Published Sep 4, 2024
Microsoft is updating the Microsoft Secure Score in Defender for Endpoint to better reflect security posture. This includes removing the recommendation SCID-84 for Local Admin password management. Rollout begins mid-September 2024, expected to complete by late October 2024. No admin action is required for this update.
Updated September 26, 2024: We have updated the rollout timeline below. Thank you for your patience.
We’re updating the Microsoft Secure Score improvement action of Microsoft Defender for Endpoint (MDE) to ensure a more accurate representation of security posture.
As part of this update, we will gradually withdraw the MDE recommendation on SCID-84 Enable Local Admin password management.
We are working to refine the recommendation, ensuring it aligns more accurately with recommended policies and enhances the overall security value.
When this will happen:
General Availability (Worldwide, GCC, GCC High, DoD): We will begin rolling out in mid-September 2024 and expect to complete by late October 2024 (previously mid-October).
How this will affect your organization:
The Enable Local Admin password management recommendation will be completely removed from the UI, and the score will be changed in accordance.
This update is available by default.
What you need to do to prepare:
This rollout will happen automatically with no admin action required. You may want to notify your users about this change and update any relevant documentation as appropriate.