This browser is no longer supported.
Upgrade to Microsoft Edge to take advantage of the latest features, security updates, and technical support.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(134.4, 30%, 23%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EFS%3C/text%3E%3C/svg%3E)
Please help me to identify the specific process for that Microsoft Defender unified agent is running on the server.
Scenario is that there are some servers in the environment running with 2012R2 and 2016. And MMA is running on the servers. As a result, they are onboarded to MDE portal. But as we know EOL for MMA is August 2024, I just want to migrate the servers to Microsoft Defender unified agent. So, I just want to ensure some information-
How to identify MMA is still running on the server?
How to migrate it to Microsoft defender unified agent locally? (There are some articles to ensure the job through MECM. But I just want to do it locally).
After migration, how can I identify that Microsoft defender unified agent is running on the server? (I just want to ensure if there is any specific ".exe" file or any other process is running for Microsoft defender unified agent)
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(44.800000000000004, 78%, 14%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ESG%3C/text%3E%3C/svg%3E)
Thank you for posting this in Microsoft Q&A.
I am looking into this issue and will get back to you post my research.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(67.2, 78%, 16%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EAL%3C/text%3E%3C/svg%3E)
Hi, did you go through this https://video2.skills-academy.com/en-us/azure/azure-monitor/agents/azure-monitor-agent-migration
Once you onboard your VM to Arc you can install extensions, one of which would be MDE.windows, which is also the unified extension for Defender for Endpoint and Defender for Server.
You install extensions based on the service you want to use, MDE, Update Manager, Defender, Vulnerability Management, Assessments, etc etc
you can install extensions manually or through Azure Policies (DeployIfNotExist)
Alan