Microsoft Defender for Endpoint Reviews

Our primary use case of this solution is to defend from viruses. 

The most valuable features are that it's easy to use and the updates are very simple.

I would like to be able to set up any kind of protection I want in the firewall, any IP address or any number. 

I would like to be able to customize my protection on the dashboard. 

It's a good product but it is limited in some cases. I had a bad experience because a few weeks ago I was in Seoul in Korea and with my Dropbox, my children did some things on my computer at home and I got ransomware to Defender and it corrupted my whole Dropbox. The stability can use improvement. 

It's easy to document new people. With the dashboard, I can set up rules to protect myself from any IP address coming from an external network.

We use this solution daily. We don't have plans to increase the usage. 

We have around ten to twelve users. They are only users, not admins. We only require one admin. A guy sometimes comes to set up a desktop and do the configuration.

We have never needed to contact their technical support. 

The cost is per-user. We pay more for an Enterprise license.

I would say this is a good product. It's very intuitive, easy to use, and very good for people who don't have much experience in security.

This a very good product because every time there is an update it corrects any issues. It can help an enterprise go up.

I would rate it a nine out of ten. 

I use Defender for protection.

The most valuable features are that Defender is user-friendly and part of Microsoft Windows.

Defender's cloud integration could be improved.

Defender is stable, I haven't had any problems with viruses when using it, and it's easy to update.

The initial setup was easy.

I would recommend Defender to anyone thinking of using it, and I rate it as eight out of ten.

I lead a delivery team. I have a team of about 20 technology specialists and we do the deployment for Microsoft Defender.

Instead of having a third-party antivirus, then you can have a Microsoft ecosystem for your entire endpoint protection. 

This solution has its own sensors, which is its best feature. It senses the behavior of your endpoints, whether it is logged in from a particular location or external of that location. 

It captures data through machine learning, which is built-in on the back-end. It also provides built-in analytics and a threat intelligence feature. It is a one-stop solution that doesn't require an antivirus because it comes prebuilt into Windows 10.

Sometimes, there are different skews. In a basic skew, they should have basic log analysis without the need to integrate with any third-party or SIEM solutions, like Sentinel. This would make it so much easier for users who don't have log collection or log analysis.

We have been using it for a year.

This solution is very much stable.

This solution is scalable. It is a cloud solution.

If you have the Microsoft Azure ecosystem, you can collect logs and view them through Sentinel. You can also onboard your devices within Intune. 

You can integrate Microsoft Defender for Endpoint with different Microsoft solutions, e.g., Defender for Cloud, Sentinel, Endpoint Manager for onboarding of Intune, and Defender for Office 365.

We have a large number of customers.

Premium support is okay. Professional support is not as good because it is free. You must wait because you are not paying.

The initial setup was straightforward. There was nothing rocket science to it. It didn't take much time as we just enrolled the device and assigned the licenses, then it was done.

You just prepare it, doing a license evaluation licensing and some network configuration, then you can onboard your device.

We do the implementation ourselves. We find it easy to deploy. We help customers adopt the solution and get better ROI.

They have to pay for the Defender license. There are different licenses and skews, such as Plan 1, Plan 2, or the trial.

You do not need to pay any additional costs for antivirus and anti-malware solutions for endpoint protection. 

Anyone on Windows 10 Enterprise should choose this solution.

It really depends on the volume. You need one senior architect who can just define the entire thing: the device, network configuration, etc. You will also need some Level 1 engineers who need to keep on monitoring the devices and do onboarding. If they are using the latest version of Windows 10, then you can do the onboarding via Intune, Endpoint, etc. 

My rating for this solution is an eight out of 10.

We use it at home on some personal machines at home, and there are a few machines inside of the Enterprise that has it.

We use this solution for general antivirus protection.

We like that it has a free version available.

The frequency of the patching, and the frequency of the updates, are not included with the free version. 

The platform I used in the past would check every hour and deploy every two hours down to the client, every patch that came through. 

It was actively looking for updates, the latest threats, which is something that the Microsoft Defender product did not have in the free version.

The Enterprise version that we had, didn't have visibility. If somebody were to uninstall it or turn it off, I'd have trouble seeing that easily. There are tools that I can install, but from a reporting standpoint who has it on and off is included with the Enterprise package that you pay for, or it comes included with Office 365 Enterprise, but not in the free version.

We have been using Microsoft Defender for Endpoint for two and a half years.

We are using the latest version. It is always up-to-date.

We had absolutely no issues with the stability of Microsoft Defender for Endpoint. We did not experience any bugs or glitches.

It is pretty easy to scale. it was basically one click to agree that you wanted to use it.

We did not contact technical support.

Previously, we were using another solution and were forced to uninstall it to patch Windows. It was an annoyance to reinstall it.

The initial setup was straightforward. It was extremely simple.

We are using the free version.

When you are centrally managing it, you can't get there without a much more expensive Microsoft solution to control the rollout and to make sure that it is up-to-date.

We didn't research that, it was a stop-gap measure until we figured out what we're going to do in the long term.

We are looking into a product that gets into the EDR, XDR, the fully managed patching, and everything else, versus just the anti-virus that package includes.

I would rate Microsoft Defender for Endpoint and eight out of ten.

We use Microsoft Defender Antivirus to scan for malicious payloads that may come in files, emails, a USB drive, or another type of external drive. It helps us to identify any malicious load that could compromise the security of any of our systems.

We are in a decentralized environment. We have multiple offices but they are not connected physically. The offices are directly managed from the internet.

We have a mixed environment with Linux and Windows machines.

We operate in the educational sector.

We have not fully considered how this product affects our overall security posture, although this is because we have not yet explored all of the features. Once we have all of our offices connected, it is something that we will be looking into. At this point, it does not affect all of our machines. On a scale from one to five, I would rate our security posture a four.

The most valuable feature is ransomware protection, which can detect malicious activity from IPs or a malicious payload in DLLs, or other things that can corrupt the system.

The performance is good. Usually, end-users complain that whenever background or real-time scanning is done, the effects are felt as there is a slowdown in the system. This is not the case with Microsoft Defender.

The file scanning has room for improvement. Many people use macros within their files, so there should be a mechanism that helps us to scan them for malicious payloads.

If there is a Word file then it is able to scan it, but if there is a malicious payload within its signature then it will not be detected. Deep packet scanning must be used to improve the overall product.

We have been using Microsoft Defender Antivirus since we upgraded to Windows 10 from Windows 8.

This is a stable product. We have been using the standard version for a long time and it hasn't negatively affected our environment. Generally speaking, it is reliable.

Microsoft is actively working on this product and I think that it is becoming more scalable, day by day. For example, prior to Windows 10, there was no ransomware support. Now, it comes with Windows 20S2 and Windows 20H1.

With our decentralized environment, I don't know the exact number of users or devices that we have. However, I can say that there are more than 500 devices being protected by this solution.

Most of the machines in our environment are in areas that don't have internet access. This is because they are stationed in remote areas of the country. This means that we need to use USB drives to update the machines manually. Given the number of devices and that the management is done manually at this time, it is pretty painful for our IT people.

We have not purchased support for this product, although, for most products, we usually do have it. To this point, it hasn't been required.

When we were running older operating systems including Windows XP and Windows Vista, we had a Symantec Endpoint solution. We had that for a long time but we opted out. After that, we used McAfee and other antivirus products. However, since Windows 10 was released, and with Microsoft Defender included by default, we felt that it was the solution for us.

As I recall, we stopped using McAfee and Symantec once we moved to Windows 8.

This product came pre-installed with Windows 10 on the machines that we procured from the vendor. It is straightforward and easy to configure, as well. Once Windows is installed, setting up the antivirus and scheduling scans just involves clicking the Next button several times. It is pretty easy for anyone and if the user is non-technical, we guide them through the process.

It takes a maximum of 10 to 15 minutes to install and configure on a PC. Whenever a new configuration is required, you need to configure it on each individual machine that you have. This is why we are investigating a centralization solution. It will help us out in applying things on a global level. For example, we can apply settings based on what is in Active Directory or other policies.

One person, in-house, is all that is required to set it up.

There is not much maintenance required, as our environment is pretty standard. Also, all of the updates come from the Microsoft update center and they are automatically installed on the machines.

It is difficult to determine ROI at this point. Once all of our PCs are joined together, we will have a better idea.

As we operate in the educational sector, we are eligible for an educational discount.

We are currently looking into other solutions that will give us centralized control over Microsoft Defender. However, we are still strictly in the research phase.

Once we decide on a product and a solution is proposed, it is a long process that involves budgetary considerations. Once a PoC is completed, the budget constraints are considered, and this is part of a very long chain of processes that take place before final adoption.

Since we started using this product, we have not had any breaches. When we were using the products by McAfee and Symantec, there were issues with viruses and malicious payloads. Now, it is better because we haven't had any major issues with the systems.

My advice for anybody who is implementing this product is to let the IT staff manage it, and not allow end-users to configure it or modify their own settings.

I would rate this solution an eight out of ten.

Our primary use case of this solution is to protect our endpoints from malware.

A lot of our work involves exchanging files with clients, both via the internet, by email and by USB. Therefore, we are susceptible to malware and ransomware attacks. We are using this solution to protect against these attacks.

The features I have found most valuable are the ransomware and malware protection. The solution detects malware live and whenever it detects suspicious activity, it quarantines it. 

We set our protection to the tightest possible settings, which prevents non-approved applications from making any changes to our computers'.

One area of improvement for this solution is to have a faster turnaround time on updating definition files. Since there are usually various ransomware variants, this solution may not pick it up in time like other commercial antivirus solutions. However, we have not encountered an issue like this yet with definition updates.

With regards to the interface, a challenge I found was that there was not enough documentation on how to tune it. I had to read multiple sources on the internet to learn how to configure the tool appropriately.

In the next release, I would like to see the solution have a backup feature were my data could be saved to a Microsoft OneDrive account or an equivalent cloud platform so that, in the event of a ransomware or malware attack, I can easily retrieve my data.

I have been using the solution for about a year.

The solution is stable.

In the past, I have used other solutions from Symantec, McAfee, and RSA.

The initial setup is very straightforward. It is just the configuration that takes more time as many features are not very intuitive. As a result, you have to read through what a specific feature does and whether you want to implement it.

The solution is an open source version and comes free with a paid version of Windows 10.

I would highly recommend Microsoft Defender Antivirus for an individual looking to protect their endpoints.

Windows Security Essentials is available on Windows 7 and Windows 10. I'm using Windows Defender, and the agent is deployed on-premises on my laptop. I don't know if it has some background cloud services.

I use it for flash memories, portable memories, real-time scanning, threat protection, and capturing the data downloaded from the internet.

I am using it for very simple purposes. It is perfect and quite effective. I have been using it for a while, and I have never had any virus infection, data leak, or other security breaches.

It works fine for standalone purposes. If you log on to OneDrive, it has ransomware protection.

Windows Firewall is integrated with Windows Defender. Over the last few days, I have had a problem with defining a wildcard on Windows Firewall. For example, I wanted to pull out the connection of my program and install a software package with a lot of executable files. I wanted to prevent it from accessing the internet. I could not select executables by using a wildcard. I had to select a single executable with its full name.

I've been using this solution for five years or more. 

It is very stable. 

I don't know about scalability because I have always used it on a single laptop, but I'm sure that there are business options, and you can use it on Windows 7 computers. It must be very scalable.

I live in Iran, and there is no product support in Iran. If there is a technical issue, I prefer to use online information and resources, such as forums and Wiki pages, to resolve the issue. 

It is very easy to install. It is preinstalled when you install Windows. If you install other antiviruses, you have to deactivate it in order to use third-party products.

Microsoft has started to integrate the interface with new Windows 10 settings. Previously, there was a lack of information. Users weren't aware of the status of the product in terms of what it was doing on your computer and whether it was actually protecting you or not. In the background, it must have been doing its job, but you couldn't be very well aware of the status of the software. All those issues are now resolved. The information now is very handy, and the user interface is also great. I would recommend this solution to others.

I would rate Microsoft Defender Antivirus a nine out of ten.

I installed Windows Defender for personal use for my protection of my personal PC. I use it as an antivirus system so that I do not have any exposure to viruses on my PC. Obviously, I do not want to leave my PC open to virus threats. I have only used it on my personal PCs with the license I got for Office 365. I keep my patches and descriptions updated on my PC.  

Defender is installed only one one of my laptops. I am sure I will continue using it there as long as the licensing is valid.  

I really have not really worked with it that much to be able to customize my approach with it or anything like that. It pretty straightforward to install and use.  

I do not find that there is very much about it that needs to be improved. Everything can be cheaper I am sure. So, it could be less expansive.  

It has been about six months now since I started using Microsoft Windows Defender.  

It is stable.  

I am sure it is a scalable product.  

I was just using or trying to get a personal PC secure using a product I got as part of the Office 365 package. There was no previous product installed.  

I found that it was pretty straightforward to install and use. You install it and it is working almost immediately.  

I think that the product is affordable. At least it was for me. It is part of the Office 365 package.  

I have used it enough to be sure that I could recommend it for home use on a PC.  

On a scale from one to ten (where one is the worst and ten is the best), I would rate Defender as a nine-out-of-ten based on my experience.