
The above description of Windows Defender ATP comes directly from TechNet, and you can read more on the following page: Threat intelligence: Generated by Microsoft hunters, security teams, and augmented by threat intelligence provided by partners, threat intelligence enables Windows Defender ATP to identify attacker tools, techniques, and procedures, and generate alerts when these are observed in collected telemetry.Cloud security analytics: Leveraging big-data, machine-learning, and unique Microsoft optics across the Windows ecosystem (such as the Microsoft Malicious Software Removal Tool, enterprise cloud products (such as Office 365), and online assets (such as Bing and SmartScreen URL reputation), behavioral signals are translated into insights, detections, and recommended responses to advanced threats.Endpoint behavioral sensors: Embedded in Windows 10, these sensors collect and process behavioral signals from the operating system (for example, process, registry, file, and network communications) and sends this telemetry to your private, isolated, cloud instance of Windows Defender ATP.Windows Defender ATP uses the following combination of technology built into Windows 10 and Microsoft’s robust cloud service: Windows Defender Advanced Threat Protection (Windows Defender ATP) is a security service, built into Windows 10 that enables enterprise customers detect, investigate, and respond to advanced threats on their networks. Windows 10 devices running version 1607 or later (or Insider Preview Build 14332 and up).ConfigMgr 1606 installed and the Windows Defender ATP feature enabled (we’ll cover this later in the post).Requirementsīefore you can go ahead and enable the support for managing Windows Defender ATP policies for Windows 10 devices with ConfigMgr, you’ll need to have the following requirements fulfilled:

In this blog post, we’ll take a look at what’s required to get started.


With the release of ConfigMgr 1606, we can now onboard supported Windows 10 devices running the latest version into Windows Defender ATP.

Windows 10 version 1607 (also refered to as Redstone 1 or Anniversary Build) comes with built-in support for the Windows Defender Advanced Threat Protection (Windows Defender ATP) service.
