Update -10/17/2022- Malware Protection support for Android is now generally available for GCC.
As endpoints become more dispersed with the increased adoption of hybrid work, it has never been more critical for organizations to ensure their users and devices are protected from the persistent and ever-evolving threat landscape. Upholding the security and protection of users is paramount, not just for enterprises and individuals but government agencies as well. Unlike the private sector, the public sector has additional obligations and distinct guidelines for maintaining security, compliance, and governance across data and digital infrastructure. To help government organizations protect their assets from vulnerabilities and bad actors, Microsoft is pleased to announce the general availability of mobile device support for Microsoft Defender for Endpoint customers accessing Government Community Cloud (GCC) environments.
Microsoft Defender for Endpoint for US Government customers is built in the Azure US Government environment and uses the same underlying technologies as Defender in Azure Commercial. This offering is available to GCC, GCC High and DoD customers and further extends our platform availability from Windows, MacOS, and Linux, to Android and iOS devices as well.
At this time, Microsoft Defender for Endpoint for US Government customers does not have complete feature parity with our commercial offering of Microsoft Defender for Endpoint. However, as we continue to build out future releases, our goal is to deliver all commercial features and functionality to our US Government customers.
Feature Parity with Commercial (Mobile):
Feature Name | GCC | GCC High | DoD |
Web protection | Yes | Yes | Yes |
Threat & Vulnerability Management (TVM)* | Yes | Yes | Yes |
Jailbreak Detection (iOS) | Yes | Yes | Yes |
Conditional Access/ Conditional Launch | Yes | Yes | Yes |
Support for MAM** | Yes | Yes | Yes |
Privacy Controls | Yes | Yes | Yes |
Malware Protection (Android) | Yes | Yes | Yes |
*TVM – For iOS, support is currently for OS level vulnerabilities, while for Android it is for apps & OS. This is like Commercial.
** Support for MAM – Will be available from July onwards.
Before you start, please ensure:
- Tenant, Defender, Authenticator and Company portal have been setup on the right GCC environment.
- If not, please migrate it from commercial to GCC.
- On the device, use the same id to login to Defender with which device is registered in Authenticator and Company Portal
Learn more here: Microsoft Defender for Endpoint for US Government customers | Microsoft Docs