interactivetree.blogg.se - Microsoft for mac deleted comments in metadata

In below example, the highlighted value is the device ID.

Once you open the device page, you will find a device id in the URL.

Click on the device name to open the device page.

Under devices, find the device you want to offboard.

Let’s get started, it is assumed that you have the required permissions (Global Admin or others) to offboard devices. It may be possible that Microsoft is already working on it, until then you can use this method to remove the offboard the devices from Defender ATP using API.

Ideally, there should be an option to automatically offboard the machines from Defender during the disjoining from Azure AD Process. This works great when your device is still accessible, however what if the device is no longer managed by your organization’s MEM or other configuration management tool? This happens a lot in BYOD scenarios, where once an employee leaves the organization, they just remove the Azure AD Join association without offboarding the device from Defender.

Microsoft Defender for Endpoint (formerly known as Defender ATP) allows you to onboard and offboard devices using various tools such as Microsoft Endpoint Manager, Group Policies or through a custom script.