Windows 10: onboarding a new device to Microsoft defender enterprise

I'm onboarding a new device under the administrator account but when I try to load the script I get the error 65,error level 2, script is running with insufficient privileges

:)

 

Defender for Business onboarding endpoint device Error id: 15 Error level: 1

Hi John,



Thank you for writing us here in Microsoft Community.



The error message "onboarding endpoint device Error id: 15 error level: 1 The service name is invalid" indicates that there is an issue with the service name that is being used to onboard the device to Microsoft Defender for Business.



To resolve this issue, you can try the following steps:

1. Make sure that you are using the correct service name for Microsoft Defender for Business. The service name should be "Microsoft Defender for Endpoint Onboarding" (without the quotes).

2. Check if the service is running on the device. You can do this by opening the Services app (services.msc) and looking for the "Microsoft Defender for Endpoint Onboarding" service. If the service is not running, start it and try onboarding the device again.

3. If the issue persists, try restarting the device and then attempt to onboard it again.



Should issue persists, try following additional steps:

• Check the Diagnostic Data Service: Ensure that the diagnostic data service is enabled and set to start
  
• Check Internet Connection: Make sure your device has a stable internet connection
  
• Check Microsoft Defender Antivirus Policy: Ensure that Microsoft Defender Antivirus is not disabled by a policy
  
• View Agent Onboarding Errors in the Device Event Log: Click Start, type Event Viewer, and press Enter. Go to Windows Logs > Application. Look for an event from WDATPOnboarding event source
  
• Stop the Service: Go to “Control Panel > Administrative Tools > Services”, find the service “Windows Defender Advanced Threat Protection Service”, right-click on the service and click “Stop”. This will stop the service and prevent it from running on the host
  
• Create a new Windows user account: Select Start > Settings > Accounts and then select Family & other users. > Next to Add other user, select Add account. > Select I don't have this person's sign-in information, and on the next page, select Add a user without a Microsoft account. > Enter a username and Next > Go back to Family & other users > Change account type to Administrator > Restart computer to switch to new user account.
  

If needed, you may check similar posts with answers from experts on Microsoft Q and A Questions - Microsoft Q&A and Community page Microsoft 365 Defender - Microsoft Community Hub



We will leave this thread open for our MVPs or other members who are experts about this concern to share their answers.



Honored to be part of your journey,

Bryll

Microsoft Community Agent

 

Microsoft Defender Device Onboard Local Script Device Limit

Hello,



I would like to use the Defender Onboarding Local Script to onboard between 40 & 50 devices that failed to onboard with the Intune deployment method used for mass deployments.



It says that this type of deployment method can only be used on a device count between 1 & 10, but we would like to use it to onboard approximately 40-50 devices.



I know this is not recommended by Microsoft but is this a technically solution to use to help us close the device gap and what happens if we go over the 10-device limitation. I have already tested this on a couple of devices and it works but we want to be assured that if we deploy this to all devices (700+), 40-50 of those not onboarded, that this will do the job.



Thanks



Shaun

 

I need to onboard MAC Device in window defender.so please let me guide how can onboard..

Prerequisites1. Microsoft Endpoint Manager (MEM/Intune) tenant with MDM authority Set to Intune

• Apple Enrollment enabled and an Apple MDM Push certificate installed
  

2. Microsoft Defender for Endpoint (MD ATP)

• Valid subscription and admin access to the new Microsoft 365 Defender (security.microsoft.com) portal or legacy Security Center (securitycenter.windows.com)
  
• Download macOS Onboarding package (XML file) from listed above Microsoft 365 Defender portal, under Settings - Endpoints - Device Management - Onboarding
  

3. Supported macOS devices

• The last three macOS releases are supported
  
• Support for macOS 10.15 (Catalina) or later
  

4. Others

• Download PowerShell scripts to simplify the configuration of macOS Custom profiles
  
• Network connections required for Defender for Endpoint, review mdatp-urls.xlsx
  

ref:

Manual deployment for Microsoft Defender for Endpoint on macOS - Microsoft Defender for Endpoint