Microsoft has announced on Friday another tool that will permit the system administrator to refresh the Defender security package inside Windows installation images (WIM or VHD upheld).
The new tool was established for big business conditions where workstations and workers are adjusted or mass-install utilizing installation images.
A share of these pictures is reused for once in a month, and the Microsoft Defender (default antivirus) package discovered inside would for the most part wind up being introduced utilizing an outdated identification database.
The recently introduced Windows operating systems would in the end refresh the Defender package, however, Microsoft says that this makes a "protection gap" during which structures could be effectively assaulted and tainted.
Microsoft's new tool is proposed to permit structure heads to refresh their WIM or VHD installation images to contain the latest Defender segment before sending it on their device fleet.
The new tool was accommodated both 32-bit and 64-bit structures and supports the installation image for Windows 10 (Enterprise, Pro, and Home versions), Windows Server 2019, and Windows Server 2016.
"These links highlight compress documents protector update-unit [x86|x64].zip. Concentrate the .compress record to get the Defender update bundle (safeguard dism-[x86|x64].cab) and an update patching tool (defenderupdatewinimage.ps1) that helps update activity for OS installation images," Microsoft said on Friday.
To run the tool, simply run the DefenderUpdateWinImage.ps1 Powershell content.
This code should be run with Administrator benefits from a 64-bit Windows 10 or later OS climate with PowerShell 5.1 or later forms. Powershell required modules to incorporate Microsoft.Powershell.Security and DISM.
The most effective method to APPLY THIS UPDATE
PS C:\> DefenderUpdateWinImage.ps1 - WorkingDirectory - Action AddUpdate - ImagePath - Package
Instructions to REMOVE OR ROLLBACK THIS UPDATE
PS C:\> DefenderUpdateWinImage.ps1 - WorkingDirectory - Action RemoveUpdate - ImagePath
Instructions to LIST DETAILS OF INSTALLED UPDATE
PS C:\> DefenderUpdateWinImage.ps1 - WorkingDirectory - Action ShowUpdate - ImagePath
In conclusion, Microsoft’s new tool offers a significant improvement for system administrators managing large-scale installations in enterprise environments. By allowing admins to update the Microsoft Defender package within Windows installation images (WIM or VHD), this tool addresses the issue of outdated security definitions that could expose systems to potential vulnerabilities. With support for multiple Windows versions and an easy-to-use PowerShell script, this tool simplifies the update process and ensures that systems are protected from the moment they are deployed. Regular updates to the Defender package, before system installation, help prevent the “protection gap” and enhance overall cybersecurity for enterprise fleets.
Confused about our certifications?
Let Our Advisor Guide You
