Microsoft Threat Protection will automatically turn on for eligible license holders

April 30, 2020
The original article is published on the Microsoft Tech Community Security, Privacy and Compliance Blog.

Effective June 1, 2020, Microsoft will automatically enable Microsoft Threat Protection features when eligible customers visit the Microsoft 365 security center (security.microsoft.com).

Read below to learn more.

Who are eligible?

Customers with corresponding licenses for one of the following Microsoft 365 security products:

  • Microsoft Threat Protection
  • Microsoft Defender Advanced Threat Protection
  • Office 365 Advanced Threat Protection
  • Microsoft Cloud App Security
  • Azure Advanced Threat Protection

This also applies to customers with one of the following licenses by June 1, 2020:

  • Microsoft 365 E5
  • Microsoft 365 E5 Security
  • Windows 10 Enterprise E5
  • Enterprise Mobility + Security (EMS) E5
  • Office 365 E5
  • Microsoft Defender Advanced Threat Protection
  • Azure Advanced Threat Protection
  • Microsoft Cloud App Security
  • Office 365 Advanced Threat Protection (Plan 2)

What is changing?

Starting June 1, Microsoft will be enhancing the listed Microsoft 365 security products by turning on Microsoft Threat Protection features when an eligible customer visits the Microsoft 365 security center.

What is Microsoft Threat Protection?

Microsoft Threat Protection is a new solution from Microsoft that enables out-of-the-box, coordinated defenses across the Microsoft 365 security stack for email, endpoints, identities, and apps. It orchestrates cross-product defenses to detect, block, and prevent sophisticated attacks and automatically heal assets affected by these attacks.

mtp-side.png

Microsoft Threat Protection stitches together threat signals to help determine the full scope and impact of a threat: how it entered the environment, what it has affected, and how it's currently impacting the organization. It leverages the end-to-end view of the attack to orchestrate automatic response actions across products, stopping the attack and applying self-healing technologies to mailboxes, endpoints, and user identities.

To learn more about Microsoft Threat Protection:

Visit the product website | Explore the documentation | Read our blog | Watch the webcast

Microsoft Threat Protection is covered by the Online Services Terms  as updated for May 2020.

 

What features will be added to my offering?

The following features will light up:

  • Correlation of security data and alerts across all Microsoft 365 security products into cross-product incidents. Access this through Incidents on the Microsoft 365 security center nav, or go to security.microsoft.com/incidents.
  • Centralized incident response capabilities that self-heal assets affected by alerts or cross-product incidents across endpoints, Office 365, and identities. Access this through Action center on the on the Microsoft 365 security center nav, or go to security.microsoft.com/action-center.
  • Normalized data store that enables proactive threat hunting capabilities and behavior-based custom detection rules over email, endpoints and identity data.  Access this through Hunting on the Microsoft 365 security center nav, or go to security.microsoft.com/advanced-hunting.

I’m interested. Can I enable Microsoft Threat Protection features now?

Yes, eligible customers can enable Microsoft Threat Protection before June 1, 2020. Go to Settings in Microsoft 365 security center (security.microsoft.com/settings) and, if needed, follow the steps outlined in this article.

How do I enable Microsoft Threat Protection after June 1st?

Microsoft automatically enables Microsoft Threat Protection features for all eligible tenants. Simply visit Microsoft 365 security center and start exploring it.

What if I already enabled Microsoft Threat Protection for my tenant?

No action is required, and the change will not affect you. You can continue to use Microsoft Threat Protection features as before.

When is the change effective?

The changes above come into effect on June 1, 2020.

I have further questions. Where can I go?

Please read Microsoft Threat Protection documentation. You can also contact us via the customer feedback tool in Microsoft 365 security center, read the Microsoft Online Services Terms, or reach out to your Microsoft representative or partner to learn more.

Raviv Tamir

Group Program Manager

Microsoft Threat Protection

Discuss this article in the Microsoft Technical Community.