With the announcement of Windows 10 Microsoft said that ConfigMgr 2012 would natively support Windows Defender in the latest Service pack (http://blogs.technet.com/b/configmgrteam/archive/2015/05/14/announcing-the-availability-of-sysctr-2012-r2-configmgr-sp1-and-sysctr-2012-configmgr-sp2.aspx). That means, for those of you who are using Endpoint Protection as the Antivirus solutions on clients and servers, needs to start using the Windows Defender instead and stop deploying SCEP (to Windows 10). Now, this is great because old policies work great, however definition updates for Endpoint Protection do not so we have to make a little adjustment to our routines. First confirmation on the policies:

SCEP with Policy from SCCM:


Windows defender with policy from SCCM:




Solution for updates: So Windows Defender gets its definition updates within the same Software Updated routines as SCEP we just need to add Windows Defender to the Products we want to Sync updates for.


Remember to also change any other rules like ADR to also contain Windows Defender as a product:


Cheers. J