Hi,

We've just upgraded some machines to Windows 10 in our environment. Our Anti-Malware policy is for Endpoint/Windows Defender clients to check for updates before their daily scan at midday. However this doesn't seem to be working since we updated SCCM to SP2.

Whether it be Endpoint on Windows 7, or Defender on Windows 10, it just doesn't seem to want to update automatically. The log files don't show any errors and they correct AM policy is applying.

Please help.

Thanks,

David.

What does the monitoring node tell?

Sorry for the late reply...

I thought I had this one in the bag by changing the "allow clients to seek alternate sources for the initial update" which was set to no. However clients are still not updating every day which they should (Clients do a scan daily and they're set to seek updates before hand). I've configured Microsoft Update as the third source after CM and WSUS.

According to the graph, we've had a jump in update age since just before installing SP2.

Is there a log file I can check?

I had the same problem with windows 10. I needed to add defender to products under software update point component. It won't work with just forefront endpoint protection 2010. I also had to add defender to my automatic deployment rule. As it synced my windows 10 defender was updated.