Hi @Rizwan Assad No, currently Microsoft Defender for Identity doesn't support Azure AD Domain Services. The Defender for Identity sensor can't be installed on Azure AD DS managed domain controllers. Microsoft Defender for Identity only supports Active Directory Domain Services, where you can install the sensor on domain controllers. It's designed to monitor domain controller traffic in order to identify and report malicious activity. For Azure AD, you can use Azure AD Identity Protection to get risk-based Conditional Access to protect your environment. Azure AD Identity Protection uses adaptive machine learning algorithms and heuristics to detect suspicious activities. https://docs.microsoft.com/en-us/azure/active-directory/identity-protection/overview-identity-protection
How to leverage Defender for Identity for Azure Domain Services
Rizwan Assad
321
Reputation points
Is there a way to install sensor for Azure DS? we are fully cloud based, however there are some legacy apps that are still accessing some vms which are joined to azure DS, so can we use / install the sensor to look at those identities?
Accepted answer
-
Catherine Kyalo 655 Reputation points Microsoft Employee
2024-02-13T08:45:31.3466667+00:00