Expanded New Sensor Deployment Support for Domain Controllers (Preview)

May 2025

Expanded New Sensor Deployment Support for Domain Controllers (Preview)
Defender for Identity now supports deploying its new sensor on Domain Controllers without requiring Defender for Endpoint onboarding. This simplifies sensor activation and expands deployment flexibility. Learn more.

Improved Visibility into Defender for Identity New Sensor Eligibility in the Activation page
The Activation Page now displays all servers from your device inventory, including those not currently eligible for the new Defender for Identity sensor. This enhancement increases transparency into sensor eligibility, helping you identify non-eligible servers and take action to update and onboard them for enhanced identity protection.

Local administrators collection (using SAM-R queries) feature will be disabled
The remote collection of local administrators group members from endpoints using SAM-R queries in Microsoft Defender for Identity will be disabled by mid-May 2025. This data is currently used to build potential lateral movement path maps, which will no longer be updated after this change. An alternative method is being explored. The change will occur automatically by the specified date, and no administrative action is required.

New Health Issue
New health issue for cases where sensors running on VMware have network configuration mismatch.