Microsoft Defender for Business requirements

This article describes the requirements for Defender for Business.

What to do

  1. Review the requirements and make sure you meet them.
  2. Proceed to your next steps.

Review the requirements

The following table lists the basic requirements you need to configure and use Defender for Business.

Requirement Description
Subscription Microsoft 365 Business Premium or Defender for Business (standalone). See How to get Defender for Business.
Datacenter One of the following datacenter locations:
  • European Union
  • United Kingdom
  • United States
User accounts
  • User accounts are created in the Microsoft 365 admin center (
  • Licenses for Defender for Business (or Microsoft 365 Business Premium) are assigned in the Microsoft 365 admin center.
To get help with this task, see Add users and assign licenses.
Permissions To sign up for Defender for Business, you must be a Global Admin.

To access the Microsoft 365 Defender portal, users must have one of the following roles in Azure AD assigned:
  • Security Reader
  • Security Admin
  • Global Admin
To learn more, see Roles and permissions in Defender for Business.
Browser requirements Microsoft Edge or Google Chrome
Client device operating system To manage devices in the Microsoft 365 Defender portal, your devices must be running one of the following operating systems:
  • Windows 10 or 11 Business
  • Windows 10 or 11 Professional
  • Windows 10 or 11 Enterprise
  • Mac (the three most-current releases are supported)

Make sure that KB5006738 is installed on the Windows devices.

If you're already managing devices in Microsoft Intune, you can continue to use the Microsoft Endpoint Manager admin center. In that case, the following other operating systems are supported:
  • iOS and iPadOS
  • Android OS
Server requirements If you're planning to onboard an instance of Windows Server or Linux Server, you must meet the following requirements:
  • The Preview features setting is turned on. In the Microsoft 365 Defender portal (, go to Settings > Endpoints > General > Advanced features > Preview features.
  • Enforcement scope for Windows Server is turned on. In the Microsoft 365 Defender portal, go to Settings > Endpoints > Configuration management > Enforcement scope. Select Use MDE to enforce security configuration settings from MEM, select Windows Server, and then select Save.
  • Linux Server endpoints meet the prerequisites for Microsoft Defender for Endpoint on Linux.


Azure Active Directory (Azure AD) is used to manage user permissions and device groups. Azure AD is included in your Defender for Business subscription.

  • If you don't have a Microsoft 365 subscription before you start your trial, Azure AD will be provisioned for you during the activation process.
  • If you do have another Microsoft 365 subscription when you start your Defender for Business trial, you can use your existing Azure AD service.

Next steps

Go to Step 2: Assign roles and permissions in Defender for Business.