Hey everyone! I'm looking for some advice on how to automate the installation of the Defender for Endpoint (MDE) agent across more than 50 Azure servers that I'm managing. I have a mix of Windows and Linux VMs, and I already have the installer package from Microsoft along with a script that can set it up. However, I can't use the Defender for Servers Plan 2 or the Microsoft Defender extension because they come with extra costs. Right now, I'm stuck doing the installations manually on each server, which is super time-consuming!
So, I'm hoping to get some insights on two main points:
1. Is there an Azure-native or industry-standard method for pushing software to multiple VMs automatically?
2. Are there any free or low-cost tools available that can help with this type of deployment?
I'd love to hear how others handle mass deployments like this without relying on the Defender for Servers option. Any examples or advice would be greatly appreciated!
3 Answers
You might want to look into using deployment options available in Azure like deploying the Microsoft Defender for Endpoint agent directly on your Windows and Linux VMs. There are previews available for this. However, I believe those methods typically require the Defender for Servers Plan 2, which you mentioned isn't an option for you.
A script targeting all your VMs could really speed up the process. I’ve done something similar by automating via the Azure Monitor, event grid, and logic apps. Look for solutions that will let you script the deployments rather than doing UI interactions. It can save a lot of time!
For your Windows Servers, you might need to check the licensing again; some deployment options for the MDE agent do require specific licensing. If you're looking for ways to work around higher costs, consider using alternative endpoint security solutions that might fit better with your budget.
Thanks for the heads up! Just to clarify, I'm trying to install the MDE agent since we have a license for it. I know the Plans 1 and 2 handle installs automatically, but I want to avoid those costs.
Yeah, I think the automatic deployment options like Azure Policy initiatives do need the Plan 2 subscription. You could still explore manual scripting methods to deploy on your servers.