Reviews (1-5 of 5)
- One of the undeniable strengths of Windows Defender is that it is free. It already comes packaged with Windows. You don't have to install separately or pay extra for the excellent kind of protection it provides.
- Unlike all the other anti-virus software out there, the service is very light on the system and one doesn't even get to know when a background check is going on in the background. I never had to open the application to run scans. It automatically keeps running in the background and informs if anything fishy is going on in the background.
- When it comes to the latest threats and malware, it is not the most updated antivirus software in the market. It can always benefit from quick virus definition updates.
- It is not a complex antivirus solution when it comes to its feature sets. People who are finicky about each and every feature will be a little disappointed with the lack of options/settings available to configure the antivirus.
It address the business problem of helping to protect every computer that connects to the network, or that connects to the domain. All policies/settings get pushed down to the clients that are installed on the individual machines. There doesn't need to be user interaction to get this done
- It is great at proactively monitoring threats across the network. It works seamlessly with the client to monitor individual user computers, and it has a good real-time scanning engine.
- On the client side, Windows Defender doesn't require a whole lot of system resources to run, nor will it create unnessary slowdowns of a computer, even while scanning for threats
- We've noticed one issue with the SmartScreen filter settings on the client and trying to install programs. If the Administrator sets the setting to Block on the server side, then this might interfere with some programs trying to get installed on the client side. Microsoft should look into this issue, and maybe offer more sub-settings for the Block option
- Noticed that Windows Defender will occassionally do a system scan on a client during business hours, even though on the server side, scans are set for the middle of the night. This does not occur on all endpoints, or at all times, but tends to be random
It might be less of ideal solution if a company/organization were looking for something more robust, or had a lot more features/configuration settings. It also might be less ideal for a company/organization that was looking for a product that didn't have a high detection rate of false positives
- Visibility: It's great to be able to see what KBs are missing, etc.
- Lightweight AV protection built on the already included Windows Defender Application
- Deployment: We've had some issues deploying, especially outside of the Windows environment.
- Offboarding: There is currently no way to delete a computer. They disappear over time. We even renamed a computer, and it kept both the old and new name in there. Eventually, the older machines do go away, but there is no manual way to do this at the moment.
Where it may not be great is in mixed-OS environments. It requires a bit of determination to get ATP installed on OSX or Linux. While these platforms do get fewer viruses in general, it's good to have the layer of visibility and security for web and browser based threats.
- It does not take up a lot of system resources, unlike other 3rd part AV providers.
- Integrated into the MS product line without having to touch it too much, unlike 3rd part AV providers.
- Easy to set-up and manage endpoints.
- It does not break Windows OS like 3rd party AV providers whenever a patch or roll updated is deployed.
- Detection rates are less than some of the competitors out there.
- Too many false positives with 3rd part applications.
- For smaller deployments can get expensive compared to competitors.
- Low impact on computer performance.
- Easy-to-use interface.
- Several settings that help you customize the software.
- Virus detection rates are below competitors.
- Too many notifications that end up bothering.
- Do not ask every time if you should send reports to Microsoft.
Microsoft Defender ATP Scorecard Summary
Feature Scorecard Summary
What is Microsoft Defender ATP?
Microsoft Defender Advanced Threat Protection (ATP) is an endpoint security solution.
It integrates technology based on the 2017 acquisition of Israeli cyber security company Hexadite, the developer of Hexadite AIRS, which uses AI designed to model optimal cyberthreat response behavior and provide an automated response. Windows Defender ATP also features vulnerability management.
Microsoft Defender ATP Pricing
- Does not have featureFree Trial Available?No
- Does not have featureFree or Freemium Version Available?No
- Does not have featurePremium Consulting/Integration Services Available?No
- Entry-level set up fee?No
|Standalone||5.20||per user/per month|
|Academic||2.50||per user/per month|
Microsoft Defender ATP Technical Details