Got this working by my self
Microsoft Antimalware Extension
Hi, since Windows Defender is not supported on Server 2012 R2 I'm looking for endpoint protection solutions to vms in Azure. I came a cross Microsoft Antimalware Extension for Windows which could solve my issues but have few questions about this service still.
Refering to this:
https://video2.skills-academy.com/en-us/azure/virtual-machines/extensions/iaas-antimalware-windows#internet-connectivity
"The Microsoft Antimalware for Windows requires that the target virtual machine is connected to the internet to receive regular engine and signature updates."
- Does anybody know if is possible to get updates to Signature, Antimalware Engine and Antimalware Platform from WSUS? Most of our vms don't have internet access and they are getting their normal Windows updates from WSUS so it would be easy to configure servers to get those updates from WSUS.
- Where or how I can see reports if Microsoft Antimalware has detected antimalware or if it has done something to it (like put in quarantine)? Logs are available from "System logs" but are Extension giving more than just logs?
- When installing that extension, it installs System Center Endpoint Protection to my server, but when I try to open the software it just prompts " Your System admistator has restricted access to this app"
So Do I need to have SCCM licences to use that software which means that Microsoft Antimalware is not free even tho Microsoft is saying that. Or does Microsoft Antimalware protect vms in background but I don't have "access" to it and when I need to update e.g exclusions I need to install extension newly, because Portal is only place where I have access to it?
1 additional answer
Sort by: Most helpful
-
Sudhakar Penki 96 Reputation points
2020-11-06T11:31:31.84+00:00 Please use the below command for the below error: Same worked for me.
"Your System admistator has restricted access to this app".==================================================================== Execute the below command in elevated admin command prompt.
C:\Packages\Plugins\Microsoft.Azure.Security.IaaSAntimalware\Version(Eg:1.5.5.49)>SCEPINSTALL /forceclean