protection, which scans files as they are accessed.
+<br>
+
+****
+ |Section|Value|
-|:|:|
+|||
|**Domain**|`com.microsoft.wdav`| |**Key**|enableRealTimeProtection| |**Data type**|Boolean| |**Possible values**|true (default) <p> false|
+|||
#### Enable / disable passive mode
Specify whether the antivirus engine runs in passive mode. Passive mode has the
- Security intelligence updates are turned on - Status menu icon is hidden
+<br>
+
+****
+ |Section|Value|
-|:|:|
+|||
|**Domain**|`com.microsoft.wdav`| |**Key**|passiveMode| |**Data type**|Boolean| |**Possible values**|false (default) <p> true| |**Comments**|Available in Microsoft Defender for Endpoint version 100.67.60 or higher.|
+|||
#### Exclusion merge policy Specify the merge policy for exclusions. This can be a combination of administrator-defined and user-defined exclusions (`merge`) or only administrator-defined exclusions (`admin_only`). This setting can be used to restrict local users from defining their own exclusions.
+<br>
+
+****
+ |Section|Value|
-|:|:|
+|||
|**Domain**|`com.microsoft.wdav`| |**Key**|exclusionsMergePolicy| |**Data type**|String| |**Possible values**|merge (default) <p> admin_only| |**Comments**|Available in Microsoft Defender for Endpoint version 100.83.73 or higher.|
+|||
#### Scan exclusions Specify entities excluded from being scanned. Exclusions can be specified by full paths, extensions, or file names. (Exclusions are specified as an array of items, administrator can specify as many elements as necessary, in any order.)
+<br>
+
+****
+ |Section|Value|
-|:|:|
+|||
|**Domain**|`com.microsoft.wdav`| |**Key**|exclusions| |**Data type**|Dictionary (nested preference)| |**Comments**|See the following sections for a description of the dictionary contents.|
+|||
##### Type of exclusion Specify content excluded from being scanned by type.
+<br>
+
+****
+ |Section|Value|
-|:|:|
+|||
|**Domain**|`com.microsoft.wdav`| |**Key**|$type| |**Data type**|String| |**Possible values**|excludedPath <p> excludedFileExtension <p> excludedFileName|
+|||
##### Path to excluded content Specify content excluded from being scanned by full file path.
+<br>
+
+****
+ |Section|Value|
-|:|:|
+|||
|**Domain**|`com.microsoft.wdav`| |**Key**|path| |**Data type**|String| |**Possible values**|valid paths| |**Comments**|Applicable only if *$type* is *excludedPath*|
+|||
## Supported exclusion types The follow table shows the exclusion types supported by Defender for Endpoint on Mac.
-Exclusion|Definition|Examples
-||
-File extension|All files with the extension, anywhere on the device|`.test`
-File|A specific file identified by the full path|`/var/log/test.log` <p> `/var/log/*.log` <p> `/var/log/install.?.log`
-Folder|All files under the specified folder (recursively)|`/var/log/` <p> `/var/*/`
-Process|A specific process (specified either by the full path or file name) and all files opened by it|`/bin/cat` <p> `cat` <p> `c?t`
+<br>
+
+****
+
+|Exclusion|Definition|Examples|
+||||
+|File extension|All files with the extension, anywhere on the device|`.test`|
+|File|A specific file identified by the full path|`/var/log/test.log` <p> `/var/log/*.log` <p> `/var/log/install.?.log`|
+|Folder|All files under the specified folder (recursively)|`/var/log/` <p> `/var/*/`|
+|Process|A specific process (specified either by the full path or file name) and all files opened by it|`/bin/cat` <p> `cat` <p> `c?t`|
+||||
> [!IMPORTANT] > The paths above must be hard links, not symbolic links, in order to be successfully excluded. You can check if a path is a symbolic link by running `file <path-name>`. File, folder, and process exclusions support the following wildcards:
-Wildcard|Description|Example|Matches|Does not match
-||||
-\*|Matches any number of any characters including none (note that when this wildcard is used inside a path it will substitute only one folder)|`/var/\*/\*.log`|`/var/log/system.log`|`/var/log/nested/system.log`
-?|Matches any single character|`file?.log`|`file1.log` <p> `file2.log`|`file123.log`
+<br>
+
+****
-##### Path type (file / directory)
+|Wildcard|Description|Example|Matches|Does not match|
+||||||
+|\*|Matches any number of any characters including none (note that when this wildcard is used inside a path it will substitute only one folder)|`/var/\*/\*.log`|`/var/log/system.log`|`/var/log/nested/system.log`|
+|?|Matches any single character|`file?.log`|`file1.log` <p> `file2.log`|`file123.log`|
+||||||
+
+### Path type (file / directory)
Indicate if the *path* property refers to a file or directory.
+<br>
+
+****
+ |Section|Value|
-|:|:|
+|||
|**Domain**|`com.microsoft.wdav`| |**Key**|isDirectory| |**Data type**|Boolean| |**Possible values**|false (default) <p> true| |**Comments**|Applicable only if *$type* is *excludedPath*|
+|||
-##### File extension excluded from the scan
+### File extension excluded from the scan
Specify content excluded from being scanned by file extension.
+<br>
+
+****
+ |Section|Value|
-|:|:|
+|||
|**Domain**|`com.microsoft.wdav`| |**Key**|extension| |**Data type**|String| |**Possible values**|valid file extensions| |**Comments**|Applicable only if *$type* is *excludedFileExtension*|
+|||
-##### Process excluded from the scan
+### Process excluded from the scan
Specify a process for which all file activity is excluded from scanning. The process can be specified either by its name (e.g. `cat`) or full path (e.g. `/bin/cat`).
+<br>
+
+****
+ |Section|Value|
-|:|:|
+|||
|**Domain**|`com.microsoft.wdav`| |**Key**|name| |**Data type**|String| |**Possible values**|any string| |**Comments**|Applicable only if *$type* is *excludedFileName*|
+|||
#### Allowed threats Specify threats by name that are not blocked by Defender for Endpoint on Mac. These threats will be allowed to run.
+<br>
+
+****
+ |Section|Value|
-|:|:|
+|||
|**Domain**|`com.microsoft.wdav`| |**Key**|allowedThreats| |**Data type**|Array of strings|
+|||
#### Disallowed threat actions Restricts the actions that the local user of a device can take when threats are detected. The actions included in this list are not displayed in the user interface.
+<br>
+
+****
+ |Section|Value|
-|:|:|
+|||
|**Domain**|`com.microsoft.wdav`| |**Key**|disallowedThreatActions| |**Data type**|Array of strings| |**Possible values**|allow (restricts users from allowing threats) <p> restore (restricts users from restoring threats from the quarantine)| |**Comments**|Available in Microsoft Defender for Endpoint version 100.83.73 or higher.|
+|||
#### Threat type settings Specify how certain threat types are handled by Microsoft Defender for Endpoint on macOS.
+<br>
+
+****
+ |Section|Value|
-|:|:|
+|||
|**Domain**|`com.microsoft.wdav`| |**Key**|threatTypeSettings| |**Data type**|Dictionary (nested preference)| |**Comments**|See the following sections for a description of the dictionary contents.|
+|||
##### Threat type Specify threat types.
+<br>
+
+****
+ |Section|Value|
-|:|:|
+|||
|**Domain**|`com.microsoft.wdav`| |**Key**|key| |**Data type**|String| |**Possible values**|potentially_unwanted_application <p> archive_bomb|
+|||
##### Action to take
Specify what action to take when a threat of the type specified in the preceding
- **Block**: your device is protected against this type of threat and you are notified in the user interface and the security console. - **Off**: your device is not protected against this type of threat and nothing is logged.
+<br>
+
+****
+ |Section|Value|
-|:|:|
+|||
|**Domain**|`com.microsoft.wdav`| |**Key**|value| |**Data type**|String| |**Possible values**|audit (default) <p> block <p> off|
+|||
#### Threat type settings merge policy Specify the merge policy for threat type settings. This can be a combination of administrator-defined and user-defined settings (`merge`) or only administrator-defined settings (`admin_only`). This setting can be used to restrict local users from defining their own settings for different threat types.
+<br>
+
+****
+ |Section|Value|
-|:|:|
+|||
|**Domain**|`com.microsoft.wdav`| |**Key**|threatTypeSettingsMergePolicy| |**Data type**|String| |**Possible values**|merge (default) <p> admin_only| |**Comments**|Available in Microsoft Defender for Endpoint version 100.83.73 or higher.|
+|||
#### Antivirus scan history retention (in days) Specify the number of days that results are retained in the scan history on the device. Old scan results are removed from the history. Old quarantined files that are also removed from the disk.
+<br>
+
+****
+ |Section|Value|
-|:|:|
+|||
|**Domain**|`com.microsoft.wdav`| |**Key**|scanResultsRetentionDays| |**Data type**|String| |**Possible values**|90 (default). Allowed values are from 1 day to 180 days.| |**Comments**|Available in Microsoft Defender for Endpoint version 101.07.23 or higher.|
+|||
#### Maximum number of items in the antivirus scan history Specify the maximum number of entries to keep in the scan history. Entries include all on-demand scans performed in the past and all antivirus detections.
+<br>
+
+****
+ |Section|Value|
-|:|:|
+|||
|**Domain**|`com.microsoft.wdav`| |**Key**|scanHistoryMaximumItems| |**Data type**|String| |**Possible values**|10000 (default). Allowed values are from 5000 items to 15000 items.| |**Comments**|Available in Microsoft Defender for Endpoint version 101.07.23 or higher.|
+|||
### Cloud-delivered protection preferences Configure the cloud-driven protection features of Microsoft Defender for Endpoint on macOS.
+<br>
+
+****
+ |Section|Value|
-|:|:|
+|||
|**Domain**|`com.microsoft.wdav`| |**Key**|cloudService| |**Data type**|Dictionary (nested preference)| |**Comments**|See the following sections for a description of the dictionary contents.|
+|||
#### Enable / disable cloud-delivered protection Specify whether to enable cloud-delivered protection the device or not. To improve the security of your services, we recommend keeping this feature turned on.
+<br>
+
+****
+ |Section|Value|
-|:|:|
+|||
|**Domain**|`com.microsoft.wdav`| |**Key**|enabled| |**Data type**|Boolean| |**Possible values**|true (default) <p> false|
+|||
#### Diagnostic collection level Diagnostic data is used to keep Microsoft Defender for Endpoint secure and up-to-date, detect, diagnose and fix problems, and also make product improvements. This setting determines the level of diagnostics sent by Microsoft Defender for Endpoint to Microsoft.
+<br>
+
+****
+ |Section|Value|
-|:|:|
+|||
|**Domain**|`com.microsoft.wdav`| |**Key**|diagnosticLevel| |**Data type**|String| |**Possible values**|optional (default) <p> required|
+|||
#### Enable / disable automatic sample submissions Determines whether suspicious samples (that are likely to contain threats) are sent to Microsoft. You are prompted if the submitted file is likely to contain personal information.
+<br>
+
+****
+ |Section|Value|
-|:|:|
+|||
|**Domain**|`com.microsoft.wdav`| |**Key**|automaticSampleSubmission| |**Data type**|Boolean| |**Possible values**|true (default) <p> false|
+|||
#### Enable / disable automatic security intelligence updates Determines whether security intelligence updates are installed automatically:
+<br>
+
+****
+ |Section|Value|
-|:|:|
+|||
|**Key**|automaticDefinitionUpdateEnabled| |**Data type**|Boolean| |**Possible values**|true (default) <p> false|
+|||
### User interface preferences Manage the preferences for the user interface of Microsoft Defender for Endpoint on macOS.
+<br>
+
+****
+ |Section|Value|
-|:|:|
+|||
|**Domain**|`com.microsoft.wdav`| |**Key**|userInterface| |**Data type**|Dictionary (nested preference)| |**Comments**|See the following sections for a description of the dictionary contents.|
+|||
#### Show / hide status menu icon Specify whether to show or hide the status menu icon in the top-right corner of the screen.
+<br>
+
+****
+ |Section|Value|
-|:|:|
+|||
|**Domain**|`com.microsoft.wdav`| |**Key**|hideStatusMenuIcon| |**Data type**|Boolean| |**Possible values**|false (default) <p> true|
+|||
#### Show / hide option to send feedback Specify whether users can submit feedback to Microsoft by going to `Help` > `Send Feedback`.
+<br>
+
+****
+ |Section|Value|
-|:|:|
+|||
|**Domain**|`com.microsoft.wdav`| |**Key**|userInitiatedFeedback| |**Data type**|String| |**Possible values**|enabled (default) <p> disabled| |**Comments**|Available in Microsoft Defender for Endpoint version 101.19.61 or higher.|
+|||
### Endpoint detection and response preferences Manage the preferences of the endpoint detection and response (EDR) component of Microsoft Defender for Endpoint on macOS.
+<br>
+
+****
+ |Section|Value|
-|:|:|
+|||
|**Domain**|`com.microsoft.wdav`| |**Key**|edr| |**Data type**|Dictionary (nested preference)| |**Comments**|See the following sections for a description of the dictionary contents.|
+|||
#### Device tags
Specify a tag name and its value.
- The GROUP tag, tags the device with the specified value. The tag is reflected in the portal under the device page and can be used for filtering and grouping devices.
+<br>
+
+****
+ |Section|Value|
-|:|:|
+|||
|**Domain**|`com.microsoft.wdav`| |**Key**|tags| |**Data type**|Dictionary (nested preference)| |**Comments**|See the following sections for a description of the dictionary contents.|
+|||
##### Type of tag Specifies the type of tag
+<br>
+
+****
+ |Section|Value|
-|:|:|
+|||
|**Domain**|`com.microsoft.wdav`| |**Key**|key| |**Data type**|String| |**Possible values**|`GROUP`|
+|||
##### Value of tag Specifies the value of tag
+<br>
+
+****
+ |Section|Value|
-|:|:|
+|||
|**Domain**|`com.microsoft.wdav`| |**Key**|value| |**Data type**|String| |**Possible values**|any string|
+|||
> [!IMPORTANT] >
The following configuration profile (or, in case of JAMF, a property list that c
- Enable cloud-delivered protection - Enable automatic sample submission
-### Property list for JAMF configuration profile
+### Property list for JAMF recommended configuration profile
```XML <?xml version="1.0" encoding="UTF-8"?>
The following configuration profile (or, in case of JAMF, a property list that c
</plist> ```
-### Intune profile
+### Intune recommended profile
```XML <?xml version="1.0" encoding="utf-8"?>
The following configuration profile (or, in case of JAMF, a property list that c
The following templates contain entries for all settings described in this document and can be used for more advanced scenarios where you want more control over Microsoft Defender for Endpoint on macOS.
-### Property list for JAMF configuration profile
+### Property list for JAMF full configuration profile
```XML <?xml version="1.0" encoding="UTF-8"?>
The following templates contain entries for all settings described in this docum
</plist> ```
-### Intune profile
+### Intune full profile
```XML <key>PayloadUUID</key>
Once you've built the configuration profile for your enterprise, you can deploy
### JAMF deployment
-From the JAMF console, open **Computers** > **Configuration Profiles**, navigate to the configuration profile you'd like to use, then select **Custom Settings**. Create an entry with `com.microsoft.wdav` as the preference domain and upload the *.plist* produced earlier.
+From the JAMF console, open **Computers** \> **Configuration Profiles**, navigate to the configuration profile you'd like to use, then select **Custom Settings**. Create an entry with `com.microsoft.wdav` as the preference domain and upload the *.plist* produced earlier.
> [!CAUTION] > You must enter the correct preference domain (`com.microsoft.wdav`); otherwise, the preferences will not be recognized by Microsoft Defender for Endpoint. ### Intune deployment
-1. Open **Manage** > **Device configuration**. Select **Manage** > **Profiles** > **Create Profile**.
+1. Open **Manage** \> **Device configuration**. Select **Manage** \> **Profiles** \> **Create Profile**.
2. Choose a name for the profile. Change **Platform=macOS** to **Profile type=Custom**. Select Configure.
From the JAMF console, open **Computers** > **Configuration Profiles**, navigate
6. Select **OK**.
-7. Select **Manage** > **Assignments**. In the **Include** tab, select **Assign to All Users & All devices**.
+7. Select **Manage** \> **Assignments**. In the **Include** tab, select **Assign to All Users & All devices**.
> [!CAUTION] > You must enter the correct custom configuration profile name; otherwise, these preferences will not be recognized by Microsoft Defender for Endpoint.
security Mac Privacy https://github.com/MicrosoftDocs/microsoft-365-docs/commits/public/microsoft-365/security/defender-endpoint/mac-privacy.md
localization_priority: Normal audience: ITPro-+ - m365-security-compliance ms.technology: mde
Some diagnostic data is required, while some diagnostic data is optional. We giv
There are two levels of diagnostic data for Microsoft Defender for Endpoint client software that you can choose from:
-* **Required**: The minimum data necessary to help keep Microsoft Defender for Endpoint secure, up-to-date, and performing as expected on the device it's installed on.
+- **Required**: The minimum data necessary to help keep Microsoft Defender for Endpoint secure, up-to-date, and performing as expected on the device it's installed on.
-* **Optional**: Additional data that helps Microsoft make product improvements and provides enhanced information to help detect, diagnose, and remediate issues.
+- **Optional**: Additional data that helps Microsoft make product improvements and provides enhanced information to help detect, diagnose, and remediate issues.
By default, only required diagnostic data is sent to Microsoft.
When this feature is enabled and the sample that is collected is likely to conta
## Manage privacy controls with policy settings
-If you're an IT administrator, you might want to configure these controls at the enterprise level.
+If you're an IT administrator, you might want to configure these controls at the enterprise level.
The privacy controls for the various types of data described in the preceding section are described in detail in [Set preferences for Microsoft Defender for Endpoint on macOS](mac-preferences.md).
As with any new policy settings, you should carefully test them out in a limited
This section describes what is considered required diagnostic data and what is considered optional diagnostic data, along with a description of the events and fields that are collected. ### Data fields that are common for all events
-There is some information about events that is common to all events, regardless of category or data subtype.
-The following fields are considered common for all events:
+There is some information about events that is common to all events, regardless of category or data subtype.
-| Field | Description |
-| -- | -- |
-| platform | The broad classification of the platform on which the app is running. Allows Microsoft to identify on which platforms an issue may be occurring so that it can correctly be prioritized. |
-| machine_guid | Unique identifier associated with the device. Allows Microsoft to identify whether issues are impacting a select set of installs and how many users are impacted. |
-| sense_guid | Unique identifier associated with the device. Allows Microsoft to identify whether issues are impacting a select set of installs and how many users are impacted. |
-| org_id | Unique identifier associated with the enterprise that the device belongs to. Allows Microsoft to identify whether issues are impacting a select set of enterprises and how many enterprises are impacted. |
-| hostname | Local device name (without DNS suffix). Allows Microsoft to identify whether issues are impacting a select set of installs and how many users are impacted. |
-| product_guid | Unique identifier of the product. Allows Microsoft to differentiate issues impacting different flavors of the product. |
-| app_version | Version of the Microsoft Defender for Endpoint on macOS application. Allows Microsoft to identify which versions of the product are showing an issue so that it can correctly be prioritized.|
-| sig_version | Version of security intelligence database. Allows Microsoft to identify which versions of the security intelligence are showing an issue so that it can correctly be prioritized. |
-| supported_compressions | List of compression algorithms supported by the application, for example `['gzip']`. Allows Microsoft to understand what types of compressions can be used when it communicates with the application. |
-| release_ring | Ring that the device is associated with (for example Insider Fast, Insider Slow, Production). Allows Microsoft to identify on which release ring an issue may be occurring so that it can correctly be prioritized. |
+The following fields are considered common for all events:
+|Field|Description|
+|||
+|platform|The broad classification of the platform on which the app is running. Allows Microsoft to identify on which platforms an issue may be occurring so that it can correctly be prioritized.|
+|machine_guid|Unique identifier associated with the device. Allows Microsoft to identify whether issues are impacting a select set of installs and how many users are impacted.|
+|sense_guid|Unique identifier associated with the device. Allows Microsoft to identify whether issues are impacting a select set of installs and how many users are impacted.|
+|org_id|Unique identifier associated with the enterprise that the device belongs to. Allows Microsoft to identify whether issues are impacting a select set of enterprises and how many enterprises are impacted.|
+|hostname|Local device name (without DNS suffix). Allows Microsoft to identify whether issues are impacting a select set of installs and how many users are impacted.|
+|product_guid|Unique identifier of the product. Allows Microsoft to differentiate issues impacting different flavors of the product.|
+|app_version|Version of the Microsoft Defender for Endpoint on macOS application. Allows Microsoft to identify which versions of the product are showing an issue so that it can correctly be prioritized.|
+|sig_version|Version of security intelligence database. Allows Microsoft to identify which versions of the security intelligence are showing an issue so that it can correctly be prioritized.|
+|supported_compressions|List of compression algorithms supported by the application, for example `['gzip']`. Allows Microsoft to understand what types of compressions can be used when it communicates with the application.|
+|release_ring|Ring that the device is associated with (for example Insider Fast, Insider Slow, Production). Allows Microsoft to identify on which release ring an issue may be occurring so that it can correctly be prioritized.|
### Required diagnostic data
Required diagnostic data helps to identify problems with Microsoft Defender for
#### Software setup and inventory data events
-**Microsoft Defender for Endpoint installation / uninstallation**
+**Microsoft Defender for Endpoint installation / uninstallation**:
The following fields are collected:
-| Field | Description |
-| - | -- |
-| correlation_id | Unique identifier associated with the installation. |
-| version | Version of the package. |
-| severity | Severity of the message (for example Informational). |
-| code | Code that describes the operation. |
-| text | Additional information associated with the product installation. |
+|Field|Description|
+|||
+|correlation_id|Unique identifier associated with the installation.|
+|version|Version of the package.|
+|severity|Severity of the message (for example Informational).|
+|code|Code that describes the operation.|
+|text|Additional information associated with the product installation.|
-**Microsoft Defender for Endpoint configuration**
+**Microsoft Defender for Endpoint configuration**:
The following fields are collected:
-| Field | Description |
-| | -- |
-| antivirus_engine.enable_real_time_protection | Whether real-time protection is enabled on the device or not. |
-| antivirus_engine.passive_mode | Whether passive mode is enabled on the device or not. |
-| cloud_service.enabled | Whether cloud delivered protection is enabled on the device or not. |
-| cloud_service.timeout | Time out when the application communicates with the Microsoft Defender for Endpoint cloud. |
-| cloud_service.heartbeat_interval | Interval between consecutive heartbeats sent by the product to the cloud. |
-| cloud_service.service_uri | URI used to communicate with the cloud. |
-| cloud_service.diagnostic_level | Diagnostic level of the device (required, optional). |
-| cloud_service.automatic_sample_submission | Whether automatic sample submission is turned on or not. |
-| cloud_service.automatic_definition_update_enabled | Whether automatic definition update is turned on or not. |
-| edr.early_preview | Whether the device should run EDR early preview features. |
-| edr.group_id | Group identifier used by the detection and response component. |
-| edr.tags | User-defined tags. |
-| features.\[optional feature name\] | List of preview features, along with whether they are enabled or not. |
+|Field|Description|
+|||
+|antivirus_engine.enable_real_time_protection|Whether real-time protection is enabled on the device or not.|
+|antivirus_engine.passive_mode|Whether passive mode is enabled on the device or not.|
+|cloud_service.enabled|Whether cloud delivered protection is enabled on the device or not.|
+|cloud_service.timeout|Time out when the application communicates with the Microsoft Defender for Endpoint cloud.|
+|cloud_service.heartbeat_interval|Interval between consecutive heartbeats sent by the product to the cloud.|
+|cloud_service.service_uri|URI used to communicate with the cloud.|
+|cloud_service.diagnostic_level|Diagnostic level of the device (required, optional).|
+|cloud_service.automatic_sample_submission|Whether automatic sample submission is turned on or not.|
+|cloud_service.automatic_definition_update_enabled|Whether automatic definition update is turned on or not.|
+|edr.early_preview|Whether the device should run EDR early preview features.|
+|edr.group_id|Group identifier used by the detection and response component.|
+|edr.tags|User-defined tags.|
+|features.\[optional feature name\]|List of preview features, along with whether they are enabled or not.|
#### Product and service usage data events
-**Security intelligence update report**
+**Security intelligence update report**:
The following fields are collected:
-| Field | Description |
-| - | -- |
-| from_version | Original security intelligence version. |
-| to_version | New security intelligence version. |
-| status | Status of the update indicating success or failure. |
-| using_proxy | Whether the update was done over a proxy. |
-| error | Error code if the update failed. |
-| reason | Error message if the updated filed. |
+|Field|Description|
+|||
+|from_version|Original security intelligence version.|
+|to_version|New security intelligence version.|
+|status|Status of the update indicating success or failure.|
+|using_proxy|Whether the update was done over a proxy.|
+|error|Error code if the update failed.|
+|reason|Error message if the updated filed.|
-#### Product and service performance data events
+#### Product and service performance data events for required diagnostic data
-**Unexpected application exit (crash)**
+**Unexpected application exit (crash)**:
Collects system information and the state of an application when an application unexpectedly exits. The following fields are collected:
-| Field | Description |
-| | -- |
-| v1_crash_count | Number of times V1 engine process crashed every hour on client machine |
-| v2_crash_count | Number of times V2 engine process crashed every hour on client machine |
-| EDR_crash_count | Number of times EDR process crashed every hour on client machine |
+|Field|Description|
+|||
+|v1_crash_count|Number of times V1 engine process crashed every hour on client machine|
+|v2_crash_count|Number of times V2 engine process crashed every hour on client machine|
+|EDR_crash_count|Number of times EDR process crashed every hour on client machine|
-**Kernel extension statistics**
+**Kernel extension statistics**:
The following fields are collected:
-| Field | Description |
-| - | -- |
-| version | Version of Microsoft Defender for Endpoint on macOS. |
-| instance_id | Unique identifier generated on kernel extension startup. |
-| trace_level | Trace level of the kernel extension. |
-| subsystem | The underlying subsystem used for real-time protection. |
-| ipc.connects | Number of connection requests received by the kernel extension. |
-| ipc.rejects | Number of connection requests rejected by the kernel extension. |
-| ipc.connected | Whether there is any active connection to the kernel extension. |
+|Field|Description|
+|||
+|version|Version of Microsoft Defender for Endpoint on macOS.|
+|instance_id|Unique identifier generated on kernel extension startup.|
+|trace_level|Trace level of the kernel extension.|
+|subsystem|The underlying subsystem used for real-time protection.|
+|ipc.connects|Number of connection requests received by the kernel extension.|
+|ipc.rejects|Number of connection requests rejected by the kernel extension.|
+|ipc.connected|Whether there is any active connection to the kernel extension.|
#### Support data
-**Diagnostic logs**
+**Diagnostic logs**:
Diagnostic logs are collected only with the consent of the user as part of the feedback submission feature. The following files are collected as part of the support logs:
If you choose to send us optional diagnostic data, required diagnostic data is a
Examples of optional diagnostic data include data Microsoft collects about product configuration (for example number of exclusions set on the device) and product performance (aggregate measures about the performance of components of the product).
-#### Software setup and inventory data events
+#### Software setup and inventory data events for optional diagnostic data
-**Microsoft Defender for Endpoint configuration**
+**Microsoft Defender for Endpoint configuration**:
The following fields are collected:
-| Field | Description |
-| -- | -- |
-| connection_retry_timeout | Connection retry time out when communication with the cloud. |
-| file_hash_cache_maximum | Size of the product cache. |
-| crash_upload_daily_limit | Limit of crash logs uploaded daily. |
-| antivirus_engine.exclusions[].is_directory | Whether the exclusion from scanning is a directory or not. |
-| antivirus_engine.exclusions[].path | Path that was excluded from scanning. |
-| antivirus_engine.exclusions[].extension | Extension excluded from scanning. |
-| antivirus_engine.exclusions[].name | Name of the file excluded from scanning. |
-| antivirus_engine.scan_cache_maximum | Size of the product cache. |
-| antivirus_engine.maximum_scan_threads | Maximum number of threads used for scanning. |
-| antivirus_engine.threat_restoration_exclusion_time | Time out before a file restored from the quarantine can be detected again. |
-| antivirus_engine.threat_type_settings | Configuration for how different threat types are handled by the product. |
-| filesystem_scanner.full_scan_directory | Full scan directory. |
-| filesystem_scanner.quick_scan_directories | List of directories used in quick scan. |
-| edr.latency_mode | Latency mode used by the detection and response component. |
-| edr.proxy_address | Proxy address used by the detection and response component. |
-
-**Microsoft Auto-Update configuration**
+|Field|Description|
+|||
+|connection_retry_timeout|Connection retry time out when communication with the cloud.|
+|file_hash_cache_maximum|Size of the product cache.|
+|crash_upload_daily_limit|Limit of crash logs uploaded daily.|
+|antivirus_engine.exclusions[].is_directory|Whether the exclusion from scanning is a directory or not.|
+|antivirus_engine.exclusions[].path|Path that was excluded from scanning.|
+|antivirus_engine.exclusions[].extension|Extension excluded from scanning.|
+|antivirus_engine.exclusions[].name|Name of the file excluded from scanning.|
+|antivirus_engine.scan_cache_maximum|Size of the product cache.|
+|antivirus_engine.maximum_scan_threads|Maximum number of threads used for scanning.|
+|antivirus_engine.threat_restoration_exclusion_time|Time out before a file restored from the quarantine can be detected again.|
+|antivirus_engine.threat_type_settings|Configuration for how different threat types are handled by the product.|
+|filesystem_scanner.full_scan_directory|Full scan directory.|
+|filesystem_scanner.quick_scan_directories|List of directories used in quick scan.|
+|edr.latency_mode|Latency mode used by the detection and response component.|
+|edr.proxy_address|Proxy address used by the detection and response component.|
+
+**Microsoft Auto-Update configuration**:
The following fields are collected:
-| Field | Description |
-| | -- |
-| how_to_check | Determines how product updates are checked (for example automatic or manual). |
-| channel_name | Update channel associated with the device. |
-| manifest_server | Server used for downloading updates. |
-| update_cache | Location of the cache used to store updates. |
+|Field|Description|
+|||
+|how_to_check|Determines how product updates are checked (for example automatic or manual).|
+|channel_name|Update channel associated with the device.|
+|manifest_server|Server used for downloading updates.|
+|update_cache|Location of the cache used to store updates.|
### Product and service usage
The following fields are collected:
The following fields are collected:
-| Field | Description |
-| - | -- |
-| sha256 | SHA256 identifier of the support log. |
-| size | Size of the support log. |
-| original_path | Path to the support log (always under */Library/Application Support/Microsoft/Defender/wdavdiag/*). |
-| format | Format of the support log. |
+|Field|Description|
+|||
+|sha256|SHA256 identifier of the support log.|
+|size|Size of the support log.|
+|original_path|Path to the support log (always under */Library/Application Support/Microsoft/Defender/wdavdiag/*).|
+|format|Format of the support log.|
#### Diagnostic log upload completed report The following fields are collected:
-| Field | Description |
-| - | -- |
-| request_id | Correlation ID for the support log upload request. |
-| sha256 | SHA256 identifier of the support log. |
-| blob_sas_uri | URI used by the application to upload the support log. |
+|Field|Description|
+|||
+|request_id|Correlation ID for the support log upload request.|
+|sha256|SHA256 identifier of the support log.|
+|blob_sas_uri|URI used by the application to upload the support log.|
-#### Product and service performance data events
+#### Product and service performance data events for product and service usage
-**Unexpected application exit (crash)**
+**Unexpected application exit (crash)**:
Unexpected application exits and the state of the application when that happens.
-**Kernel extension statistics**
+**Kernel extension statistics**:
The following fields are collected:
-| Field | Description |
-| | -- |
-| pkt_ack_timeout | The following properties are aggregated numerical values, representing count of events that happened since kernel extension startup. |
-| pkt_ack_conn_timeout | |
-| ipc.ack_pkts | |
-| ipc.nack_pkts | |
-| ipc.send.ack_no_conn | |
-| ipc.send.nack_no_conn | |
-| ipc.send.ack_no_qsq | |
-| ipc.send.nack_no_qsq | |
-| ipc.ack.no_space | |
-| ipc.ack.timeout | |
-| ipc.ack.ackd_fast | |
-| ipc.ack.ackd | |
-| ipc.recv.bad_pkt_len | |
-| ipc.recv.bad_reply_len | |
-| ipc.recv.no_waiter | |
-| ipc.recv.copy_failed | |
-| ipc.kauth.vnode.mask | |
-| ipc.kauth.vnode.read | |
-| ipc.kauth.vnode.write | |
-| ipc.kauth.vnode.exec | |
-| ipc.kauth.vnode.del | |
-| ipc.kauth.vnode.read_attr | |
-| ipc.kauth.vnode.write_attr | |
-| ipc.kauth.vnode.read_ex_attr | |
-| ipc.kauth.vnode.write_ex_attr | |
-| ipc.kauth.vnode.read_sec | |
-| ipc.kauth.vnode.write_sec | |
-| ipc.kauth.vnode.take_own | |
-| ipc.kauth.vnode.link | |
-| ipc.kauth.vnode.create | |
-| ipc.kauth.vnode.move | |
-| ipc.kauth.vnode.mount | |
-| ipc.kauth.vnode.denied | |
-| ipc.kauth.vnode.ackd_before_deadline | |
-| ipc.kauth.vnode.missed_deadline | |
-| ipc.kauth.file_op.mask | |
-| ipc.kauth_file_op.open | |
-| ipc.kauth.file_op.close | |
-| ipc.kauth.file_op.close_modified | |
-| ipc.kauth.file_op.move | |
-| ipc.kauth.file_op.link | |
-| ipc.kauth.file_op.exec | |
-| ipc.kauth.file_op.remove | |
-| ipc.kauth.file_op.unmount | |
-| ipc.kauth.file_op.fork | |
-| ipc.kauth.file_op.create | |
+|Field|Description|
+|||
+|pkt_ack_timeout|The following properties are aggregated numerical values, representing count of events that happened since kernel extension startup.|
+|pkt_ack_conn_timeout||
+|ipc.ack_pkts||
+|ipc.nack_pkts||
+|ipc.send.ack_no_conn||
+|ipc.send.nack_no_conn||
+|ipc.send.ack_no_qsq||
+|ipc.send.nack_no_qsq||
+|ipc.ack.no_space||
+|ipc.ack.timeout||
+|ipc.ack.ackd_fast||
+|ipc.ack.ackd||
+|ipc.recv.bad_pkt_len||
+|ipc.recv.bad_reply_len||
+|ipc.recv.no_waiter||
+|ipc.recv.copy_failed||
+|ipc.kauth.vnode.mask||
+|ipc.kauth.vnode.read||
+|ipc.kauth.vnode.write||
+|ipc.kauth.vnode.exec||
+|ipc.kauth.vnode.del||
+|ipc.kauth.vnode.read_attr||
+|ipc.kauth.vnode.write_attr||
+|ipc.kauth.vnode.read_ex_attr||
+|ipc.kauth.vnode.write_ex_attr||
+|ipc.kauth.vnode.read_sec||
+|ipc.kauth.vnode.write_sec||
+|ipc.kauth.vnode.take_own||
+|ipc.kauth.vnode.link||
+|ipc.kauth.vnode.create||
+|ipc.kauth.vnode.move||
+|ipc.kauth.vnode.mount||
+|ipc.kauth.vnode.denied||
+|ipc.kauth.vnode.ackd_before_deadline||
+|ipc.kauth.vnode.missed_deadline||
+|ipc.kauth.file_op.mask||
+|ipc.kauth_file_op.open||
+|ipc.kauth.file_op.close||
+|ipc.kauth.file_op.close_modified||
+|ipc.kauth.file_op.move||
+|ipc.kauth.file_op.link||
+|ipc.kauth.file_op.exec||
+|ipc.kauth.file_op.remove||
+|ipc.kauth.file_op.unmount||
+|ipc.kauth.file_op.fork||
+|ipc.kauth.file_op.create||
## Resources
security Mac Pua https://github.com/MicrosoftDocs/microsoft-365-docs/commits/public/microsoft-365/security/defender-endpoint/mac-pua.md
localization_priority: Normal audience: ITPro-+ - m365-security-compliance - m365initiative-defender-endpoint
ms.technology: mde
> Want to experience Microsoft Defender for Endpoint? [Sign up for a free trial.](https://signup.microsoft.com/create-account/signup?products=7f379fee-c4f9-4278-b0a1-e4c8c2fcdf7e&ru=https://aka.ms/MDEp2OpenTrial?ocid=docs-wdatp-exposedapis-abovefoldlink) - The potentially unwanted application (PUA) protection feature in Microsoft Defender for Endpoint on macOS can detect and block PUA files on endpoints in your network. These applications are not considered viruses, malware, or other types of threats, but might perform actions on endpoints that adversely affect their performance or use. PUA can also refer to applications that are considered to have poor reputation.
PUA protection in Microsoft Defender for Endpoint on macOS can be configured in
- **Audit**: PUA files are reported in the product logs, but not in Microsoft 365 Defender portal. No notification is presented to the user and no action is taken by the product. - **Block**: PUA files are reported in the product logs and in Microsoft 365 Defender portal. The user is presented with a notification and action is taken by the product.
->[!WARNING]
->By default, PUA protection is configured in **Audit** mode.
+> [!WARNING]
+> By default, PUA protection is configured in **Audit** mode.
You can configure how PUA files are handled from the command line or from the management console.
security Mac Resources https://github.com/MicrosoftDocs/microsoft-365-docs/commits/public/microsoft-365/security/defender-endpoint/mac-resources.md
localization_priority: Normal audience: ITPro-+ - m365-security-compliance - m365initiative-defender-endpoint
There are several ways to uninstall Microsoft Defender for Endpoint on macOS. No
### From the command line -- ```sudo '/Library/Application Support/Microsoft/Defender/uninstall/uninstall'```
+- `sudo '/Library/Application Support/Microsoft/Defender/uninstall/uninstall'`
## Configuring from the command line Important tasks, such as controlling product settings and triggering on-demand scans, can be done from the command line:
-|Group |Scenario |Command |
-|-|-|-|
-|Configuration|Turn on/off real-time protection |`mdatp config real-time-protection --value [enabled/disabled]` |
-|Configuration|Turn on/off cloud protection |`mdatp config cloud --value [enabled/disabled]` |
-|Configuration|Turn on/off product diagnostics |`mdatp config cloud-diagnostic --value [enabled/disabled]` |
-|Configuration|Turn on/off automatic sample submission |`mdatp config cloud-automatic-sample-submission --value [enabled/disabled]` |
-|Configuration|Add a threat name to the allowed list |`mdatp threat allowed add --name [threat-name]` |
-|Configuration|Remove a threat name from the allowed list |`mdatp threat allowed remove --name [threat-name]` |
-|Configuration|List all allowed threat names |`mdatp threat allowed list` |
-|Configuration|Turn on PUA protection |`mdatp threat policy set --type potentially_unwanted_application -- action block` |
-|Configuration|Turn off PUA protection |`mdatp threat policy set --type potentially_unwanted_application -- action off` |
-|Configuration|Turn on audit mode for PUA protection |`mdatp threat policy set --type potentially_unwanted_application -- action audit` |
-|Configuration|Turn on/off passiveMode |`mdatp config passive-mode --value enabled [enabled/disabled]` |
-|Diagnostics |Change the log level |`mdatp log level set --level [error/warning/info/verbose]` |
-|Diagnostics |Generate diagnostic logs |`mdatp diagnostic create --path [directory]` |
-|Health |Check the product's health |`mdatp health` |
-|Health |Check for a spefic product attribute |`mdatp health --field [attribute: healthy/licensed/engine_version...]` |
-|Protection |Scan a path |`mdatp scan custom --path [path] [--ignore-exclusions]` |
-|Protection |Do a quick scan |`mdatp scan quick` |
-|Protection |Do a full scan |`mdatp scan full` |
-|Protection |Cancel an ongoing on-demand scan |`mdatp scan cancel` |
-|Protection |Request a security intelligence update |`mdatp definitions update` |
-|EDR |Add group tag to device. EDR tags are used for managing device groups. For more information, please visit /microsoft-365/security/defender-endpoint/machine-groups |`mdatp edr tag set --name GROUP --value [name]` |
-|EDR |Remove group tag from device |`mdatp edr tag remove --tag-name [name]` |
-|EDR |Add Group ID |`mdatp edr group-ids --group-id [group]` |
+|Group|Scenario|Command|
+||||
+|Configuration|Turn on/off real-time protection|`mdatp config real-time-protection --value [enabled/disabled]`|
+|Configuration|Turn on/off cloud protection|`mdatp config cloud --value [enabled/disabled]`|
+|Configuration|Turn on/off product diagnostics|`mdatp config cloud-diagnostic --value [enabled/disabled]`|
+|Configuration|Turn on/off automatic sample submission|`mdatp config cloud-automatic-sample-submission --value [enabled/disabled]`|
+|Configuration|Add a threat name to the allowed list|`mdatp threat allowed add --name [threat-name]`|
+|Configuration|Remove a threat name from the allowed list|`mdatp threat allowed remove --name [threat-name]`|
+|Configuration|List all allowed threat names|`mdatp threat allowed list`|
+|Configuration|Turn on PUA protection|`mdatp threat policy set --type potentially_unwanted_application -- action block`|
+|Configuration|Turn off PUA protection|`mdatp threat policy set --type potentially_unwanted_application -- action off`|
+|Configuration|Turn on audit mode for PUA protection|`mdatp threat policy set --type potentially_unwanted_application -- action audit`|
+|Configuration|Turn on/off passiveMode|`mdatp config passive-mode --value enabled [enabled/disabled]`|
+|Diagnostics|Change the log level|`mdatp log level set --level [error/warning/info/verbose]`|
+|Diagnostics|Generate diagnostic logs|`mdatp diagnostic create --path [directory]`|
+|Health|Check the product's health|`mdatp health`|
+|Health|Check for a spefic product attribute|`mdatp health --field [attribute: healthy/licensed/engine_version...]`|
+|Protection|Scan a path|`mdatp scan custom --path [path] [--ignore-exclusions]`|
+|Protection|Do a quick scan|`mdatp scan quick`|
+|Protection|Do a full scan|`mdatp scan full`|
+|Protection|Cancel an ongoing on-demand scan|`mdatp scan cancel`|
+|Protection|Request a security intelligence update|`mdatp definitions update`|
+|EDR|Add group tag to device. EDR tags are used for managing device groups. For more information, please visit /microsoft-365/security/defender-endpoint/machine-groups|`mdatp edr tag set --name GROUP --value [name]`|
+|EDR|Remove group tag from device|`mdatp edr tag remove --tag-name [name]`|
+|EDR|Add Group ID|`mdatp edr group-ids --group-id [group]`|
### How to enable autocompletion
To enable autocompletion in zsh:
```zsh sudo mkdir -p /usr/local/share/zsh/site-functions
- ```
- ```zsh
+ sudo ln -svf "/Applications/Microsoft Defender ATP.app/Contents/Resources/Tools/mdatp_completion.zsh" /usr/local/share/zsh/site-functions/_mdatp ```
security Mac Support Kext https://github.com/MicrosoftDocs/microsoft-365-docs/commits/public/microsoft-365/security/defender-endpoint/mac-support-kext.md
localization_priority: Normal audience: ITPro-+ - m365-security-compliance - m365initiative-defender-endpoint
See the instructions corresponding to the management tool that you used to deplo
## Manual deployment
-If less than 30 minutes have passed since the product was installed, navigate to **System Preferences** > **Security & Privacy**, where you have to **Allow** system software from developers "Microsoft Corporation".
+If less than 30 minutes have passed since the product was installed, navigate to **System Preferences** \> **Security & Privacy**, where you have to **Allow** system software from developers "Microsoft Corporation".
If you don't see this prompt, it means that 30 or more minutes have passed, and the kernel extension still not been approved to run on your device:
In this case, you need to perform the following steps to trigger the approval fl
```bash sudo kextutil /Library/Extensions/wdavkext.kext ```
-
+ ```Output Kext rejected due to system policy: <OSKext 0x7fc34d528390 [0x7fffa74aa8e0]> { URL = "file:///Library/StagedExtensions/Library/Extensions/wdavkext.kext/", ID = "com.microsoft.wdavkext" } Kext rejected due to system policy: <OSKext 0x7fc34d528390 [0x7fffa74aa8e0]> { URL = "file:///Library/StagedExtensions/Library/Extensions/wdavkext.kext/", ID = "com.microsoft.wdavkext" } Diagnostics for /Library/Extensions/wdavkext.kext: ```
-2. Open **System Preferences** > **Security & Privacy** from the menu. (Close it first, if it's opened.)
+2. Open **System Preferences** \> **Security & Privacy** from the menu. (Close it first, if it's opened.)
3. **Allow** system software from developers "Microsoft Corporation"
security Mac Support Perf https://github.com/MicrosoftDocs/microsoft-365-docs/commits/public/microsoft-365/security/defender-endpoint/mac-support-perf.md
localization_priority: Normal audience: ITPro-+ - m365-security-compliance - m365initiative-defender-endpoint
The following steps can be used to troubleshoot and mitigate these issues:
``` If your device is managed by your organization, real-time protection can be disabled by your administrator using the instructions in [Set preferences for Microsoft Defender for Endpoint on macOS](mac-preferences.md).
-
+ If the performance problem persists while real-time protection is off, the origin of the problem could be the endpoint detection and response component. In this case, please contact customer support for further instructions and mitigation.
-2. Open Finder and navigate to **Applications** > **Utilities**. Open **Activity Monitor** and analyze which applications are using the resources on your system. Typical examples include software updaters and compilers.
+2. Open Finder and navigate to **Applications** \> **Utilities**. Open **Activity Monitor** and analyze which applications are using the resources on your system. Typical examples include software updaters and compilers.
-1. To find the applications that are triggering the most scans, you can use real-time statistics gathered by Defender for Endpoint on Mac.
+3. To find the applications that are triggering the most scans, you can use real-time statistics gathered by Defender for Endpoint on Mac.
> [!NOTE] > This feature is available in version 100.90.70 or newer. This feature is enabled by default on the **Dogfood** and **InsiderFast** channels. If you're using a different update channel, this feature can be enabled from the command line:+ ```bash mdatp config real-time-protection-statistics --value enabled ```
The following steps can be used to troubleshoot and mitigate these issues:
> Using **--output json** (note the double dash) ensures that the output format is ready for parsing. The output of this command will show all processes and their associated scan activity.
-1. On your Mac system, download the sample Python parser high_cpu_parser.py using the command:
+4. On your Mac system, download the sample Python parser high_cpu_parser.py using the command:
```bash curl -O https://raw.githubusercontent.com/microsoft/mdatp-xplat/master/linux/diagnostic/high_cpu_parser.py
The following steps can be used to troubleshoot and mitigate these issues:
HTTP request sent, awaiting response... 200 OK Length: 1020 [text/plain] Saving to: 'high_cpu_parser.py'
- 100%[===========================================>] 1,020 --.-K/s in
+ 100%[===========================================>] 1,020 --.-K/s in
0s ```
-1. Next, type the following commands:
+5. Next, type the following commands:
```bash chmod +x high_cpu_parser.py
The following steps can be used to troubleshoot and mitigate these issues:
> [!NOTE] > The application stores statistics in memory and only keeps track of file activity since it was started and real-time protection was enabled. Processes that were launched before or during periods when real time protection was off are not counted. Additionally, only events which triggered scans are counted.
- >
-1. Configure Microsoft Defender for Endpoint on macOS with exclusions for the processes or disk locations that contribute to the performance issues and re-enable real-time protection.
+ >
+6. Configure Microsoft Defender for Endpoint on macOS with exclusions for the processes or disk locations that contribute to the performance issues and re-enable real-time protection.
See [Configure and validate exclusions for Microsoft Defender for Endpoint on macOS](mac-exclusions.md) for details.
security Mac Updates https://github.com/MicrosoftDocs/microsoft-365-docs/commits/public/microsoft-365/security/defender-endpoint/mac-updates.md
localization_priority: Normal audience: ITPro-+ - m365-security-compliance - m365initiative-defender-endpoint
The `Current` channel contains the most stable version of the product.
> - `Preview` was named `External` (Insider Slow) > - `Current` was named `Production`
->[!TIP]
->In order to preview new features and provide early feedback, it is recommended that you configure some devices in your enterprise to `Beta` or `Preview`.
+> [!TIP]
+> In order to preview new features and provide early feedback, it is recommended that you configure some devices in your enterprise to `Beta` or `Preview`.
+
+<br>
+
+****
|Section|Value| |||
The `Current` channel contains the most stable version of the product.
|**Possible values**|Beta <p> Preview <p> Current| |||
->[!WARNING]
->This setting changes the channel for all applications that are updated through Microsoft AutoUpdate. To change the channel only for Microsoft Defender for Endpoint on macOS, execute the following command after replacing `[channel-name]` with the desired channel:
+> [!WARNING]
+> This setting changes the channel for all applications that are updated through Microsoft AutoUpdate. To change the channel only for Microsoft Defender for Endpoint on macOS, execute the following command after replacing `[channel-name]` with the desired channel:
> > ```bash > defaults write com.microsoft.autoupdate2 Applications -dict-add "/Applications/Microsoft Defender ATP.app" " { 'Application ID' = 'WDAV00' ; 'App Domain' = 'com.microsoft.wdav' ; LCID = 1033 ; ChannelName = '[channel-name]' ; }"
The `Current` channel contains the most stable version of the product.
Change how often MAU searches for updates.
+<br>
+
+****
+ |Section|Value| ||| |**Domain**|`com.microsoft.autoupdate2`|
Change how often MAU searches for updates.
|**Data type**|Integer| |**Default value**|720 (minutes)| |**Comment**|This value is set in minutes.|
+|||
### Change how MAU interacts with updates Change how MAU searches for updates.
+<br>
+
+****
+ |Section|Value| ||| |**Domain**|`com.microsoft.autoupdate2`|
Change how MAU searches for updates.
|**Data type**|String| |**Possible values**|Manual <p> AutomaticCheck <p> AutomaticDownload| |**Comment**|Note that AutomaticDownload will do a download and install silently if possible.|
+|||
### Change whether the "Check for Updates" button is enabled Change whether local users will be able to click the "Check for Updates" option in the Microsoft AutoUpdate user interface.
+<br>
+
+****
+ |Section|Value| ||| |**Domain**|`com.microsoft.autoupdate2`| |**Key**|EnableCheckForUpdatesButton| |**Data type**|Boolean| |**Possible values**|True (default) <p> False|
+|||
### Disable Insider checkbox Set to true to make the "Join the Office Insider Program..." checkbox unavailable / greyed out to users.
+<br>
+
+****
+ |Section|Value| ||| |**Domain**|`com.microsoft.autoupdate2`| |**Key**|DisableInsiderCheckbox| |**Data type**|Boolean| |**Possible values**|False (default) <p> True|
+|||
### Limit the telemetry that is sent from MAU Set to false to send minimal heartbeat data, no application usage, and no environment details.
+<br>
+
+****
+ |Section|Value| ||| |**Domain**|`com.microsoft.autoupdate2`| |**Key**|SendAllTelemetryEnabled| |**Data type**|Boolean| |**Possible values**|True (default) <p> False|
+|||
## Example configuration profile
security Machine Groups https://github.com/MicrosoftDocs/microsoft-365-docs/commits/public/microsoft-365/security/defender-endpoint/machine-groups.md
ms.technology: mde
> Want to experience Microsoft Defender for Endpoint? [Sign up for a free trial.](https://signup.microsoft.com/create-account/signup?products=7f379fee-c4f9-4278-b0a1-e4c8c2fcdf7e&ru=https://aka.ms/MDEp2OpenTrial?ocid=docs-wdatp-exposedapis-abovefoldlink) - In an enterprise scenario, security operation teams are typically assigned a set of devices. These devices are grouped together based on a set of attributes such as their domains, computer names, or designated tags. In Microsoft Defender for Endpoint, you can create device groups and use them to:-- Limit access to related alerts and data to specific Azure AD user groups with [assigned RBAC roles](rbac.md) +
+- Limit access to related alerts and data to specific Azure AD user groups with [assigned RBAC roles](rbac.md)
- Configure different auto-remediation settings for different sets of devices - Assign specific remediation levels to apply during automated investigations - In an investigation, filter the **Devices list** to specific device groups by using the **Group** filter. You can create device groups in the context of role-based access (RBAC) to control who can take specific action or see information by assigning the device group(s) to a user group. For more information, see [Manage portal access using role-based access control](rbac.md).
->[!TIP]
+> [!TIP]
> For a comprehensive look into RBAC application, read: [Is your SOC running flat with RBAC](https://techcommunity.microsoft.com/t5/Windows-Defender-ATP/Is-your-SOC-running-flat-with-limited-RBAC/ba-p/320015). As part of the process of creating a device group, you'll:+ - Set the automated remediation level for that group. For more information on remediation levels, see [Use Automated investigation to investigate and remediate threats](automated-investigations.md). - Specify the matching rule that determines which device group belongs to the group based on the device name, domain, tags, and OS platform. If a device is also matched to other groups, it's added only to the highest ranked device group. - Select the Azure AD user group that should have access to the device group. - Rank the device group relative to other groups after it's created.
->[!NOTE]
->A device group is accessible to all users if you don't assign any Azure AD groups to it.
+> [!NOTE]
+> A device group is accessible to all users if you don't assign any Azure AD groups to it.
## Create a device group
-1. In the navigation pane, select **Settings** > **Endpoints** > **Permissions** > **Device groups**.
+1. In the navigation pane, select **Settings** \> **Endpoints** \> **Permissions** \> **Device groups**.
2. Click **Add device group**. 3. Enter the group name and automation settings and specify the matching rule that determines which devices belong to the group. See [How the automated investigation starts](automated-investigations.md#how-the-automated-investigation-starts).
- >[!TIP]
- >If you want to group devices by organizational unit, you can configure the registry key for the group affiliation. For more information on device tagging, see [Create and manage device tags](machine-tags.md).
+ > [!TIP]
+ > If you want to group devices by organizational unit, you can configure the registry key for the group affiliation. For more information on device tagging, see [Create and manage device tags](machine-tags.md).
4. Preview several devices that will be matched by this rule. If you're satisfied with the rule, click the **User access** tab. 5. Assign the user groups that can access the device group you created.
- >[!NOTE]
- >You can only grant access to Azure AD user groups that have been assigned to RBAC roles.
+ > [!NOTE]
+ > You can only grant access to Azure AD user groups that have been assigned to RBAC roles.
6. Click **Close**. The configuration changes are applied.
As part of the process of creating a device group, you'll:
You can promote or demote the rank of a device group so that it's given higher or lower priority during matching. When a device is matched to more than one group, it's added only to the highest ranked group. You can also edit and delete groups. --
->[!WARNING]
->Deleting a device group may affect email notification rules. If a device group is configured under an email notification rule, it will be removed from that rule. If the device group is the only group configured for an email notification, that email notification rule will be deleted along with the device group.
+> [!WARNING]
+> Deleting a device group may affect email notification rules. If a device group is configured under an email notification rule, it will be removed from that rule. If the device group is the only group configured for an email notification, that email notification rule will be deleted along with the device group.
By default, device groups are accessible to all users with portal access. You can change the default behavior by assigning Azure AD user groups to the device group. Devices that aren't matched to any groups are added to Ungrouped devices (default) group. You cannot change the rank of this group or delete it. However, you can change the remediation level of this group, and define the Azure AD user groups that can access this group.
->[!NOTE]
+> [!NOTE]
> Applying changes to device group configuration may take up to several minutes. - ### Add device group definitions+ Device group definitions can also include multiple values for each condition. You can set multiple tags, device names, and domains to the definition of a single device group. 1. Create a new device group, then select **Devices** tab. 2. Add the first value for one of the conditions. 3. Select `+` to add more rows of the same property type.
->[!TIP]
+> [!TIP]
> Use the 'OR' operator between rows of the same condition type, which allows multiple values per property.
+>
> You can add up to 10 rows (values) for each property type - tag, device name, domain. For more information on linking to device groups definitions, see [Device groups - Microsoft 365 security](https://sip.security.microsoft.com/homepage).
security Machine Tags https://github.com/MicrosoftDocs/microsoft-365-docs/commits/public/microsoft-365/security/defender-endpoint/machine-tags.md
You can add tags on devices using the following ways:
- Setting a registry key value > [!NOTE]
-> There may be some latency between the time a tag is added to a device and its availability in the devices list and device page.
+> There may be some latency between the time a tag is added to a device and its availability in the devices list and device page.
To add device tags using API, see [Add or remove device tags API](add-or-remove-machine-tags.md).
To add device tags using API, see [Add or remove device tags API](add-or-remove-
Tags are added to the device view and will also be reflected on the **Devices list** view. You can then use the **Tags** filter to see the relevant list of devices.
->[!NOTE]
-> Filtering might not work on tag names that contain parenthesis.<br>
+> [!NOTE]
+> Filtering might not work on tag names that contain parenthesis.
+>
> When you create a new tag, a list of existing tags are displayed. The list only shows tags created through the portal. Existing tags created from client devices will not be displayed. You can also delete tags from this view.
You can also delete tags from this view.
## Add device tags by setting a registry key value
->[!NOTE]
+> [!NOTE]
> Applicable only on the following devices:
->- Windows 10, version 1709 or later
->- Windows Server, version 1803 or later
->- Windows Server 2016
->- Windows Server 2012 R2
->- Windows Server 2008 R2 SP1
->- Windows 8.1
->- Windows 7 SP1
-
-> [!NOTE]
+>
+> - Windows 10, version 1709 or later
+> - Windows Server, version 1803 or later
+> - Windows Server 2016
+> - Windows Server 2012 R2
+> - Windows Server 2008 R2 SP1
+> - Windows 8.1
+> - Windows 7 SP1
+
+> [!NOTE]
> The maximum number of characters that can be set in a tag is 200. Devices with similar tags can be handy when you need to apply contextual action on a specific list of devices.
Use the following registry key entry to add a tag on a device:
- Registry key value (REG_SZ): `Group` - Registry key data: `Name of the tag you want to set`
->[!NOTE]
->The device tag is part of the device information report that's generated once a day. As an alternative, you may choose to restart the endpoint that would transfer a new device information report.
->
+> [!NOTE]
+> The device tag is part of the device information report that's generated once a day. As an alternative, you may choose to restart the endpoint that would transfer a new device information report.
+>
> If you need to remove a tag that was added using the above Registry key, clear the contents of the Registry key data instead of removing the 'Group' key.
security Machine https://github.com/MicrosoftDocs/microsoft-365-docs/commits/public/microsoft-365/security/defender-endpoint/machine.md
## Methods
-Method|Return Type |Description
-:|:|:
-[List machines](get-machines.md) | [machine](machine.md) collection | List set of [machine](machine.md) entities in the org.
-[Get machine](get-machine-by-id.md) | [machine](machine.md) | Get a [machine](machine.md) by its identity.
-[Get logged on users](get-machine-log-on-users.md) | [user](user.md) collection | Get the set of [User](user.md) that logged on to the [machine](machine.md).
-[Get related alerts](get-machine-related-alerts.md) | [alert](alerts.md) collection | Get the set of [alert](alerts.md) entities that were raised on the [machine](machine.md).
-[Get installed software](get-installed-software.md) | [software](software.md) collection | Retrieves a collection of installed software related to a given machine ID.
-[Get discovered vulnerabilities](get-discovered-vulnerabilities.md) | [vulnerability](vulnerability.md) collection | Retrieves a collection of discovered vulnerabilities related to a given machine ID.
-[Get security recommendations](get-security-recommendations.md) | [recommendation](recommendation.md) collection | Retrieves a collection of security recommendations related to a given machine ID.
-[Add or Remove machine tags](add-or-remove-machine-tags.md) | [machine](machine.md) | Add or Remove tag to a specific machine.
-[Find machines by IP](find-machines-by-ip.md) | [machine](machine.md) collection | Find machines seen with IP.
-[Find machines by tag](find-machines-by-tag.md) | [machine](machine.md) collection | Find machines by [Tag](machine-tags.md).
-[Get missing KBs](get-missing-kbs-machine.md) | KB collection | Get a list of missing KBs associated with the machine ID
-[Set device value](set-device-value.md)| [machine](machine.md) collection | Set the [value of a device](tvm-assign-device-value.md).
-[Update machine](update-machine-method.md) |[machine](machine.md) collection | Get the update status of a machine.
+<br>
+
+****
+
+|Method|Return Type|Description|
+||||
+|[List machines](get-machines.md)|[machine](machine.md) collection|List set of [machine](machine.md) entities in the org.|
+|[Get machine](get-machine-by-id.md)|[machine](machine.md)|Get a [machine](machine.md) by its identity.|
+|[Get logged on users](get-machine-log-on-users.md)|[user](user.md) collection|Get the set of [User](user.md) that logged on to the [machine](machine.md).|
+|[Get related alerts](get-machine-related-alerts.md)|[alert](alerts.md) collection|Get the set of [alert](alerts.md) entities that were raised on the [machine](machine.md).|
+|[Get installed software](get-installed-software.md)|[software](software.md) collection|Retrieves a collection of installed software related to a given machine ID.|
+|[Get discovered vulnerabilities](get-discovered-vulnerabilities.md)|[vulnerability](vulnerability.md) collection|Retrieves a collection of discovered vulnerabilities related to a given machine ID.|
+|[Get security recommendations](get-security-recommendations.md)|[recommendation](recommendation.md) collection|Retrieves a collection of security recommendations related to a given machine ID.|
+|[Add or Remove machine tags](add-or-remove-machine-tags.md)|[machine](machine.md)|Add or Remove tag to a specific machine.|
+|[Find machines by IP](find-machines-by-ip.md)|[machine](machine.md) collection|Find machines seen with IP.|
+|[Find machines by tag](find-machines-by-tag.md)|[machine](machine.md) collection|Find machines by [Tag](machine-tags.md).|
+|[Get missing KBs](get-missing-kbs-machine.md)|KB collection|Get a list of missing KBs associated with the machine ID|
+|[Set device value](set-device-value.md)|[machine](machine.md) collection|Set the [value of a device](tvm-assign-device-value.md).|
+|[Update machine](update-machine-method.md)|[machine](machine.md) collection|Get the update status of a machine.|
+|
## Properties
-Property | Type | Description
-:|:|:
-id | String | [machine](machine.md) identity.
-computerDnsName | String | [machine](machine.md) fully qualified name.
-firstSeen | DateTimeOffset | First date and time where the [machine](machine.md) was observed by Microsoft Defender for Endpoint.
-lastSeen | DateTimeOffset |Time and date of the last received full device report. A device typically sends a full report every 24 hours.
-osPlatform | String | Operating system platform.
-osProcessor | String | Operating system processor. Use osArchitecture property instead.
-version | String | Operating system Version.
-osBuild | Nullable long | Operating system build number.
-lastIpAddress | String | Last IP on local NIC on the [machine](machine.md).
-lastExternalIpAddress | String | Last IP through which the [machine](machine.md) accessed the internet.
-healthStatus | Enum | [machine](machine.md) health status. Possible values are: "Active", "Inactive", "ImpairedCommunication", "NoSensorData", "NoSensorDataImpairedCommunication" and "Unknown".
-rbacGroupName | String | Machine group Name.
-rbacGroupId | String | Machine group ID.
-riskScore | Nullable Enum | Risk score as evaluated by Microsoft Defender for Endpoint. Possible values are: 'None', 'Informational', 'Low', 'Medium' and 'High'.
-aadDeviceId | Nullable representation Guid | AAD Device ID (when [machine](machine.md) is AAD Joined).
-machineTags | String collection | Set of [machine](machine.md) tags.
-exposureLevel | Nullable Enum | Exposure level as evaluated by Microsoft Defender for Endpoint. Possible values are: 'None', 'Low', 'Medium' and 'High'.
-deviceValue | Nullable Enum | The [value of the device](tvm-assign-device-value.md). Possible values are: 'Normal', 'Low' and 'High'.
-ipAddresses | IpAddress collection | Set of ***IpAddress*** objects. See [Get machines API](get-machines.md).
-osArchitecture | String | Operating system architecture. Possible values are: "32-bit", "64-bit". Use this property instead of osProcessor.
+<br>
+****
+|Property|Type|Description|
+||||
+|id|String|[machine](machine.md) identity.|
+|computerDnsName|String|[machine](machine.md) fully qualified name.|
+|firstSeen|DateTimeOffset|First date and time where the [machine](machine.md) was observed by Microsoft Defender for Endpoint.|
+|lastSeen|DateTimeOffset|Time and date of the last received full device report. A device typically sends a full report every 24 hours.|
+|osPlatform|String|Operating system platform.|
+|osProcessor|String|Operating system processor. Use osArchitecture property instead.|
+|version|String|Operating system Version.|
+|osBuild|Nullable long|Operating system build number.|
+|lastIpAddress|String|Last IP on local NIC on the [machine](machine.md).|
+|lastExternalIpAddress|String|Last IP through which the [machine](machine.md) accessed the internet.|
+|healthStatus|Enum|[machine](machine.md) health status. Possible values are: "Active", "Inactive", "ImpairedCommunication", "NoSensorData", "NoSensorDataImpairedCommunication" and "Unknown".|
+|rbacGroupName|String|Machine group Name.|
+|rbacGroupId|String|Machine group ID.|
+|riskScore|Nullable Enum|Risk score as evaluated by Microsoft Defender for Endpoint. Possible values are: 'None', 'Informational', 'Low', 'Medium' and 'High'.|
+|aadDeviceId|Nullable representation Guid|AAD Device ID (when [machine](machine.md) is AAD Joined).|
+|machineTags|String collection|Set of [machine](machine.md) tags.|
+|exposureLevel|Nullable Enum|Exposure level as evaluated by Microsoft Defender for Endpoint. Possible values are: 'None', 'Low', 'Medium' and 'High'.|
+|deviceValue|Nullable Enum|The [value of the device](tvm-assign-device-value.md). Possible values are: 'Normal', 'Low' and 'High'.|
+|ipAddresses|IpAddress collection|Set of ***IpAddress*** objects. See [Get machines API](get-machines.md).|
+|osArchitecture|String|Operating system architecture. Possible values are: "32-bit", "64-bit". Use this property instead of osProcessor.|
+|
security Machines View Overview https://github.com/MicrosoftDocs/microsoft-365-docs/commits/public/microsoft-365/security/defender-endpoint/machines-view-overview.md
ms.technology: mde
> Want to experience Defender for Endpoint? [Sign up for a free trial.](https://signup.microsoft.com/create-account/signup?products=7f379fee-c4f9-4278-b0a1-e4c8c2fcdf7e&ru=https://aka.ms/MDEp2OpenTrial?ocid=docs-wdatp-machinesview-abovefoldlink)
-The **Devices list** shows a list of the devices in your network where alerts were generated. By default, the queue displays devices seen in the last 30 days.
+The **Devices list** shows a list of the devices in your network where alerts were generated. By default, the queue displays devices seen in the last 30 days.
At a glance you'll see information such as domain, risk level, OS platform, and other details for easy identification of devices most at risk.
There are several options you can choose from to customize the devices list view
During the onboarding process, the **Devices list** is gradually populated with devices as they begin to report sensor data. Use this view to track your onboarded endpoints as they come online, or download the complete endpoint list as a CSV file for offline analysis.
->[!NOTE]
+> [!NOTE]
> If you export the device list, it will contain every device in your organization. It might take a significant amount of time to download, depending on how large your organization is. Exporting the list in CSV format displays the data in an unfiltered manner. The CSV file will include all devices in the organization, regardless of any filtering applied in the view itself. ![Image of devices list with list of devices.](images/device-inventory.png)
security Manage Alerts https://github.com/MicrosoftDocs/microsoft-365-docs/commits/public/microsoft-365/security/defender-endpoint/manage-alerts.md
Selecting an alert in either of those places brings up the **Alert management pa
![Image of alert management pane and alerts queue.](images/atp-alerts-selected.png) ## Link to another incident
-You can create a new incident from the alert or link to an existing incident.
+
+You can create a new incident from the alert or link to an existing incident.
## Assign alerts
-If an alert is not yet assigned, you can select **Assign to me** to assign the alert to yourself.
+If an alert is not yet assigned, you can select **Assign to me** to assign the alert to yourself.
## Suppress alerts+ There might be scenarios where you need to suppress alerts from appearing in Microsoft Defender Security Center. Defender for Endpoint lets you create suppression rules for specific alerts that are known to be innocuous such as known tools or processes in your organization. Suppression rules can be created from an existing alert. They can be disabled and reenabled if needed.
The context of the rule lets you tailor what gets surfaced into the portal and e
You can use the examples in the following table to help you choose the context for a suppression rule:
-| **Context** | **Definition** | **Example scenarios** |
-|:--|:|:--|
-| **Suppress alert on this device** | Alerts with the same alert title and on that specific device only will be suppressed. <br /><br />All other alerts on that device will not be suppressed. | <ul><li>A security researcher is investigating a malicious script that has been used to attack other devices in your organization.</li><li>A developer regularly creates PowerShell scripts for their team.</li></ul> |
-| **Suppress alert in my organization** | Alerts with the same alert title on any device will be suppressed. | <ul><li>A benign administrative tool is used by everyone in your organization.</li></ul> |
+|Context|Definition|Example scenarios|
+||||
+|**Suppress alert on this device**|Alerts with the same alert title and on that specific device only will be suppressed. <p> All other alerts on that device will not be suppressed.|<ul><li>A security researcher is investigating a malicious script that has been used to attack other devices in your organization.</li><li>A developer regularly creates PowerShell scripts for their team.</li></ul>|
+|**Suppress alert in my organization**|Alerts with the same alert title on any device will be suppressed.|<ul><li>A benign administrative tool is used by everyone in your organization.</li></ul>|
-### Suppress an alert and create a new suppression rule:
-Create custom rules to control when alerts are suppressed, or resolved. You can control the context for when an alert is suppressed by specifying the alert title, Indicator of compromise, and the conditions. After specifying the context, you'll be able to configure the action and scope on the alert.
+### Suppress an alert and create a new suppression rule
+
+Create custom rules to control when alerts are suppressed, or resolved. You can control the context for when an alert is suppressed by specifying the alert title, Indicator of compromise, and the conditions. After specifying the context, you'll be able to configure the action and scope on the alert.
1. Select the alert you'd like to suppress. This brings up the **Alert management** pane.
-2. Select **Create a suppression rule**.
+2. Select **Create a suppression rule**.
You can create a suppression condition using these attributes. An AND operator is applied between each condition, so suppression occurs only if all conditions are met.
-
- * File SHA1
- * File name - wildcard supported
- * Folder path - wildcard supported
- * IP address
- * URL - wildcard supported
- * Command line - wildcard supported
+
+ - File SHA1
+ - File name - wildcard supported
+ - Folder path - wildcard supported
+ - IP address
+ - URL - wildcard supported
+ - Command line - wildcard supported
3. Select the **Triggering IOC**.
-
-4. Specify the action and scope on the alert. <br>
- You can automatically resolve an alert or hide it from the portal. Alerts that are automatically resolved will appear in the resolved section of the alerts queue, alert page, and device timeline and will appear as resolved across Defender for Endpoint APIs. <br><br> Alerts that are marked as hidden will be suppressed from the entire system, both on the device's associated alerts and from the dashboard and will not be streamed across Defender for Endpoint APIs.
+4. Specify the action and scope on the alert.
+
+ You can automatically resolve an alert or hide it from the portal. Alerts that are automatically resolved will appear in the resolved section of the alerts queue, alert page, and device timeline and will appear as resolved across Defender for Endpoint APIs.
+
+ Alerts that are marked as hidden will be suppressed from the entire system, both on the device's associated alerts and from the dashboard and will not be streamed across Defender for Endpoint APIs.
5. Enter a rule name and a comment.
Create custom rules to control when alerts are suppressed, or resolved. You can
#### View the list of suppression rules
-1. In the navigation pane, select **Settings** > **Alert suppression**.
+1. In the navigation pane, select **Settings** \> **Alert suppression**.
2. The list of suppression rules shows all the rules that users in your organization have created.
For example, a team leader can review all **New** alerts, and decide to assign t
Alternatively, the team leader might assign the alert to the **Resolved** queue if they know the alert is benign, coming from a device that is irrelevant (such as one belonging to a security administrator), or is being dealt with through an earlier alert. -- ## Alert classification
-You can choose not to set a classification, or specify whether an alert is a true alert or a false alert. It's important to provide the classification of true positive/false positive. This classification is used to monitor alert quality, and make alerts more accurate. The "determination" field defines additional fidelity for a "true positive" classification.
+
+You can choose not to set a classification, or specify whether an alert is a true alert or a false alert. It's important to provide the classification of true positive/false positive. This classification is used to monitor alert quality, and make alerts more accurate. The "determination" field defines additional fidelity for a "true positive" classification.
## Add comments and view the history of an alert+ You can add comments and view historical events about an alert to see previous changes made to the alert. Whenever a change or comment is made to an alert, it is recorded in the **Comments and history** section. Added comments instantly appear on the pane. - ## Related topics+ - [Manage suppression rules](manage-suppression-rules.md) - [View and organize the Microsoft Defender for Endpoint Alerts queue](alerts-queue.md) - [Investigate Microsoft Defender for Endpoint alerts](investigate-alerts.md)
security Post Ti Indicator https://github.com/MicrosoftDocs/microsoft-365-docs/commits/public/microsoft-365/security/defender-endpoint/post-ti-indicator.md
In the request body, supply a JSON object with the following parameters:
Parameter|Type|Description :|:|: indicatorValue|String|Identity of the [Indicator](ti-indicator.md) entity. **Required**
-indicatorType|Enum|Type of the indicator. Possible values are: "FileSha1", "FileSha256", "IpAddress", "DomainName" and "Url". **Required**
-action|Enum|The action that will be taken if the indicator will be discovered in the organization. Possible values are: "Alert", "AlertAndBlock", and "Allowed". **Required**
-application|String|The application associated with the indicator. **Optional**
+indicatorType|Enum|Type of the indicator. Possible values are: "FileSha1", "FileMd5", "CertificateThumbprint", "FileSha256", "IpAddress", "DomainName" and "Url". **Required**
+action|Enum|The action that will be taken if the indicator will be discovered in the organization. Possible values are: "Alert", "Warn", "Block", "Audit, "BlockAndRemediate", "AlertAndBlock", and "Allowed". **Required**
+application|String|The application associated with the indicator. This field only works for new indicators. It will not update the value on an existing indicator. **Optional**
title|String|Indicator alert title. **Required** description|String|Description of the indicator. **Required** expirationTime|DateTimeOffset|The expiration time of the indicator. **Optional**
security Investigate Users https://github.com/MicrosoftDocs/microsoft-365-docs/commits/public/microsoft-365/security/defender/investigate-users.md
ms.technology: m365d
- Microsoft 365 Defender
-Part of your incident investigation can include user accounts. Start with the **Users** tab for an incident from **Incidents & alerts >** *incident* **> Users**.
+Part of your incident investigation can include user accounts. Start with the **Users** tab for an incident from **Incidents & alerts** \> ***incident*** \> **Users**.
:::image type="content" source="../../media/investigate-incidents/incident-users.png" alt-text="Example of a Users page for an incident."::: To get a quick summary of a user account for the incident, select the check mark next to the user account name. Here's an example. > [!NOTE] > The User page shows Azure Active Directory (Azure AD) organization as well as groups, helping you understand the groups and permissions associated with a user.
In addition, you can take action directly in the Microsoft 365 Defender portal t
From here, you can select **Go to user page** to see the details of a user account. Here's an example. You can also see this page by selecting the name of the user account from the list on the **Users** page.
-the Microsoft 365 Defender portal user page combines information from Microsoft Defender for Endpoint, Microsoft Defender for Identity, and Microsoft Cloud App Security (depending on what licenses you have).
+You can see group membership for the user, by selecting the number under **Groups**.
++
+By selecting the icon under **Manager**, you can see where the user is in the organization tree.
+
+The Microsoft 365 Defender portal user page combines information from Microsoft Defender for Endpoint, Microsoft Defender for Identity, and Microsoft Cloud App Security (depending on what licenses you have).
This page shows information specific to the security risk of a user account. This includes a score that helps assess risk and recent events and alerts that contributed to the overall risk of the user.
-From this page, you can do these additional actions:
+From this page, you can do these additional actions:
- Mark the user account as compromised - Require the user to sign in again - Suspend the user account - See the Azure Active Directory (Azure AD) user account settings - View the files owned by the user account-- View files shared with this user.
+- View files shared with this user.
Here's an example. - <!-- You can access this page from multiple areas in the Microsoft 365 Defender portal. You can access this page from a specific incident in the **Users** tab. Some alerts might include users as a specific affected asset. You can also search for users. Learn more about how to investigate users and potential risk [in this Cloud App Security tutorial](/cloud-app-security/tutorial-ueba#:~:text=To%20identify%20who%20your%20riskiest,user%20page%20to%20investigate%20them). >
+-->
+
+## View lateral movement paths
+
+By selecting the **Lateral movement paths** tab, you can view a fully dynamic and clickable map that provides you with a visual representation of the lateral movement paths to and from this user that can be used to infiltrate your network.
+
+The map provides you with a list of how many hops between computers or users an attacker would have to and from this user to compromise a sensitive account, and if the user has a sensitive account, you can see how many resources and accounts are directly connected.
+
+If a potential lateral movement path wasn't detected for the entity during the past two days, the graph doesn't display. Select a different date using View a different date to view previous lateral movement paths graphs discovered for this entity. The lateral movement path report is always available to provide you with information about the potential lateral movement paths discovered, and can be customized by time.
++
+For more information, see [Lateral movement paths](/defender-for-identity/use-case-lateral-movement-path).
## Next steps
As needed for in-process incidents, continue your [investigation](investigate-in
- [Incidents overview](incidents-overview.md) - [Prioritize incidents](incident-queue.md)-- [Manage incidents](manage-incidents.md)
+- [Manage incidents](manage-incidents.md)
security Manage Quarantined Messages And Files https://github.com/MicrosoftDocs/microsoft-365-docs/commits/public/microsoft-365/security/office-365-security/manage-quarantined-messages-and-files.md
You view and manage quarantined messages in the Microsoft 365 Defender portal or
- Adding users to the corresponding Azure Active Directory role in the Microsoft 365 admin center gives users the required permissions _and_ permissions for other features in Microsoft 365. For more information, see [About admin roles](../../admin/add-users/about-admin-roles.md). - The **View-Only Organization Management** role group in [Exchange Online](/Exchange/permissions-exo/permissions-exo#role-groups) also gives read-only access to the feature.
- - <sup>\*</sup> Members of the **Quarantine Administrator** role group also need to be members of the **Hygiene Management** role group in [Exchange Online](/Exchange/permissions-exo/permissions-exo#role-groups) in order to do quarantine procedures in Exchange Online PowerShell.
+ - <sup>\*</sup> Members of the **Quarantine Administrator** role group in **Email & collaboration** roles in the [Microsoft 365 Defender portal](permissions-microsoft-365-security-center.md#email--collaboration-roles-in-the-microsoft-365-defender-portal) also need to be members of the **Hygiene Management** role group in [Exchange Online](/Exchange/permissions-exo/permissions-exo#role-groups) to do quarantine procedures in Exchange Online PowerShell.
- Quarantined messages are retained for a default period of time before they're automatically deleted: - 30 days for messages quarantined by anti-spam policies (spam, phishing, and bulk email). This is the default and maximum value. To configure (lower) this value, see [Configure anti-spam policies](configure-your-spam-filter-policies.md).