You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Copy file name to clipboardExpand all lines: CloudAppSecurityDocs/app-governance-app-policies-get-started.md
+11-9Lines changed: 11 additions & 9 deletions
Display the source diff
Display the rich diff
Original file line number
Diff line number
Diff line change
@@ -1,8 +1,9 @@
1
1
---
2
2
title: Get started with app governance policies | Microsoft Defender for Cloud Apps
3
-
ms.date: 05/28/2023
3
+
ms.date: 08/31/2025
4
4
ms.topic: how-to
5
5
description: Get started learning about app governance policies with Microsoft Defender for Cloud Apps in Microsoft Defender XDR
6
+
ms.reviewer: shragar456
6
7
---
7
8
8
9
# Get started with app policies
@@ -23,22 +24,21 @@ To see your list of current app policies, go to the **Microsoft Defender XDR > A
23
24
24
25
For example:
25
26
26
-
27
+
:::image type="content" source="media/app-governance-app-policies-get-started/app-governance-app-policies.png" alt-text="Screenshot that shows the app governance app polcies." lightbox="media/app-governance-app-policies-get-started/app-governance-app-policies.png":::
27
28
28
29
> [!NOTE]
29
30
> Built-in threat detection policies aren't listed on the **Policies** tab. For more information, see [Investigate threat detection alerts](app-governance-anomaly-detection-alerts.md).
30
31
>
31
32
32
33
## What’s available on the app policies dashboard
33
34
34
-
The **App governance** > **Policies** tab shows the number of active, inactive, and audit mode policies, and the following information for each policy:
35
+
The **App governance** > **Policies** tab shows the number of activeand disabled policies, and the following information for each policy:
35
36
36
37
-**Policy name**
37
38
-**Status**
38
39
39
40
-**Active**: All policy evaluation and actions are active.
40
-
-**Inactive**: All policy evaluation and actions are disabled.
41
-
-**Audit mode**: Policy evaluation is active (alerts will trigger) but policy actions are disabled.
41
+
-**Disabled**: All policy evaluation and actions are disabled.
42
42
43
43
-**Severity**: Severity level set on any alerts triggered because of this policy being evaluated as true, which is part of the configuration of the policy.
44
44
-**Active alerts**: Number of alerts generated by the policy that have an **In Progress** or **New** status.
@@ -74,22 +74,24 @@ You can also:
74
74
75
75
1. Select **Edit**.
76
76
77
-
While you can't change the name of the policy once created, but you can change the description and policy severity as needed. When you're done, select **Next**.
77
+
While you can't change the name of the policy once created, you can change the description and policy severity as needed. When you're done, select **Next**.
78
78
79
79
1. Choose whether you want to continue with the existing policy settings or customize them. Select **No, I'll customize the policy** to make changes, and then select **Next**.
80
80
81
-
1. Choose whether this policy applies to all apps, specific apps, or all apps except the apps you select. Select **Choose apps** to select which apps to apply the policy to, and then select **Next**.
81
+
1. Choose whether this policy applies to all apps, specific apps, or all apps except the apps you select.
82
+
83
+
1. Select **Choose apps** to select which apps to apply the policy to, and then select **Next**.
82
84
83
85
1. Choose whether to modify the existing conditions of the policy.
84
86
85
87
- If you choose to modify the conditions, select **Edit or modify existing conditions for the policy** and choose which policy conditions to apply.
86
88
- Otherwise, select **Use existing conditions of the policy**.
87
89
88
-
When you're done, select **Next**.
90
+
1. When you're done, select **Next**.
89
91
90
92
1. Choose whether to disable the app if it triggers the policy conditions and then select **Next**.
91
93
92
-
1. Set the policy status to **Audit** mode, **Active**, or **Inactive**, as needed, and then select **Next**.
94
+
1. Set the policy status to **Active**, or **Disabled**, as needed, and then select **Next**.
93
95
94
96
1. Review your setting choices for the policy and if everything is the way you want it, select **Submit**.
Copy file name to clipboardExpand all lines: defender-endpoint/onboard-client.md
+4-4Lines changed: 4 additions & 4 deletions
Display the source diff
Display the rich diff
Original file line number
Diff line number
Diff line change
@@ -14,7 +14,7 @@ ms.collection:
14
14
ms.topic: install-set-up-deploy
15
15
ms.subservice: onboard
16
16
search.appverid: met150
17
-
ms.date: 04/16/2025
17
+
ms.date: 09/07/2025
18
18
---
19
19
20
20
# Onboard client devices running Windows or macOS to Microsoft Defender for Endpoint
@@ -37,15 +37,15 @@ To onboard client devices running Windows or macOS, follow this general process:
37
37
38
38
1. Make sure to review the [Minimum requirements for Defender for Endpoint](minimum-requirements.md).
39
39
40
-
2. In the [Microsoft Defender portal](https://security.microsoft.com), go to **Settings** > **Endpoints**, and then, under **Device management**, select **Onboarding**.
40
+
2. In the [Microsoft Defender portal](https://security.microsoft.com), go to **System** > **Settings** > **Endpoints**, and then, under **Device management**, select **Onboarding**.
41
41
42
-
:::image type="content" source="media/mde-device-onboarding-ui.png" alt-text="Screenshot showing device onboarding in the Microsoft Defender portal for Defender for Endpoint.":::
42
+
:::image type="content" source="media/mde-device-onboarding-ui.png" alt-text="Screenshot showing device onboarding in the Microsoft Defender portal for Defender for Endpoint." lightbox="media/mde-device-onboarding-ui.png":::
43
43
44
44
3. Under **Select operating system to start onboarding process**, select the operating system for the device.
45
45
46
46
4. Under **Connectivity type**, select either **Streamlined** or **Standard**. (See [prerequisites for streamlined connectivity](/defender-endpoint/configure-device-connectivity#prerequisites).)
47
47
48
-
5. Under **Deployment method**, select an option. Then download the onboarding package (and installation package, if there is one available). Follow the instructions to onboard your devices. The following table lists available deployment methods:
48
+
5. Under **Deployment method**, select an option. Then download the onboarding package (and installation package, if there's one available). Follow the instructions to onboard your devices. The following table lists available deployment methods:
![m365-skilling-repo-management[bot]](https://avatars.githubusercontent.com/in/1161012?v=4&size=40){kind=avatar}
0 commit comments