View all Worklets
Windows

Windows - Security - Windows Defender for Endpoint Onboarding

Automates Windows Defender Endpoint Onboarding on Microsoft 365.

Worklet Details

Introduction to the PowerShell-based Windows Defender for Endpoint Onboarding orklet

The PowerShell-based Windows Defender for Endpoint Onboarding Worklet is designed to facilitate the onboarding process of endpoints to the Microsoft Defender for Endpoint security platform. This Worklet is particularly useful when you need to manage multiple devices in a network, ensuring each one is protected by Microsoft Defender.

Why would you use the Windows Defender for Endpoint Onboarding Worklet?

The Windows Defender for Endpoint Onboarding Worklet is essential for organizations that leverage Microsoft's security solutions, particularly Microsoft Defender for Endpoint. It simplifies the onboarding process and ensures all endpoint devices are correctly integrated with Microsoft Defender for Endpoint.

This not only enhances the security posture of an organization but also enables effective device management and monitoring.

Components of the Windows Defender for Endpoint Onboarding Worklet

The Worklet includes several components that facilitate the onboarding process. One such component is the "Local Onboarding" .zip file, which needs to be retrieved from the Microsoft Defender for Endpoint admin portal and uploaded to the Automox policy.

The Worklet also includes a script function that is responsible for executing the required commands depending on whether the operating system is 64-bit or 32-bit.

How does the Windows Defender for Endpoint Onboarding Worklet work?

The Windows Defender for Endpoint Onboarding Worklet begins by evaluating the onboarding status of the endpoint device. If the device isn't onboarded, the script triggers remediation. 

Next, the Worklet uses a function to execute the necessary commands for onboarding. It also checks for required registry keys and creates them if they don't exist. 

Should the payload be missing, the Worklet guides the user on how to attach the Windows Defender "local onboarding" .zip file as a payload to this policy.

What is the expected outcome when you use the Windows Defender for Endpoint Onboarding Worklet?

Upon successful execution of the Windows Defender for Endpoint Onboarding Worklet, endpoints are onboarded to the Microsoft Defender for Endpoint security platform. Once onboarded, these devices take between 5 – 30 minutes to appear in the Microsoft Defender admin portal. 

This Worklet allows for the automated onboarding of endpoints and effectively reduces errors caused by manual onboarding. 

View in app

Consider Worklets your easy button

What's a Worklet?

A Worklet is an automation script, written in Bash or PowerShell, designed for seamless execution on endpoints – at scale – within the Automox platform. Worklet automation scripts perform configuration, remediation, and the installation or removal of applications and settings across Windows, macOS, and Linux.

do more with worklets