使用適用于 Office 365 的 Microsoft Defender 搭配 Microsoft Defender for EndpointUse Microsoft Defender for Office 365 together with Microsoft Defender for Endpoint

重要

改良的 Microsoft 365 安全性中心現在可供公開預覽。The improved Microsoft 365 security center is now available in public preview. 這個新的體驗會將適用於端點的 Defender、適用於 Office 365 的 Defender、Microsoft 365 Defender 和更多功能帶到 Microsoft 365 安全性中心。This new experience brings Defender for Endpoint, Defender for Office 365, Microsoft 365 Defender, and more into the Microsoft 365 security center. 了解新功能Learn what's new. 本主題僅適合適用於 Office 365 的 Microsoft Defender 和 Microsoft 365 Defender。This topic might apply to both Microsoft Defender for Office 365 and Microsoft 365 Defender. 請參閱 適用於 區段,並且尋找此文章中可能有所不同的特定圖說文字。Refer to the Applies To section and look for specific call-outs in this article where there might be differences.

Microsoft defender For Office 365 可以設定為搭配 Microsoft defender for Endpoint使用。Microsoft Defender for Office 365 can be configured to work with Microsoft Defender for Endpoint.

整合 Microsoft Defender for Office 365 搭配 Microsoft Defender for Endpoint 可協助您的安全性運作小組監視並快速採取行動(如果使用者的裝置面臨危險)。Integrating Microsoft Defender for Office 365 with Microsoft Defender for Endpoint can help your security operations team monitor and take action quickly if users' devices are at risk. 例如,啟用整合後,您的安全性作業小組將能夠查看偵測到的電子郵件訊息可能影響的裝置,以及為 Microsoft Defender for Endpoint 中的裝置產生多少最近的提醒。For example, once integration is enabled, your security operations team will be able to see the devices that are potentially affected by a detected email message, as well as how many recent alerts were generated for those devices in Microsoft Defender for Endpoint.

下圖說明當您已啟用 Microsoft Defender 端點整合時,[ 裝置 ] 索引標籤的外觀。The following image depicts what the Devices tab looks like when you have Microsoft Defender for Endpoint integration enabled:

啟用 Microsoft Defender for Endpoint 時,您可以看到具有警示的裝置清單。

在此範例中,您可以看到偵測到之電子郵件的收件者有四個裝置,一個有警示。In this example, you can see that the recipients of the detected email message have four devices and one has an alert. 按一下裝置的連結會在 Microsoft Defender Security Center () 中開啟其頁面 https://securitycenter.windows.comClicking the link for a device opens its page in the Microsoft Defender Security Center (https://securitycenter.windows.com).

提示

深入瞭解 Microsoft Defender Security Center (也稱為「microsoft Defender for Endpoint 入口網站」。 ) Learn more about the Microsoft Defender Security Center (also referred to as the Microsoft Defender for Endpoint portal.)

需求Requirements

整合 Microsoft Defender for Office 365 與 Microsoft Defender for EndpointTo integrate Microsoft Defender for Office 365 with Microsoft Defender for Endpoint

整合 Microsoft Defender for Office 365 與 Microsoft Defender for Endpoint 是透過安全性 & 規範中心和 Microsoft Defender Security Center 來設定。Integrating Microsoft Defender for Office 365 with Microsoft Defender for Endpoint is set up by using both the Security & Compliance Center AND the Microsoft Defender Security Center.

  1. 以全域管理員或安全性管理員為單位,請移至 https://protection.office.com 並登入。As a global administrator or a security administrator, go to https://protection.office.com and sign in. (這會帶您前往 Office 365 安全性 & 相容性中心。 ) (This takes you to the Office 365 Security & Compliance Center.)

  2. 在功能窗格中,選擇 [ 威脅管理 > 瀏覽器]。In the navigation pane, choose Threat management > Explorer.

    威脅管理功能表中的 Explorer

  3. 在螢幕右上角,選擇 [ (MDE 設定) 的 [Defender]。In the upper right corner of the screen, choose Defender for Endpoint Settings (MDE Settings).

  4. 在 [Microsoft Defender for Endpoint connection] 對話方塊中,開啟 [連線至 Microsoft defender For endpoint] 對話方塊。In the Microsoft Defender for Endpoint connection dialog box, turn on Connect to Microsoft Defender for Endpoint.

    Microsoft Defender for Endpoint connection

  5. 移至 Microsoft Defender Security Center (https://securitycenter.windows.com) 。Go to the Microsoft Defender Security Center (https://securitycenter.windows.com).

  6. 在導覽列中,選擇 [ 設定]。In the navigation bar, choose Settings. 然後,在 [一般] 下,選擇 [ 高級功能]。Then, under General, choose Advanced features.

  7. 向下滾動至 Office 365 威脅情報 連線,然後開啟連線。Scroll down to Office 365 Threat Intelligence connection, and turn the connection on.

    Office 365 威脅情報連接

Office 365 中的威脅調查和回應功能Threat investigation and response capabilities in Office 365

適用於 Office 365 的 Microsoft DefenderMicrosoft Defender for Office 365

適用於端點的 Microsoft DefenderMicrosoft Defender for Endpoint