管理 Microsoft Defender for Endpoint,後期遷移Manage Microsoft Defender for Endpoint, post migration

適用於:Applies to:

想要體驗適用於端點的 Microsoft Defender 嗎?Want to experience Microsoft Defender for Endpoint? 注册免費試用版。Sign up for a free trial.

在您從先前的 endpoint protection 和防病毒方案移至 Microsoft Defender for Endpoint 後,下一步是管理您的功能。After you have moved from your previous endpoint protection and antivirus solution to Microsoft Defender for Endpoint, your next step is to manage your features and capabilities. 我們建議使用Microsoft 端點管理員,其中包括Microsoft IntuneMicrosoft Endpoint Configuration Manager,以管理您組織的裝置及安全性設定。We recommend using Microsoft Endpoint Manager, which includes Microsoft Intune and Microsoft Endpoint Configuration Manager, to manage your organization's devices and security settings. 不過,您可以在 Azure Active Directory 網域服務中使用其他工具/方法,例如「群組原則」物件。However, you can use other tools/methods, such as Group Policy Objects in Azure Active Directory Domain Services.

下表列出您可以使用的各種工具/方法,以及深入瞭解的連結。The following table lists various tools/methods you can use, with links to learn more.

工具/方法Tool/Method 描述Description
Microsoft Defender 資訊安全中心 (中的 威脅及弱點管理儀表板深入 資訊 https://securitycenter.windows.com) Threat and vulnerability management dashboard insights in the Microsoft Defender Security Center (https://securitycenter.windows.com) 威脅 & 弱點管理儀表板提供切實可行的資訊,讓您的安全作業小組可用來降低風險並改善組織的安全性狀況。The threat & vulnerability management dashboard provides actionable information that your security operations team can use to reduce exposure and improve your organization's security posture.

請參閱威脅 & 弱點管理概述 Microsoft Defender 資訊安全中心See Threat & vulnerability management and Overview of the Microsoft Defender Security Center.
Microsoft Intune (建議) Microsoft Intune (recommended) Microsoft Intune (Intune) , Microsoft 端點管理員的元件,側重于行動裝置管理 (MDM) 和行動應用程式管理 (MAM) 。Microsoft Intune (Intune), a component of Microsoft Endpoint Manager, focuses on mobile device management (MDM) and mobile application management (MAM). 透過 Intune,您可以控制組織裝置的使用方式,包括行動電話、平板電腦和可擕式電腦。With Intune, you control how your organization’s devices are used, including mobile phones, tablets, and laptops. 您也可以設定特定原則來控制應用程式。You can also configure specific policies to control applications.

請參閱 使用 Intune 管理 Microsoft Defender For EndpointSee Manage Microsoft Defender for Endpoint using Intune.
Microsoft Endpoint Configuration ManagerMicrosoft Endpoint Configuration Manager Microsoft 端點管理員 (Configuration Manager) (以前稱為 System Center Configuration Manager)是Microsoft 端點管理員的元件。Microsoft Endpoint Manager (Configuration Manager), formerly known as System Center Configuration Manager, is a component of Microsoft Endpoint Manager. Configuration Manager 是一種強大的工具,可用於管理使用者、裝置和軟體。Configuration Manager is a powerful tool to manage your users, devices, and software.

請參閱 使用 Configuration Manager 管理 Microsoft Defender For EndpointSee Manage Microsoft Defender for Endpoint with Configuration Manager.
Azure Active Directory 網域服務中的群組原則物件Group Policy Objects in Azure Active Directory Domain Services Azure Active Directory 網域服務包含使用者和裝置的內建群組原則物件。Azure Active Directory Domain Services includes built-in Group Policy Objects for users and devices. 您可以視環境需要自訂內建的群組原則物件,也可以建立自訂的群組原則物件和組織單位 (Ou) 。You can customize the built-in Group Policy Objects as needed for your environment, as well as create custom Group Policy Objects and organizational units (OUs).

請參閱 使用群組原則物件管理 Microsoft Defender For EndpointSee Manage Microsoft Defender for Endpoint with Group Policy Objects.
PowerShell、WMI 和 MPCmdRun.exePowerShell, WMI, and MPCmdRun.exe 我們建議使用 Microsoft 端點管理員 (,其中包含 Intune 及 Configuration Manager) ,以管理組織裝置上的威脅防護功能。不過,您可以設定某些設定,例如個別裝置上的 Microsoft Defender 防毒軟體設定 (端點) 具有 PowerShell、WMI 或 MPCmdRun.exe 工具。We recommend using Microsoft Endpoint Manager (which includes Intune and Configuration Manager) to manage threat protection features on your organization's devices. However, you can configure some settings, such as Microsoft Defender Antivirus settings on individual devices (endpoints) with PowerShell, WMI, or the MPCmdRun.exe tool.

您可以使用 PowerShell 來管理 Microsoft Defender 防毒軟體、exploit protection 和攻擊面降低規則。You can use PowerShell to manage Microsoft Defender Antivirus, exploit protection, and your attack surface reduction rules. 請參閱 Configure a Microsoft Defender For Endpoint with PowerShellSee Configure Microsoft Defender for Endpoint with PowerShell.

您可以使用 Windows Management Instrumentation (WMI) 來管理 Microsoft Defender 防毒軟體和排除。You can use Windows Management Instrumentation (WMI) to manage Microsoft Defender Antivirus and exclusions. 請參閱 使用 WMI 設定 Microsoft Defender For EndpointSee Configure Microsoft Defender for Endpoint with WMI.

您可以使用 Microsoft 惡意程式碼保護 Command-Line 公用程式 (MPCmdRun.exe) 管理 Microsoft Defender 防毒軟體和排除,以及驗證網路與雲端之間的連線。You can use the Microsoft Malware Protection Command-Line Utility (MPCmdRun.exe) to manage Microsoft Defender Antivirus and exclusions, as well as validate connections between your network and the cloud. 請參閱 Configure a Microsoft Defender For Endpoint with MPCmdRun.exeSee Configure Microsoft Defender for Endpoint with MPCmdRun.exe.

另請參閱See also