Adaptiva.comSupport

Microsoft Defender

Integrating Microsoft Defender requires the following Microsoft Entra ID information:

  • Tenant ID: The existing Directory ID for the Entra customer.

  • Application ID: A configured application Client ID for the Entra customer.

  • Client Secret: A configured authentication for content sharing between OneSite Patch and Entra.

Create a Microsoft Entra Application

To integrate Microsoft Defender with OneSite Patch, begin with registering an application with Microsoft Entra ID and creating a service principle.

  1. Sign in to your entra.microsoft.com account as an administrator.

  2. Browse to Identity > Applications > App registrations, and then select New registration.

  3. Enter the following details into the form:

a. Enter a Name that identifies the Adaptiva integration.

b. Select Accounts in this organization directory only under Supported account types.

c. Skip both Redirect URI and Service Tree ID. If you must enter something for the Redirect URI, select Web.

  1. Select Register to create the application.

Add Permissions to an Entra Application

After creating the new Entra application, use the following steps to add the Vulnerability.Read.All permission from Add registrations. Make sure you are logged in as an administrator.

  1. Access the API Permissions workspace from the App registrations page:

a. Select the Name of the newly created application on the App registrations page. This opens the application and a new list of menu options.

b. Select API permissions on the left navigation menu, and then select Add a Permission.

This opens the Request API Permissions workspace.

  1. Select APIs my organization uses, and then locate WindowsDefenderATP in the list.

  2. Select WIndowsDefenderATP, and then select Application permissions.

  3. Scroll down to and expand Vulnerability, and then select Vulnerability Read All.

  4. Select Add Permissions. If prompted, follow the required steps to provide administrator consent to make the change.

Create a Shared Secret ID

After creating an application and adding permissions, use the following steps to create a shared secret ID. The secret ID enables authentication between OneSite Patch and Defender for the application you created.

  1. Select Certificates & secrets on the Manage menu for the open application.

  2. Select Client secrets.

  3. Select + New client secret. This opens the Add a client secret dialog:

a. Enter a Description of the secret.

b. Select an Expires timeline.

c. Select Add to save your changes and return to the Certificates & secrets workspace.

  1. Copy and save the Value and Secret ID information.

    Important

    The system does not save this information when you leave this window. Be sure to record these numbers and save them to an accessible location for later use.

Locate and Record the Microsoft Entra IDs

  1. Sign in to your entra.microsoft.com account as an administrator.

  2. From the Home page, navigate to Applications > App Registrations, and then open the application you created for integration.

  3. Select Overview on the left navigation of the application workspace, and then expand the Essentials section.

  4. Record the following identification information:

    • Client ID

    • Tenant ID (Directory (tenant) ID)

    • Secret ID

Integrate Defender with OneSite Patch

  1. Select Windows Defender Endpoint on the left navigation menu of the OneSite Patch dashboard.

    This opens the Defender Access Settings workspace.

  2. Enter the ID information gathered from Microsoft Entra, and then click Save on the upper left.

PreviousCrowdStrike Falcon SpotlightNextSentinelOne

Last updated

Was this helpful?