How to Migrate Microsoft Tunnel to Defender for Endpoint?

Microsoft Defender for Endpoint became generally available as the Microsoft Tunnel client app for Android that works with the Microsoft Tunnel Gateway in Microsoft Intune in June 2021. The new Microsoft Defender for Endpoint app includes the capabilities of the Microsoft Tunnel app in Microsoft Defender for Endpoint, with a new Tunnel tab. Users of the standalone Microsoft Tunnel client app must migrate their devices to Microsoft Defender for Endpoint as their tunnel client before the support for the standalone tunnel app ends in January 2022. In this article, we will focus on the process involved in migrating devices from the Microsoft Tunnel app to the new Microsoft Defender for Endpoint app.

How to Migrate Devices from Standalone Tunnel Client to Defender for Endpoint?

Organizations must migrate their devices to the Microsoft Defender for Endpoint app from the standalone Microsoft Tunnel app before support for the tunnel client app ends on January 31, 2022. Follow the steps below for the Tunnel app to Defender for Endpoint app device migration.

  • Reviewing and Recording Tunnel Configuration

    Review the current settings for the VPN profiles and app deployment settings of Microsoft Tunnel. Use the details to deploy new VPN profiles by mirroring the existing deployments in the Microsoft Endpoint Manager admin center.

  • Microsoft Defender for Endpoint Deployment

    Microsoft Defender for Endpoint with support for Microsoft Tunnel on Android should be downloaded to each supported device from the Managed Google Play store. Approve the app for the tenant and sync it. Assign the app to the appropriate groups, and users to install the Microsoft Defender for Endpoint app after the assignment is complete.

  • Creating New VPN Profiles

    New VPN profiles with the Microsoft Tunnel connection type have to be deployed. This will allow devices to use Microsoft Defender for Endpoint to connect to Microsoft Tunnel Gateway. The settings used for the existing profiles must be used to create and deploy the new VPN profiles for Android Enterprise devices, with the connection type of Microsoft Tunnel, as editing the connection type of an existing profile is not supported.

  • Cleaning Up Existing Deployments

    Remove the configurations for the original deployments after users have installed the Microsoft Defender for Endpoint app and have received their new VPN profiles. Remove Required and Available for enrolled devices and add Uninstall to initiate the removal of the deployments of the original Tunnel app.

Apps4Rent Can Help with Microsoft Enterprise Security Solutions

With the use of Microsoft Defender for Endpoint for connecting with Tunnel, custom settings can be used in the VPN profile for managing Defender for Endpoint, instead of a separate app configuration profile. This allows enterprises to use Defender functionalities, such as web protection, a dashboard for device health, and app security to view the scan status of the devices.

As a Microsoft Gold Partner for Cloud Platform, and a Tier 1 CSP, Apps4Rent can help enterprises and businesses with licensing and configuration of Microsoft 365 plans with Defender for Endpoint and other security solutions. Contact our Microsoft-certified security advisors, available round-the-clock via phone, chat, and email for assistance.

    Submit Your Requirement

    Comments are closed.