MC883197 – (Updated) Microsoft Defender for Endpoint: Removing a recommendation to update Microsoft Secure Score

cloudscout.one Icon

check before: 2024-09-15

Product:

Defender, Defender for Endpoint, Defender XDR

Platform:

Online, US Instances, World tenant

Status:

Change type:

Admin impact, Feature update, Updated message

Links:

Details:

Summary:
Microsoft is updating the Microsoft Secure Score in Defender for Endpoint to better reflect security posture. This includes removing the recommendation SCID-84 for Local Admin password management. Rollout begins mid-September 2024, expected to complete by late October 2024. No admin action is required for this update.

Details:
Updated September 26, 2024: We have updated the rollout timeline below. Thank you for your patience.
We're updating the Microsoft Secure Score improvement action of Microsoft Defender for Endpoint (MDE) to ensure a more accurate representation of security posture.

As part of this update, we will gradually withdraw the MDE recommendation on SCID-84 Enable Local Admin password management.
We are working to refine the recommendation, ensuring it aligns more accurately with recommended policies and enhances the overall security value.
[When this will happen:]
General Availability (Worldwide, GCC, GCC High, DoD): We will begin rolling out in mid-September 2024 and expect to complete by late October 2024 (previously mid-October).

Change Category:
XXXXXXX ... free basic plan only

Scope:
XXXXXXX ... free basic plan only

Release Phase:

Created:
2024-09-05

updated:
2024-09-27

Task Type

XXXXXXX ... free basic plan only

Docu to Check

XXXXXXX ... free basic plan only

MS How does it affect me

XXXXXXX ... free basic plan only

MS Preperations

XXXXXXX ... free basic plan only

MS Urgency

XXXXXXX ... free basic plan only

MS workload name

XXXXXXX ... free basic plan only

summary for non-techies**

Microsoft is removing the SCID-84 recommendation for managing Local Admin passwords from the Microsoft Secure Score in Defender for Endpoint between mid-September 2024 and late October 2024 to better reflect relevant security practices.

Direct effects for Operations**

Removal of Local Admin Password Management Recommendation
The removal of the recommendation may lead to a lack of awareness regarding local admin password management, potentially increasing security risks if users do not follow best practices for password management.
   - roles: IT Security Manager, System Administrator
   - references: https://techcommunity.microsoft.com/t5/security-compliance-identity/microsoft-defender-for-endpoint-removing-a-recommendation-to/ba-p/3851230

Changes in Microsoft Secure Score Representation
The change in how the Microsoft Secure Score reflects security posture may confuse users and administrators, leading to misinterpretation of the organization's security status and potentially impacting compliance efforts.
   - roles: Compliance Officer, IT Manager
   - references: https://techcommunity.microsoft.com/t5/security-compliance-identity/microsoft-defender-for-endpoint-removing-a-recommendation-to/ba-p/3851230

Configutation Options**

XXXXXXX ... paid membership only

IT Security**

XXXXXXX ... paid membership only

explanation for non-techies**

XXXXXXX ... free basic plan only

** AI generated content. This information must be reviewed before use.

a free basic plan is required to see more details. Sign up here


A cloudsocut.one plan is required to see all the changed details. If you are already a customer, choose login.
If you are new to cloudscout.one please choose a plan.



change history

DatePropertyoldnew
2024-09-27MC MessageTagNamesFeature update, Admin impactUpdated message, Feature update, Admin impact
2024-09-27MC SummaryMicrosoft is updating the Microsoft Secure Score in Defender for Endpoint to better reflect security posture, removing the recommendation SCID-84 for Local Admin password management. The change will occur from mid-September to mid-October 2024, with no action required from admins.Microsoft is updating the Microsoft Secure Score in Defender for Endpoint to better reflect security posture. This includes removing the recommendation SCID-84 for Local Admin password management. Rollout begins mid-September 2024, expected to complete by late October 2024. No admin action is required for this update.
2024-09-27MC Last Updated09/05/2024 01:05:382024-09-26T19:12:20Z
2024-09-27MC MessagesWe're updating the Microsoft Secure Score improvement action of Microsoft Defender for Endpoint (MDE) to ensure a more accurate representation of security posture.

As part of this update, we will gradually withdraw the MDE recommendation on SCID-84 Enable Local Admin password management.
We are working to refine the recommendation, ensuring it aligns more accurately with recommended policies and enhances the overall security value.
[When this will happen:]
General Availability (Worldwide, GCC, GCC High, DoD): We will begin rolling out in mid-September 2024 and expect to complete by mid-October 2024.
Updated September 26, 2024: We have updated the rollout timeline below. Thank you for your patience.
We're updating the Microsoft Secure Score improvement action of Microsoft Defender for Endpoint (MDE) to ensure a more accurate representation of security posture.

As part of this update, we will gradually withdraw the MDE recommendation on SCID-84 Enable Local Admin password management.
We are working to refine the recommendation, ensuring it aligns more accurately with recommended policies and enhances the overall security value.
[When this will happen:]
General Availability (Worldwide, GCC, GCC High, DoD): We will begin rolling out in mid-September 2024 and expect to complete by late October 2024 (previously mid-October).
2024-09-27MC TitleMicrosoft Defender for Endpoint: Removing a recommendation to update Microsoft Secure Score(Updated) Microsoft Defender for Endpoint: Removing a recommendation to update Microsoft Secure Score
2024-09-27MC End Time11/25/2024 09:00:002024-12-16T09:00:00Z

Last updated 2 weeks ago

Share to MS Teams

Login to your account

Welcome Back, We Missed You!