Security News > 2020 > November > Microsoft previews Linux endpoint detection and response capabilities
Microsoft has announced today the public preview of endpoint detection and response capabilities on Linux servers running Microsoft Defender Advanced Threat Protection - now known as Microsoft Defender for Endpoint.
"This builds on the existing preventative antivirus capabilities and centralized reporting available via the Microsoft Defender Security Center," Microsoft Senior Product Manager Tomer Hevlin said.
Microsoft Defender for Endpoint's Linux EDR capabilities provide admins with: Rich investigation experience: including machine timeline, process creation, file creation, network connections, login events and, of course, the popular advanced hunting.
Microsoft Defender for Endpoint was made generally available for enterprise customers with Linux devices earlier this year, in June.
Before getting started with Linux EDR preview, you will first have to make sure that the Linux servers you want to enable the new capabilities on are running Microsoft Defender for Endpoint version 101.12.99 or higher.