Skip to content

onboard-client.md

Latest commit

 

History

History
55 lines (40 loc) · 3.05 KB

onboard-client.md

File metadata and controls

55 lines (40 loc) · 3.05 KB

title: Onboard client devices (Windows or Mac) to Microsoft Defender for Endpoint description: Find out how to onboard client devices, such as Windows and Mac PCs to Defender for Endpoint. ms.service: defender-endpoint ms.author: painbar author: paulinbar ms.localizationpriority: medium manager: bagol ms.reviewer: pahuijbr audience: ITPro ms.collection:

  • m365-security
  • tier2 ms.topic: install-set-up-deploy ms.subservice: onboard search.appverid: met150 ms.date: 11/17/2025 appliesto:
    • Microsoft Defender for Endpoint Plan 1
    • Microsoft Defender for Endpoint Plan 2

Onboard client devices running Windows or macOS to Microsoft Defender for Endpoint

Overview of onboarding client devices

[!INCLUDE Microsoft Defender deployment tool preview]

To onboard client devices running Windows or macOS, follow this general process:

  1. Make sure to review the Minimum requirements for Defender for Endpoint.

  2. In the Microsoft Defender portal, go to System > Settings > Endpoints, and then, under Device management, select Onboarding.

    :::image type="content" source="media/mde-device-onboarding-ui.png" alt-text="Screenshot showing device onboarding in the Microsoft Defender portal for Defender for Endpoint." lightbox="media/mde-device-onboarding-ui.png":::

  3. Under Select operating system to start onboarding process, select the operating system for the device.

  4. Under Connectivity type, select either Streamlined or Standard. (See prerequisites for streamlined connectivity.)

  5. Under Deployment method, select an option. Then download the onboarding package (and installation package, if there's one available). Follow the instructions to onboard your devices. The following table lists available deployment methods:

    Operating system Deployment method
    Windows 11
    Windows 10
    Windows 365    		 Local script (up to 10 devices)
    Microsoft Intune / Mobile Device Management
    Microsoft Configuration Manager
    Group Policy
    VDI scripts
    Windows 8.1 Enterprise or Pro
    Windows 7 SP1 Enterprise or Pro    		 Microsoft Monitoring Agent
    Mac
    (see Defender for Endpoint on macOS)    		 Local script (also referred to as manual deployment)
    Microsoft Intune
    JAMF Pro
    Mobile Device Management

[!INCLUDE Defender for Endpoint repackaging warning]

See also