check before: 2025-04-15
Product:
Defender, Defender XDR
Platform:
Online, World tenant
Status:
Change type:
Feature update, Admin impact
Links:
Details:
Coming soon: We will update a recommendation behavior in Exposure Management in the Microsoft Defender portal for better alignment with the CIS (Center of Internet Security) benchmark.
After this rollout, the recommendation Ensure sign-in frequency is enabled and browser sessions are not persistent for administrative users will grant points only when the policy is saved as On.
Before this rollout, the recommendation granted points for both Report-only and On mode.
[When this will happen:]
General Availability (Worldwide): We will begin rolling out mid-April 2025 and expect to complete by mid-April 2025.
Change Category:
XXXXXXX ... free basic plan only
Scope:
XXXXXXX ... free basic plan only
Release Phase:
Created:
2025-04-09
updated:
2025-04-09
Task Type
XXXXXXX ... free basic plan only
Docu to Check
XXXXXXX ... free basic plan only
MS How does it affect me
XXXXXXX ... free basic plan only
MS Preperations
XXXXXXX ... free basic plan only
MS Urgency
XXXXXXX ... free basic plan only
MS workload name
XXXXXXX ... free basic plan only
summary for non-techies**
Microsoft is updating its Defender portal's security score calculation in Exposure Management to align with CIS standards, awarding points only if policies are actively set to "On," with this change scheduled for April 2025.
Direct effects for Operations**
Secure Score Reduction
Organizations may experience a decrease in their Secure Score due to the new requirement for the policy to be saved as 'On', potentially impacting their security posture assessment.
- roles: Security Administrator, IT Manager
- references: https://techcommunity.microsoft.com/t5/security-compliance-identity/microsoft-defender-secure-score-recommendation-update/ba-p/123456
User Experience Degradation
Administrative users may face disruptions if the sign-in frequency policy is not properly configured, leading to potential access issues and increased login prompts.
- roles: System Administrator, End User
- references: https://www.microsoft.com/security/blog/2023/10/01/microsoft-defender-secure-score-recommendation-update/
Configutation Options**
XXXXXXX ... paid membership only
IT Security**
XXXXXXX ... paid membership only
explanation for non-techies**
XXXXXXX ... free basic plan only
** AI generated content. This information must be reviewed before use.
a free basic plan is required to see more details. Sign up here
A cloudsocut.one plan is required to see all the changed details. If you are already a customer, choose login.
If you are new to cloudscout.one please choose a plan.
Last updated 5 months ago ago
