​Hello. I’m investigating how we might best roll-out MS Defender for Endpoint to our small organization of about 30 people. Environment:30 users with O365(A3) and MDE(P2) licensesdistributed, unmanaged, self-supported, mixed OS (Win, Mac) machines – effectively BYOD using Word, Outlook, Sharepoint, etc.no Azure/Entra Premium nor Intune licenses (devices are all “registered” or “joined” in Entra, but cannot create dynamic device groups) After much reading, it sounds as though if we do not have an Azure/Entra P1/P2 license we cannot take advantage of automated MDE onboarding through Intune. It seems as though the only practical way of deploying MDE in our current, unstructured, mixed environment is by using the manual, locally-installed, onboarding script, which is not recommended for more than 10 machines. To sum up the issue, our users have O365 for the productivity tools, but their machines are not actively organized or managed using the MS domain/AD infrastructure. I’d like make their machines more secure and have more visibility into what’s happening from a security point-of-view using MDE. Any thoughts on the best way forward for our small organization (with an even smaller IT department)? Should we get Azure/Entra license and build some more AD/Domain structure? Should we not bother with MDE if we’re not going to move to managed machines for everyone? Are there better MDE onboarding options for small orgs? I’ve done a lot of searching for documentation on similar scenarios, but haven’t found much. Any pointers to docs/case studies would be much appreciated! Thanks! Dave  Read More

​