A quick post to document an unofficial, hopefully temporary workaround for an "Interaction required" error when configuring the M365 Defender connector.
I got confirmation from MS support back in August, but forgot to update here.
There is no fix as such, but the following workarounds are officially the way to go:
#1 Delete the classic CA policy "[Windows Defender ATP] Device policy"
or
#2 Exclude an admin group from the classic CA policy.
Thanks for this, had the same issue. Am asking Microsoft support about it, so will advise if they say anything useful.
Did Microsoft Support provide a fix yet?
Facing a problem with Microsoft 365 Defender Data Connector in Sentinel?
I got confirmation from MS support back in August, but forgot to update here.
There is no fix as such, but the following workarounds are officially the way to go:
#1 Delete the classic CA policy "[Windows Defender ATP] Device policy"
or
#2 Exclude an admin group from the classic CA policy.
Thanks for this, had the same issue. Am asking Microsoft support about it, so will advise if they say anything useful.
Did Microsoft Support provide a fix yet?