Endpoint protection issues and possible solutions in Intune
This article describes potential errors and solutions when using Microsoft Intune endpoint protection.
For troubleshooting guidance specific to Microsoft Defender for Endpoint, see Review event logs and error codes to troubleshoot issues with Microsoft Defender Antivirus.
Endpoint Protection engine unavailable
Potential cause: The Intune endpoint protection engine was corrupted or deleted.
Possible solutions:
- If endpoint protection is corrupt or won't update, then update or reinstall the program.
- Force an immediate update. In the endpoint protection client program (possibly in the taskbar), choose Update.
- In Control Panel > Programs, select Microsoft Intune Endpoint Protection Agent. Uninstall the application.
- During the next update synchronization, the Microsoft Online Management Update Manager detects the missing program and reinstalls it at the scheduled installation time.
Features are disabled
You may get a message that some features are disabled. These messages can happen if Intune endpoint protection or Microsoft Defender for Endpoint is disabled by an administrator using a configuration profile. Or, it's disabled by an end user on the device. Possible messages:
Endpoint Protection disabled
Real-time protection disabled
Download scanning disabled
File and program activity monitoring disabled
Behavior monitoring disabled
Script scanning disabled
Network Inspection System disabled
Possible solutions: Enable these features. For guidance, see:
- Add endpoint protection settings
- Microsoft Defender Antivirus
- Turn on Windows Defender to access company resources
Malware definitions out of date
This status shows when the malware definitions on the device are out of date by 14 days or more. For example, the message may show if the device is disconnected from the Internet, or the malware definitions are outdated.
Possible solutions: If malware definitions are out of date, update the definitions using Microsoft Defender Antivirus.
Full scan overdue or quick scan overdue
A full scan or quick scan hasn't completed for 14 days. This scenario can happen if the device restarts during a full scan.
Possible solutions: If a scan is overdue, you can run a one-time scan or schedule recurring scans. See Microsoft Defender Antivirus.
Another endpoint protection application running
Another endpoint protection application is running, and the device is healthy.
Possible solutions: If another endpoint protection application is installed and Intune detects that application, the device may become unstable.
Váš názor
Připravujeme: V průběhu roku 2024 budeme postupně vyřazovat problémy z GitHub coby mechanismus zpětné vazby pro obsah a nahrazovat ho novým systémem zpětné vazby. Další informace naleznete v tématu: https://aka.ms/ContentUserFeedback.
Odeslat a zobrazit názory pro