Although the default ATP (Advanced Threat Protection) protection Windows It's called Microsoft Defender, which doesn't necessarily mean that the service is only available for the company's products.
Last year, the Microsoft announced the release of the ATP for Apple devices. At the time, the company also stated that it intended to create ATP protection for devices with Linux. A few months later, Microsoft announced the first test ATP for Linux-based operating systems. Today, the company finally announced the official availability of protection for users who use the Linux.
Microsoft Defender ATP for Linux:
Currently, ATP is only supported by its 6 best-known enterprise distributions Linux, which are:
- Red Hat Enterprise Linux (RHEL) 7.2+
- CentOS Linux 7.2+
- Ubuntu 16 LTS or higher LTS
- SUSE Linux Enterprise Server (SLES) 12+
- Debian GNU / Linux 9+
- Oracle Linux 7.2
The original version of ATP, comes with command-line tools, which allow users to configure the application, scan their device and define the actions that the program will perform when it finds malicious files. In addition, the application provides support for alert monitoring at Microsoft Defender Security Center.
In addition to built-in command-line tools, users can configure ATP using Puppet, Ansible, or other configuration management applications on Linux.
How to install Microsoft Defender ATP on Linux?
If you are using the trial ATP protection that was released in February, we recommend that you update your application to version 101.00.75, or to the latest version available when you read this article.
However, if you have not installed the application, you must first buy a license. Once you have access to the application, you can proceed with its installation. More information on installing the application on Linux can be found here here.