Help

Extension attribute Script

nhenderson
New Contributor

Monday

I am trying to setup an extension attribute to verify if MS defender is enabled on devices in our environment. When I save the EA I only get a response from 1 device but I need responses from all of my devices. Any advice would be appreciated! Thanks

 

#!/bin/sh
echo "<result>`mdatp health | grep real_time_protection_enabled| awk '{print $3}'`</result>"

 

 

0 Kudos
Reply
2 REPLIES 2

sdagley
Esteemed Contributor II

Monday - last edited yesterday

@nhenderson You should use the full path to the mdatp binary, and don't assume it's installed so you can report an error it if isn't. Something like this:

 

#!/bin/sh

mdatpPath="/Path/To/mdatp"
result="Not Installed"

if [ -e "$mdatpPath" ]; then
    result=$("$mdatpPath" health | grep real_time_protection_enabled | awk '{print $3}')
fi

echo "<result>$result</result>"

 

(You were also missing a space preceding the pipe between your grep and awk statements) 

Reply

nhenderson
New Contributor
In response to sdagley

Monday

I appreciate the quick response! I have made the changes and I will see if that works.

0 Kudos
Reply