You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Copy file name to clipboardExpand all lines: defender-endpoint/microsoft-defender-endpoint-android.md
+24-8Lines changed: 24 additions & 8 deletions
Display the source diff
Display the rich diff
Original file line number
Diff line number
Diff line change
@@ -3,8 +3,8 @@ title: Microsoft Defender for Endpoint on Android
3
3
ms.reviewer:
4
4
description: Describes how to install and use Microsoft Defender for Endpoint on Android
5
5
ms.service: defender-endpoint
6
-
ms.author: deniseb
7
-
author: denisebmsft
6
+
ms.author: ewalsh
7
+
author: emmwalshh
8
8
ms.localizationpriority: medium
9
9
manager: deniseb
10
10
audience: ITPro
@@ -15,7 +15,7 @@ ms.collection:
15
15
ms.topic: conceptual
16
16
ms.subservice: android
17
17
search.appverid: met150
18
-
ms.date: 08/15/2023
18
+
ms.date: 01/31/2025
19
19
---
20
20
21
21
# Microsoft Defender for Endpoint on Android
@@ -29,7 +29,7 @@ ms.date: 08/15/2023
29
29
30
30
> Want to experience Microsoft Defender for Endpoint? [Sign up for a free trial.](https://signup.microsoft.com/create-account/signup?products=7f379fee-c4f9-4278-b0a1-e4c8c2fcdf7e&ru=https://aka.ms/MDEp2OpenTrial?ocid=docs-wdatp-exposedapis-abovefoldlink)
31
31
32
-
This topic describes how to install, configure, update, and use Defender for Endpoint on Android.
32
+
This article describes how to install, configure, update, and use Defender for Endpoint on Android.
33
33
34
34
> [!CAUTION]
35
35
> Running other third-party endpoint protection products alongside Defender for Endpoint on Android is likely to cause performance problems and unpredictable system errors.
@@ -42,7 +42,7 @@ This topic describes how to install, configure, update, and use Defender for End
42
42
- The end user must be assigned a Microsoft Intune license. For more information on how to assign licenses, see [Assign licenses to users](/azure/active-directory/users-groups-roles/licensing-groups-assign).
43
43
- The users of the app must be assigned a Microsoft Defender for Endpoint license. For more information on how to assign licenses, see [Microsoft Defender for Endpoint licensing requirements](minimum-requirements.md#licensing-requirements).
44
44
- Intune Company Portal app can be downloaded from [Google Play](https://play.google.com/store/apps/details?id=com.microsoft.windowsintune.companyportal) and is available on the Android device.
45
-
- Additionally, device(s) can be [enrolled](/mem/intune/user-help/enroll-device-android-company-portal) via the Intune Company Portal app to enforce Intune device compliance policies.
45
+
- Additionally, devices can be [enrolled](/mem/intune/user-help/enroll-device-android-company-portal) via the Intune Company Portal app to enforce Intune device compliance policies.
46
46
47
47
-**For Administrators**:
48
48
- Access to the Microsoft Defender portal.
@@ -52,7 +52,7 @@ This topic describes how to install, configure, update, and use Defender for End
52
52
53
53
> [!NOTE]
54
54
>
55
-
> - Microsoft Defender for Endpoint now extends protection to an organization's data within a managed application (MAM) for devices that are not enrolled using mobile device management (MDM), but are using Intune to manage mobile applications. It also extends this support to customers who use other enterprise mobility management solutions, while still using Intune for [mobile application management (MAM)](/mem/intune/apps/mam-faq).
55
+
> - Microsoft Defender for Endpoint now extends protection to an organization's data within a managed application (MAM) for devices that aren't enrolled using mobile device management (MDM), but are using Intune to manage mobile applications. It also extends this support to customers who use other enterprise mobility management solutions, while still using Intune for [mobile application management (MAM)](/mem/intune/apps/mam-faq).
56
56
> - In addition, Microsoft Defender for Endpoint already supports devices that are enrolled using Intune mobile device management (MDM).
57
57
58
58
### Network Requirements
@@ -72,18 +72,34 @@ This topic describes how to install, configure, update, and use Defender for End
72
72
Microsoft Defender for Endpoint on Android supports installation on both modes of enrolled devices - the legacy Device Administrator and Android Enterprise modes. **Currently, Personally-owned devices with work profile, Corporate-owned devices with work profile, and Corporate-owned fully managed user device enrollments are supported in Android Enterprise. Support for other Android Enterprise modes will be announced when ready.**
73
73
74
74
- Deployment of Microsoft Defender for Endpoint on Android is via Microsoft Intune (MDM). For more information, see [Deploy Microsoft Defender for Endpoint on Android with Microsoft Intune](android-intune.md).
75
-
- Installation of Microsoft Defender for Endpoint on devices that are not enrolled using Intune mobile device management (MDM), see [Configure Microsoft Defender for Endpoint risk signals in app protection policy (MAM)](android-configure-mam.md).
75
+
- Installation of Microsoft Defender for Endpoint on devices that aren't enrolled using Intune mobile device management (MDM), see [Configure Microsoft Defender for Endpoint risk signals in app protection policy (MAM)](android-configure-mam.md).
76
76
77
77
> [!NOTE]
78
78
> **Microsoft Defender for Endpoint on Android is available on [Google Play](https://play.google.com/store/apps/details?id=com.microsoft.scmx) now.**
79
79
>
80
80
> You can connect to Google Play from Intune to deploy Microsoft Defender for Endpoint app, across Device Administrator and Android Enterprise enrollment modes.
81
81
82
+
### Required Permissions
83
+
84
+
To ensure optimal protection for your device, Microsoft Defender requests access to the following permissions during the device onboarding process:
85
+
86
+
-**Storage Access**: This permission enables Microsoft Defender to access your device's storage in order to detect and remove any malicious or unwanted apps.
87
+
88
+
-**VPN Setup**: Microsoft Defender sets up a local VPN to provide web protection. Microsoft respects your privacy and doesn't view your browsing content.
89
+
90
+
-**Display Over Other Apps**: This permission enables Microsoft Defender to alert you when malicious network activity is blocked.
91
+
92
+
-**Accessibility**: This feature enhances your browsing experience by providing added security.
93
+
94
+
-**Permanent Protection**: To ensure continuous protection, Microsoft Defender recommends staying active while running in the background. This helps prevent Android from stopping the app to improve battery life, thereby ensuring your device remains well-protected.
95
+
96
+
-**Location Access**: Microsoft Defender uses your location to help secure your Wi-Fi network and enhance device protection.
97
+
82
98
## How to Configure Microsoft Defender for Endpoint on Android
83
99
84
100
Guidance on how to configure Microsoft Defender for Endpoint on Android features is available in [Configure Microsoft Defender for Endpoint on Android features](android-configure.md).
85
101
86
-
## Related topics
102
+
## Related articles
87
103
88
104
-[Deploy Microsoft Defender for Endpoint on Android with Microsoft Intune](android-intune.md)
89
105
-[Configure Microsoft Defender for Endpoint on Android features](android-configure.md)
0 commit comments