You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Copy file name to clipboardExpand all lines: defender-endpoint/configure-device-discovery.md
+13-7Lines changed: 13 additions & 7 deletions
Display the source diff
Display the rich diff
Original file line number
Diff line number
Diff line change
@@ -30,15 +30,16 @@ ms.date: 02/24/2025
30
30
31
31
Device discovery can be configured to be on standard or basic mode. Use the standard option to actively find devices in your network, which helps improve the discovery of endpoints and provide richer device classification.
32
32
33
-
You can customize the list of devices that are used to perform standard discovery. You can either enable standard discovery on all the onboarded devices that also support this capability (currently - Windows 10 or later and Windows Server 2019 or later devices only) or select a subset or subsets of your devices by specifying their device tags.
33
+
You can customize the list of devices that are used to perform standard discovery. You can either enable standard discovery on all the onboarded devices that also support this capability (currently for devices running Windows 10 and later, or Windows Server 2019 and later). Or, you can select a subset of devices by specifying their device tags.
34
34
35
35
## Set up device discovery
36
36
37
37
To set up device discovery, take the following configuration steps in the [Microsoft Defender portal](https://security.microsoft.com):
38
38
39
39
Navigate to **Settings** > **Device discovery**
40
40
41
-
1. If you want to configure Basic as the discovery mode to use on your onboarded devices, select **Basic** and then select **Save**
41
+
1. If you want to configure Basic as the discovery mode to use on your onboarded devices, select **Basic** and then select **Save**.
42
+
42
43
2. If you've selected to use Standard discovery, select which devices to use for active probing: all devices or on a subset by specifying their device tags, and then select **Save**
43
44
44
45
> [!NOTE]
@@ -76,16 +77,20 @@ You control where device discovery takes place. Monitored networks are where dev
76
77
Choosing the initial discovery classification means applying the default system-made network monitor state. Selecting the default system-made network monitor state means that networks that were identified to be corporate, are monitored, and ones identified as non-corporate, are ignored automatically.
77
78
78
79
1. Select **Settings > Device discovery**.
80
+
79
81
2. Select **Monitored networks**.
82
+
80
83
3. View the list of networks.
84
+
81
85
4. Select the three dots next to the network name.
86
+
82
87
5. Choose whether you want to monitor, ignore, or use the initial discovery classification.
83
88
84
-
> [!WARNING]
85
-
>
86
-
> - Choosing to monitor a network that was not identified by Microsoft Defender for Endpoint as a corporate network can cause device discovery outside of your corporate network, and may therefore detect home or other non-corporate devices.
87
-
> - Choosing to ignore a network will stop monitoring and discovering devices in that network. Devices that were already discovered won't be removed from the inventory, but will no longer be updated, and details will be retained until the data retention period of the Defender for Endpoint expires.
88
-
> - Before choosing to monitor non-corporate networks, you must ensure you have permission to do so. <br>
89
+
> [!WARNING]
90
+
>
91
+
> - Choosing to monitor a network that was not identified by Microsoft Defender for Endpoint as a corporate network can cause device discovery outside of your corporate network, and may therefore detect home or other non-corporate devices.
92
+
> - Choosing to ignore a network will stop monitoring and discovering devices in that network. Devices that were already discovered won't be removed from the inventory, but will no longer be updated, and details will be retained until the data retention period of the Defender for Endpoint expires.
93
+
> - Before choosing to monitor non-corporate networks, you must ensure you have permission to do so. <br>
89
94
90
95
6. Confirm that you want to make the change.
91
96
@@ -118,4 +123,5 @@ DeviceInfo
118
123
119
124
-[Device discovery overview](device-discovery.md)
120
125
-[Device discovery FAQs](device-discovery-faq.md)
126
+
121
127
[!INCLUDE [Microsoft Defender for Endpoint Tech Community](../includes/defender-mde-techcommunity.md)]
0 commit comments