Edit

Microsoft Defender for Endpoint on Android

  • Article

Applies to:

Want to experience Microsoft Defender for Endpoint? Sign up for a free trial.

This topic describes how to install, configure, update, and use Defender for Endpoint on Android.

Caution

Running other third-party endpoint protection products alongside Defender for Endpoint on Android is likely to cause performance problems and unpredictable system errors.

How to install Microsoft Defender for Endpoint on Android

Prerequisites

  • For end users:

    • The end user must be assigned a Microsoft Intune license. For more information on how to assign licenses, see Assign licenses to users.
    • The users of the app must be assigned a Microsoft Defender for Endpoint license. For more information on how to assign licenses, see Microsoft Defender for Endpoint licensing requirements.
    • Intune Company Portal app can be downloaded from Google Play and is available on the Android device.
    • Additionally, device(s) can be enrolled via the Intune Company Portal app to enforce Intune device compliance policies.

  • For Administrators:

    • Access to the Microsoft Defender portal.

    • Access to the Microsoft Intune admin center to:

      • Deploy the app to enrolled user groups in your organization.
      • Configure Microsoft Defender for Endpoint risk signals in app protection policy.

      Note

      • Microsoft Defender for Endpoint now extends protection to an organization's data within a managed application (MAM) for devices that are not enrolled using mobile device management (MDM), but are using Intune to manage mobile applications. It also extends this support to customers who use other enterprise mobility management solutions, while still using Intune for mobile application management (MAM).
      • In addition, Microsoft Defender for Endpoint already supports devices that are enrolled using Intune mobile device management (MDM).

Network Requirements

System Requirements

  • Mobile phones and tablets running Android 8.0 and above. Mobile phones running Android go and other mobile devices running Android are not currently supported.
  • Intune Company Portal app is downloaded from Google Play and installed. Device enrollment is required for Intune device compliance policies to be enforced.

Note

Microsoft Defender for Endpoint on Android isn't supported on userless or shared devices.

Installation instructions

Microsoft Defender for Endpoint on Android supports installation on both modes of enrolled devices - the legacy Device Administrator and Android Enterprise modes. Currently, Personally-owned devices with work profile, Corporate-owned devices with work profile, and Corporate-owned fully managed user device enrollments are supported in Android Enterprise. Support for other Android Enterprise modes will be announced when ready.

Note

Microsoft Defender for Endpoint on Android is available on Google Play now.

You can connect to Google Play from Intune to deploy Microsoft Defender for Endpoint app, across Device Administrator and Android Enterprise enrollment modes.

How to Configure Microsoft Defender for Endpoint on Android

Guidance on how to configure Microsoft Defender for Endpoint on Android features is available in Configure Microsoft Defender for Endpoint on Android features.

Tip

Do you want to learn more? Engage with the Microsoft Security community in our Tech Community: Microsoft Defender for Endpoint Tech Community.