Image by Pete Linforth (TheDigitalArtist). Image licensed under the Pixabay License.

Image by Pete Linforth (TheDigitalArtist). Image licensed under the Pixabay License.


Microsoft’s Defender Advanced Threat Protection (Microsoft Defender ATP) is now available on Linux servers and various Android devices.

Microsoft Defender ATP for Linux

Microsoft Defender ATP for Linux currently provides real-time protection for Linux servers, using various system types including:

  • btrfs
  • ecryptfs
  • ext2
  • ext3
  • ext4
  • fuse
  • fuseblk
  • jfs
  • nfs
  • overlay
  • ramfs
  • reiserfs
  • tempfs
  • udf
  • vfat
  • xfs

And it supports the six most common server operating systems, running Linux Kernel version 3.10.0-327 or higher. These operating systems include:

  • Ubuntu LTS (16.04 or higher)
  • Oracle Linux (7.2 or higher)
  • Red Hat Enterprise Linux (7.2 or higher)
  • SUSE Linux Enterprise Server 12 or higher
  • CentOS (7.2 or higher)
  • Debian (9 or higher)

Microsoft Defender ATP for Android

Microsoft Defender ATP for Android looked to address security on one of the most highly-targeted platforms. Supporting Android devices running Android 6.0 and above, the Microsoft Defender ATP app offers the capability to perform full device scans to find even the latest threats, such as malware and malicious apps, along with detecting things such as phishing threats and insecure sites. It also gives company IT teams the ability to restrict access to pre-determined websites, along with the ability to enable or disable security features. The IT staff can also prevent compromised devices from connecting to corporate networks, or access the company’s in-house apps. Changes to settings automatically roll out to company devices, immediately preventing risks or infections.

Microsoft Defender ATP for iOS

Microsoft has announced a public preview for iOS earlier in the year and is scheduling revealing the app later in the year.

Once the app is out of public preview, however, it will become available for download from the Google Play store itself.

Deployment

Microsoft has provided documentation for installing on Linux servers manually, or via ansible or puppet. Android users can deploy from the Intune Company Portan on Device Administrator enrolled devices during preview, and then from the Google Play Store once officially released.