Home > Enterprise >  Powershell output for Microsoft Defender status
Powershell output for Microsoft Defender status

Time:10-21

I'm very new to PowerShell and I have question in regards to Microsoft Intune and PowerShell.

I have this GetMPComputerStatus|select AMRunning to check if Defender is "Normal" or "Passive", that's the only two outcomes.

How do I make an if statement so I can get all the devices which returns "Passive"

Hope i'm asking the right question and I provided enough information to my problem

Best regards

CodePudding user response:

When you say "get all the devices which returns "Passive"", I assume you need to check different computers and filter out all that have their antimalware software not in "Normal" mode.

For that you can use the -CimSession parameter that allows you to enter (an array) of computernames to test.

$computers = 'PC01', 'PC02', 'PC03'                # the computers you need to check
Get-MpComputerStatus -CimSession $computers | 
Where-Object {$_.AMRunningMode -eq 'Passive' } |   # or use Where-Object {$_.AMRunningMode -ne 'Normal' }
Select-Object PsComputerName, AMRunningMode

Page link:https//www.codepudding.com/Enterprise/160449.html

Prev:Get files from specific directories and put them in a flat structure with new file names
Next:moving through datagridview with textbox keys up and keys down
  • Related

About Us:  Contact Us      Terms of Service       Privacy Policy

Copyright © 2010-2023,Powered By CodePudding