While leveraging Defender for Servers in the enterprise across clouds and on—premise both Plans 1 and 2 also deploys Defender for Endpoint giving you endpoint protection with Endpoint Detection and Response (EDR) and Threat Vulnerability Management (TVM). As part of this plan you can leverage Automatic Onboarding or Policy Remediation tasks that execute, register, and in some cases install (Server 2012R2, Linux) Defender for Endpoint onto the server. The deployment occurs on Azure VMs and Arc Connected servers using the following steps for installation.
what about:
c:\programdata\azureconnectedmachineagent\logs
Great post, thank you.