Step 7. Promote your Microsoft Defender XDR evaluation environment to production
Applies to:
- Microsoft Defender XDR
To promote your Microsoft Defender XDR evaluation environment to production, first purchase the necessary license. Follow the steps in Create the eval environment and purchase the Office 365 E5 license (instead of selecting Start free trial).
Next, complete any other configuration and expand your pilot groups until these reach full production.
Microsoft Defender for Identity
Defender for Identity doesn't require any other configuration. Just make sure to purchase the necessary licenses and install the sensor on all of your Active Directory domain controllers and Active Directory Federation Services (AD FS) servers.
Microsoft Defender for Office 365
After successfully evaluating or piloting Defender for Office 365, it can be promoted to your entire production environment.
- Purchase and provision the necessary licenses and assign them to your production users.
- Rerun recommended baseline policy configurations (either Standard or Strict) against your production email domain or specific groups of users.
- Optionally create and configure any custom Defender for Office 365 policies against your production email domain or groups of users. However, remember that any assigned baseline policies will always take precedence over custom policies.
- Update the public MX record for your production email domain to resolve directly to EOP.
- Decommission any third-party SMTP gateways and disable or delete any EXO connectors associated with this relay.
Microsoft Defender for Endpoint
To promote Microsoft Defender for Endpoint evaluation environment from a pilot to production, onboard more endpoints to the service using any of the supported tools and methods.
Use the following general guidelines to onboard more devices to Microsoft Defender for Endpoint.
- Verify that the device fulfills the minimum requirements.
- Depending on the device, follow the configuration steps provided in the onboarding section of the Defender for Endpoint portal.
- Use the appropriate management tool and deployment method for your devices.
- Run a detection test to verify that the devices are properly onboarded and reporting to the service.
Microsoft Defender for Cloud Apps
Microsoft Defender for Cloud Apps doesn't require any other configuration. Just make sure to purchase the necessary licenses. If you've scoped the deployment to certain user groups, increase the scope of these groups until you reach production scale.
Tip
Do you want to learn more? Engage with the Microsoft Security community in our Tech Community: Microsoft Defender XDR Tech Community.
Commenti e suggerimenti
Presto disponibile: Nel corso del 2024 verranno gradualmente disattivati i problemi di GitHub come meccanismo di feedback per il contenuto e ciò verrà sostituito con un nuovo sistema di feedback. Per altre informazioni, vedere https://aka.ms/ContentUserFeedback.
Invia e visualizza il feedback per