Remote Windows Security

The Remote Windows Security tool lets you view critical security information in your Configuration Manager console. Information is displayed for the following categories: Defender, Defender Exclusions, Windows Firewall, Firewall Rules, BitLocker, TPM (Trusted Platform Module), Firmware, Virtualization-Based Security.

To view security information in your Configuration Manager console, navigate to Assets and Compliance > Devices > Right Click Tools > Security Tools > Remote Windows Security.

Defender

The Defender tab shows information about the status of Windows Defender Antivirus on selected computers.

  • Defender Protection (Enabled/Disabled)
  • Real-time Protection (Enabled/Disabled)
  • Installed antivirus Signature Version
  • Installed Defender Client Version
  • Installed Defender Engine Version
  • Number of Devices in this selection

The tab also displays the following information for each computer selected when running Remote Windows Security.

  • Date and time of Last Signature Update
  • Date and time of Last Full Scan completion
  • Date and time of Last Quick Scan completion

Defender

Defender Exclusions

The Defender Exclusions tab lists the exclusions applied to selected computers.

Defender Exclusions

Windows Firewall

The Windows Firewall tab displays firewall details for selected computers, including whether profiles have been enabled for:

  • Domain
  • Private
  • Public

Windows Firewall

Firewall Rules

The Firewall Rules tab lists the Windows firewall rules in place on selected computers.

Windows Firewall Rules

BitLocker

The BitLocker tab displays the current protection status for the various drives on selected computers.

Included details:

  • Associated Drive Letter
  • Protection Status for the drive
  • Encryption Method for the drive
  • Conversion Status for the drive
  • Key Protectors used for this drive
  • Volume Type for this drive
  • Number of devices in this selection

BitLocker

TPM

The TPM tab shows information about the status of the Trusted Platform Module on selected computers.

Included details:

  • Trusted Computing Group (TCG) Version
  • TPM Activated (T/F)
  • TPM Enabled (T/F)
  • TPM Owned by the OS (T/F)
  • TPM Ready (T/F)
  • Number of Devices in this selection

TPM

Firmware

The Firmware tab shows information about specific security settings related to selected computers.

Included details:

  • Unified Extensible Firmware Interface (UEFI) Enabled (T/F)
  • SecureBoot Enabled (T/F)
  • Number of Devices in this selection

Firmware

Virtualization-Based Security

The Virtualization-Based Security tab shows information about virtualization-based security options for selected computers.

  • Virtualization-Based Security (VBS) Enabled (T/F)
  • VBS Platform Security Features
  • Credential Guard Enabled
  • System Guard Enabled (T/F)
  • Number of Devices in this selection

VBS