Merge pull request #24482 from MicrosoftDocs/main

Dansimp · web-flow · commit 290c62aaebc9 · 2024-02-19T07:46:03.000-08:00
m to l for secure score/feb release
diff --git a/microsoft-365/security/defender-endpoint/use-intune-config-manager-microsoft-defender-antivirus.md b/microsoft-365/security/defender-endpoint/use-intune-config-manager-microsoft-defender-antivirus.md
@@ -47,11 +47,10 @@ You can use the Microsoft Intune family of products to configure Microsoft Defen
 
 5. Under **Manage**, choose **Properties**.
 
-6. Next to **Configuration settings**, choose **Edit**.
+1. Next to **Configuration settings**, choose **Edit**.
 
    > [!IMPORTANT]
-   > AllowOnAccessProtection and AllowIntrusionPreventionSystem antivirus settings are officially being deprecated and as such cannot be configured. 
-
+   > AllowIntrusionPreventionSystem antivirus settings is officially being deprecated and as such cannot be configured. 
 7. Expand the **Scan** section, and review or edit your scanning settings.
 
 8. Choose **Review + save**.
diff --git a/microsoft-365/security/defender/microsoft-secure-score-whats-new.md b/microsoft-365/security/defender/microsoft-secure-score-whats-new.md
@@ -5,8 +5,8 @@ ms.localizationpriority: medium
 f1.keywords:
   - NOCSH
 ms.service: defender-xdr
-ms.author: siosulli
-author: siosulli
+ms.author: dansimp
+author: dansimp
 manager: dansimp
 audience: ITPro
 ms.collection: 
@@ -16,7 +16,7 @@ ms.topic: conceptual
 search.appverid: 
   - MOE150
   - MET150
-ms.date: 09/13/2023
+ms.date: 02/19/2024
 ---
 
 # What's new in Microsoft Secure Score
@@ -29,14 +29,23 @@ The more improvement actions you take, the higher your Secure Score will be. For
 
 Microsoft Secure Score can be found at <https://security.microsoft.com/securescore> in the [Microsoft Defender portal](microsoft-365-defender-portal.md).
 
-## January 2024 
- 
+## February 2024
+
+The following recommendation is added as a Microsoft Secure Score improvement action:
+
+**Microsoft Defender for Identity:**
+
+- Edit insecure ADCS certificate enrollment IIS endpoints (ESC8)
+
+## January 2024
+
 The following recommendations have been added as Microsoft Secure Score improvement actions: 
- 
+
 **Microsoft Entra (AAD):**
 
 - Ensure 'Phishing-resistant MFA strength' is required for Administrators. 
 - Ensure custom banned passwords lists are used. 
+- Ensure 'Microsoft Azure Management' is limited to administrative roles.
 
 **Admin Center:**
 
