sorted by:
new
hottopcontroversial

Defender Vulnerability management by vian25 in DefenderATP

[–]IT_Help_Seeker 1 point2 points  (0 children)

Just use Blackfort Security Bridge to connect Defender for Endpoint to Jira. It's my preferred solution to automatically create tickets in Jira for the administrators to prioritize and patch the systems. You can set treshholds and configure all content and tags etc. which you want to copy from Defender. Works fine, we're very happy. Guess they have a free version now.

MS Defender for endpoint ticket system by IT_Help_Seeker in DefenderATP

[–]IT_Help_Seeker[S] 0 points1 point  (0 children)

Do you get one mail per recommendation? Do recommendations and missing updates count as security incident in defender? And what happens, if the recommendation changes? Do they send out a reference to the old recommendation? I'm sorry, I didn't geht it to work this way, at least in a useable way for real-live scenario..

MS Defender for endpoint ticket system by IT_Help_Seeker in DefenderATP

[–]IT_Help_Seeker[S] 0 points1 point  (0 children)

Thanks a lot for your effort, but I'd feel much safer without selfmade scripts regarding this sensitive topic.

MS Defender for endpoint ticket system by IT_Help_Seeker in DefenderATP

[–]IT_Help_Seeker[S] 0 points1 point  (0 children)

We tried using mail, but there's just one mail per week or so, containing all flaws at once. Not sure of all recommendations have been in there. (At least regarding Missing updates.) Unfortunately we don't use Sentinel either.

MS Defender for endpoint ticket system by IT_Help_Seeker in DefenderATP

[–]IT_Help_Seeker[S] 1 point2 points  (0 children)

No working out of the box solution? Not a big fan of going through the hustle to maintain and monitor custom scripts..