Merge pull request #1511 from MicrosoftDocs/main

pushing updates live

Author: denisebmsft

defender-endpoint/linux-resources.md

@@ -1,6 +1,6 @@
 ---
 title: Microsoft Defender for Endpoint on Linux resources
-ms.reviewer: gopkr
+ms.reviewer: gopkr, yujiao
 description: Describes resources for Microsoft Defender for Endpoint on Linux, including how to uninstall it, how to collect diagnostic logs, CLI commands, and known issues with the product.
 ms.service: defender-endpoint
 ms.author: deniseb
@@ -15,7 +15,7 @@ ms.collection:
 ms.topic: conceptual
 ms.subservice: linux
 search.appverid: met150
-ms.date: 05/01/2024
+ms.date: 10/03/2024
 ---
 
 # Resources
@@ -138,6 +138,7 @@ The following table lists commands for some of the most common scenarios. Run `m
 |Protection|Do a full scan|`mdatp scan full`|
 |Protection|Cancel an ongoing on-demand scan|`mdatp scan cancel`|
 |Protection|Request a security intelligence update|`mdatp definitions update`|
+|Protection|Rollback security intelligence to the original default set|`mdatp definitions restore`|
 |Protection history|Print the full protection history|`mdatp threat list`|
 |Protection history|Get threat details|`mdatp threat get --id [threat-id]`|
 |Quarantine management|List all quarantined files|`mdatp threat quarantine list`|

defender-endpoint/mac-whatsnew.md

@@ -6,7 +6,7 @@ author: deniseb
 ms.author: deniseb
 manager: deniseb
 ms.localizationpriority: medium
-ms.date: 09/26/2024
+ms.date: 10/03/2024
 audience: ITPro
 ms.collection:
 - m365-security
@@ -41,20 +41,11 @@ For more information on Microsoft Defender for Endpoint on other operating syste
 
 - In macOS Sonoma 14.3.1, Apple made a change to the [handling of Bluetooth devices](https://developer.apple.com/forums/thread/738748) that impacts Defender for Endpoint device control's ability to intercept and block access to Bluetooth devices.  At this time, the recommended mitigation is to use a version of macOS earlier than 14.3.1.
 
-## Sequoia support
-
-- In macOS Sequoia (version 15.0), if you have Network Protection enabled, you might see crashes of the network extension (NetExt). This issue results in intermittent network connectivity issues for end users. 
-
-   > [!NOTE]
-   > The core functionalities of antivirus, endpoint detection & response, and threat and vulnerability management continue functioning.
+- In macOS Sequoia (version 15.0), if you have Network Protection enabled, you might see crashes of the network extension (NetExt). This issue results in intermittent network connectivity issues for end users. Please upgrade to macOS Sequoia version 15.0.1 or newer.
 
-- We're recommending that customers who have Network Protection enabled in their organization to either:
-
-   1. Delay updating to macOS Sequoia (version 15.0); or
-
-   2. Use the instructions to disable Network Extension as described in [Troubleshoot NetExt issues in Microsoft Defender for Endpoint on Mac](mac-troubleshoot-netext-mde.md).  This causes Network Protection, Web Content Filtering, and IP address/URL Indicators to be nonfunctional.
+## Sequoia support
 
-- Microsoft Defender is collaborating with Apple to provide our mutual customers a solution when Network Protection is enabled in Microsoft Defender for Endpoint on macOS Sequoia (version 15.0).
+- Microsoft Defender for Endpoint supports version 15.0.1 or newer.
 
 ## macOS Deprecation
 

defender-endpoint/microsoft-defender-endpoint-mac.md

@@ -15,7 +15,7 @@ ms.collection:
 ms.topic: conceptual
 ms.subservice: macos
 search.appverid: met150
-ms.date: 09/19/2024
+ms.date: 10/03/2024
 ---
 
 # Microsoft Defender for Endpoint on Mac
@@ -69,23 +69,26 @@ There are several methods and deployment tools that you can use to install and c
 
 ### System requirements
 
-The three most recent major releases of macOS are supported.
+These four most recent major releases of macOS are supported.
+
+- 15.0.1 (Sequoia)
 
 - 14 (Sonoma)
 
 - 13 (Ventura)
 
 - 12 (Monterey)
 
-    > [!IMPORTANT]
-  > On macOS 11 (Big Sur) and above, Microsoft Defender for Endpoint requires additional configuration profiles. If you are an existing customer upgrading from earlier versions of macOS, make sure to deploy the additional configuration profiles listed on [New configuration profiles for macOS Big Sur and newer versions of macOS](mac-sysext-policies.md).
-
 - Supported processors: x64 and ARM64
 
 - Disk space: 1GB
 
 - Beta versions of macOS aren't supported.
 
+- Important
+
+> On macOS 11 (Big Sur) and later, Microsoft Defender for Endpoint requires additional configuration profiles. If you are an existing customer upgrading from earlier versions of macOS, make sure to deploy the additional configuration profiles listed on [New configuration profiles for macOS Big Sur and newer versions of macOS](/editor/MicrosoftDocs/defender-docs-pr/defender-endpoint%2Fmicrosoft-defender-endpoint-mac.md/main/979628aa-e0a5-ba01-7de6-f03ef27b15df/mac-sysext-policies.md).
+
 After you've enabled the service, you may need to configure your network or firewall to allow outbound connections between it and your endpoints.
 
 ### Licensing requirements
@@ -128,7 +131,7 @@ If a proxy or firewall is blocking anonymous traffic, make sure that anonymous t
 
 #### Test network connectivity
 
-To test that a connection isn't blocked, open <https://x.cp.wd.microsoft.com/api/report> and <https://cdn.x.cp.wd.microsoft.com/ping> in a browser.
+To test that a connection isn't blocked, open `https://x.cp.wd.microsoft.com/api/report` and `https://cdn.x.cp.wd.microsoft.com/ping` in a browser.
 
 If you prefer the command line, you can also check the connection by running the following command in Terminal: