{"id":13835,"date":"2025-11-18T09:05:47","date_gmt":"2025-11-18T00:05:47","guid":{"rendered":"https:\/\/m365jp.net\/?p=13835"},"modified":"2025-11-18T09:06:40","modified_gmt":"2025-11-18T00:06:40","slug":"mc1187390-unified-sensor-v3-x-new-remote-procedure-call-rpc-configuration-health-alert-for-microsoft-defender-for-identity","status":"publish","type":"post","link":"https:\/\/m365jp.net\/index.php\/2025-11-18-mc1187390-unified-sensor-v3-x-new-remote-procedure-call-rpc-configuration-health-alert-for-microsoft-defender-for-identity","title":{"rendered":"MC1187390 | Unified sensor (v3.x) \u2013 new Remote Procedure Call (RPC) configuration health alert for Microsoft Defender for Identity"},"content":{"rendered":"
\n
\n
\n\n\n\n
MC1187390 | Unified sensor (v3.x) \u2013 new Remote Procedure Call (RPC) configuration health alert for Microsoft Defender for Identity<\/th>\n<\/tr>\n<\/tbody>\n<\/table>\n
\n\n\n\n\n\n\n\n\n
Classification<\/th>\nstayInformed<\/td>\n<\/tr>\n
Last Updated<\/th>\n11\/17\/2025 23:49:38<\/td>\n<\/tr>\n
Start Time<\/th>\n11\/17\/2025 23:49:31<\/td>\n<\/tr>\n
End Time<\/th>\n01\/14\/2026 08:00:00<\/td>\n<\/tr>\n
Message Content<\/th>\n\n

[Introduction]<\/b><\/p>\n

We\u2019re introducing a new Remote Procedure Call (RPC) Configuration Health Alert for sensors v3.x<\/b> in Microsoft Defender for Identity. This capability proactively monitors RPC configuration across your environment, helping administrators quickly identify and remediate misconfigurations that could impact detection accuracy or security posture. Additionally, applying the Unified Sensor RPC Audit tag enables advanced identity detections, improving security visibility and unlocking additional detection capabilities. <\/p>\n

[When this will happen:]<\/b><\/p>\n

General availability (Production, GCC, GCCH):<\/b> We will begin rolling out early December 2025 and expect to complete by mid-December 2025. <\/p>\n

[How this affects your organization:]<\/b><\/p>\n

<\/p>\n

    <\/p>\n
  • Who is affected:<\/b> Admins managing Microsoft Defender for Identity v3.x sensors.<\/li>\n

    <\/p>\n

  • What will happen:<\/b>
    \n
      <\/p>\n
    • A new health alert will monitor RPC configuration status on v3.x sensors.<\/li>\n

      <\/p>\n

    • Applying the Unified Sensor RPC Audit tag <\/b>will enforce configuration on existing and future v3.x sensors that match rule criteria.<\/li>\n

      <\/p>\n

    • The tag will be visible in Device Inventory <\/b>and Advanced Hunting<\/b>, providing transparency and auditing capabilities.<\/li>\n

      <\/p>\n

    • This feature improves detection accuracy and overall security coverage.<\/li>\n

      <\/ul>\n

      <\/li>\n

      <\/ul>\n

      <\/p>\n

      [What you can do to prepare:]<\/b><\/p>\n

      To apply the RPC Audit tag<\/b> on your v3.x sensors: <\/p>\n

        <\/p>\n
      1. In the Microsoft Defender portal, navigate to: System <\/b>> Settings <\/b> > Microsoft Defender XDR<\/b> > Asset Rule Management<\/b>.<\/li>\n

        <\/p>\n

      2. Select Create a new rule<\/b>.<\/li>\n

        <\/p>\n

      3. Enter a Rule name<\/b> and Description<\/b>, then set conditions using Device name<\/b>, Domain<\/b>, or Device tag<\/b>. Ensure the Defender for Identity v3.x sensor is deployed on targeted devices.<\/li>\n

        <\/p>\n

      4. Add the tag Unified Sensor RPC Audit<\/b>.<\/li>\n

        <\/p>\n

      5. Review and submit the rule.<\/li>\n

        <\/ol>\n

        For more details, refer to Microsoft Defender for Identity documentation<\/a>. <\/p>\n

        [Compliance considerations:]<\/b><\/p>\n

        No compliance considerations identified; review as appropriate for your organization. <\/p>\n<\/td>\n<\/tr>\n

Machine Translation<\/th>\n\n

[\u306f\u3058\u3081\u306b]<\/b><\/p>\n

Microsoft Defender for Identity\u3067\u3001 \u30bb\u30f3\u30b5\u30fcv3.x\u5411\u3051\u306e\u65b0\u3057\u3044\u30ea\u30e2\u30fc\u30c8\u30d7\u30ed\u30b7\u30fc\u30b8\u30e3\u30ea\u30f3\u30b0\u30b3\u30fc\u30eb(RPC)\u69cb\u6210\u5065\u5eb7\u8b66\u5831<\/b> \u3092\u5c0e\u5165\u3057\u307e\u3059\u3002\u3053\u306e\u6a5f\u80fd\u306f\u74b0\u5883\u5168\u4f53\u3067RPC\u69cb\u6210\u3092\u7a4d\u6975\u7684\u306b\u76e3\u8996\u3057\u3001\u7ba1\u7406\u8005\u304c\u691c\u51fa\u7cbe\u5ea6\u3084\u30bb\u30ad\u30e5\u30ea\u30c6\u30a3\u4f53\u5236\u306b\u5f71\u97ff\u3092\u4e0e\u3048\u308b\u53ef\u80fd\u6027\u306e\u3042\u308b\u8aa4\u8a2d\u5b9a\u3092\u8fc5\u901f\u306b\u7279\u5b9a\u30fb\u4fee\u6b63\u3059\u308b\u306e\u306b\u5f79\u7acb\u3061\u307e\u3059\u3002\u3055\u3089\u306b\u3001Unified Sensor RPC Audit\u30bf\u30b0\u306e\u9069\u7528\u306b\u3088\u308a\u9ad8\u5ea6\u306a\u30a2\u30a4\u30c7\u30f3\u30c6\u30a3\u30c6\u30a3\u691c\u51fa\u304c\u53ef\u80fd\u3068\u306a\u308a\u3001\u30bb\u30ad\u30e5\u30ea\u30c6\u30a3\u306e\u53ef\u8996\u6027\u304c\u5411\u4e0a\u3057\u3001\u8ffd\u52a0\u306e\u691c\u51fa\u6a5f\u80fd\u304c\u89e3\u653e\u3055\u308c\u307e\u3059\u3002 <\/p>\n

[\u3044\u3064\u8d77\u3053\u308b\u304b:]<\/b><\/p>\n

\u4e00\u822c\u5411\u3051\u63d0\u4f9b(\u751f\u7523\u3001GCC\u3001GCCH):<\/b> 2025\u5e7412\u6708\u521d\u65ec\u304b\u3089\u5c55\u958b\u3092\u958b\u59cb\u3057\u30012025\u5e7412\u6708\u4e2d\u65ec\u307e\u3067\u306b\u5b8c\u4e86\u3059\u308b\u4e88\u5b9a\u3067\u3059\u3002 <\/p>\n

[\u3053\u308c\u304c\u3042\u306a\u305f\u306e\u7d44\u7e54\u306b\u3069\u306e\u3088\u3046\u306a\u5f71\u97ff\u3092\u4e0e\u3048\u308b\u304b:]<\/b><\/p>\n

<\/p>\n