- Jamf Nation Community
- Products
- Jamf Pro
- Microsoft Defender ATP Quick/Full Scan Config Prof...
Options
- Subscribe to RSS Feed
- Mark Topic as New
- Mark Topic as Read
- Float this Topic for Current User
- Bookmark
- Subscribe
- Mute
- Printer Friendly Page
Microsoft Defender ATP Quick/Full Scan Config Profile
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Posted on 02-11-2021 01:40 PM
Has anyone come up with a way to schedule a recurring quick/full scan on a system using a configuration profile?
Labels:
Reply
7 REPLIES 7
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Posted on 03-17-2021 01:06 PM
looking for this too... opened a ticket with Microsoft after talking to support.
Reply
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Posted on 03-17-2021 01:31 PM
https://docs.microsoft.com/en-us/windows/security/threat-protection/microsoft-defender-atp/mac-schedule-scan-atp
Doesn't look like it's possible with a config profile.
Reply
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
08-10-2021 12:05 AM - edited 08-10-2021 12:08 AM
I have full and quick scans working but using launchdaemons not configuration profiles. I can't think how you would do it with a config profile. What makes you think you can schedule something with a Configuration Profile?
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Posted on 09-28-2023 03:03 AM
Hi @dlondon , can you please share the script you are using to launch daemons?
Thanks
Technical Architect
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Posted on 10-01-2023 05:55 PM
Hi @PiyushVerma - it's all in here https://community.jamf.com/t5/jamf-pro/launchdaemon-and-microsoft-defender-atp/m-p/205632
The last post by me is the corrected one
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Posted on 10-05-2023 03:03 AM
Hi @dlondon,
Thanks for your script I have tried. I am getting the plists on the desired path but getting error as:
"/Library/LaunchDaemons/com.microsoft.wdav.schedquickscan.plist: service already loaded Load failed: 37: Operation already in progress /Library/LaunchDaemons/com.microsoft.wdav.schedfullscan.plist: service already loaded Load failed: 37: Operation already in progress"
Also, no auto scan is getting executed by plists.
My understanding is, as soon as defender gets installed, using your script the first scan will get initiate automatically and then all the other scans will be done by plists. Please correct me if I am wrong..!!
Thanks
Technical Architect
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Posted on 10-08-2023 05:57 PM
Hi @PiyushVerma - sounds like a scan is already running. You can check that by opening Defender app from the menu bar icon and seeing what it's doing there.
This all came from the Microsoft Documentation - https://learn.microsoft.com/en-us/microsoft-365/security/defender-endpoint/mac-schedule-scan?view=o3...
Also you can probably find it running using launchctl
Try breaking the problem up. Just do a quick scan so just install that part. I'm actually not doing a full scan at the moment
