{"id":25074888,"url":"https://github.com/farisc0de/ansible-role-mdatp","last_synced_at":"2025-10-17T15:25:14.542Z","repository":{"id":272178642,"uuid":"915566681","full_name":"farisc0de/ansible-role-mdatp","owner":"farisc0de","description":"Ansible Role to Install and Update MDATP.","archived":false,"fork":false,"pushed_at":"2025-01-18T01:03:48.000Z","size":18,"stargazers_count":0,"open_issues_count":0,"forks_count":0,"subscribers_count":1,"default_branch":"main","last_synced_at":"2025-03-25T08:47:25.450Z","etag":null,"topics":[],"latest_commit_sha":null,"homepage":null,"language":"Jinja","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"mit","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/farisc0de.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":null,"funding":null,"license":"LICENSE","code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null,"governance":null,"roadmap":null,"authors":null,"dei":null,"publiccode":null,"codemeta":null}},"created_at":"2025-01-12T07:38:41.000Z","updated_at":"2025-01-18T01:03:49.000Z","dependencies_parsed_at":"2025-02-07T00:29:41.054Z","dependency_job_id":null,"html_url":"https://github.com/farisc0de/ansible-role-mdatp","commit_stats":null,"previous_names":["farisc0de/ansible-role-mdatp"],"tags_count":0,"template":false,"template_full_name":null,"repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/farisc0de%2Fansible-role-mdatp","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/farisc0de%2Fansible-role-mdatp/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/farisc0de%2Fansible-role-mdatp/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/farisc0de%2Fansible-role-mdatp/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/farisc0de","download_url":"https://codeload.github.com/farisc0de/ansible-role-mdatp/tar.gz/refs/heads/main","host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":246531983,"owners_count":20792735,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2022-07-04T15:15:14.044Z","host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":[],"created_at":"2025-02-07T00:19:33.123Z","updated_at":"2025-10-17T15:25:09.486Z","avatar_url":"https://github.com/farisc0de.png","language":"Jinja","funding_links":[],"categories":[],"sub_categories":[],"readme":"# Ansible Role: Microsoft Defender for Endpoint (MDATP)\n\nThis Ansible role installs and configures Microsoft Defender for Endpoint (MDATP) on Linux systems.\n\n## Requirements\n\n- Supported Linux distributions:\n  - Red Hat Enterprise Linux (RHEL) 7.2 or higher\n  - CentOS Linux 7.2 or higher\n  - Ubuntu 16.04 LTS or higher\n  - Debian 9 or higher\n- Ansible 2.9 or higher\n- Internet connectivity for package installation\n- Valid Microsoft Defender for Endpoint license\n- Onboarding package from Microsoft Defender Security Center\n\n## Role Variables\n\nAll variables are defined in `defaults/main.yml` and can be overridden in your playbook. Here are the main variable groups:\n\n### Installation Settings\n```yaml\nmdatp_package:\n  name: \"mdatp\"\n  state: \"present\"  # Options: present, latest, absent\n  version: \"\"  # Leave empty for latest version\n```\n\n### Directory Configuration\n```yaml\nmdatp_paths:\n  install_dir: /etc/opt/microsoft/mdatp\n  config_dir: /etc/opt/microsoft/mdatp/conf\n```\n\n### Repository Configuration\n```yaml\n# General repository settings\nmdatp_repository:\n  enabled: true\n  state: \"present\"\n  key_url: \"https://packages.microsoft.com/keys/microsoft.asc\"\n\n# Debian family repository templates\ndebian_family:\n  repository:\n    ubuntu:\n      template: \u003e-\n        deb [arch=amd64,arm64]\n        https://packages.microsoft.com/ubuntu/{{ ansible_distribution_version }}/prod\n        {{ ansible_distribution_release }} main\n    debian:\n      template: \u003e-\n        deb [arch=amd64,arm64]\n        https://packages.microsoft.com/debian/{{ ansible_distribution_major_version }}/prod\n        {{ ansible_distribution_release }} main\n\n# RedHat family repository template\nredhat_family:\n  repository:\n    template:\n      name: \"microsoft-prod\"\n```\n\n### Update Settings\n```yaml\nmdatp_updates:\n  enabled: true\n  frequency: \"daily\"  # Options: daily, weekly\n  automatic: true\n```\n\n### Security Settings\n```yaml\nmdatp_security:\n  real_time_protection: true\n  cloud_enabled: true\n  sample_sharing: true\n```\n\n### Proxy Settings (Optional)\n```yaml\nmdatp_proxy:\n  enabled: false\n  server: \"\"\n  port: \"\"\n  user: \"\"\n  password: \"\"\n```\n\n### Onboarding Configuration\n```yaml\nmdatp_onboarding:\n  enabled: false  # Set to true when you want to onboard\n  package_url: \"\"  # URL to your organization's onboarding package\n  validate_cert: true  # Whether to validate SSL certificate when downloading\n```\n\n## Dependencies\n\nNone.\n\n## Example Playbook\n\nHere's a basic example:\n\n```yaml\n- hosts: servers\n  vars:\n    mdatp_package:\n      state: present\n    mdatp_security:\n      real_time_protection: true\n      cloud_enabled: true\n    mdatp_updates:\n      enabled: true\n      automatic: true\n  roles:\n    - ansible-role-mdatp\n```\n\nExample with proxy and onboarding:\n\n```yaml\n- hosts: servers\n  vars:\n    mdatp_package:\n      state: present\n    mdatp_proxy:\n      enabled: true\n      server: \"proxy.example.com\"\n      port: 8080\n      user: \"proxyuser\"\n      password: \"proxypass\"\n    mdatp_onboarding:\n      enabled: true\n      package_url: \"https://your-tenant.com/onboarding-package.zip\"\n  roles:\n    - ansible-role-mdatp\n```\n\n## Tags\n\nThe role uses tags for selective execution:\n\n- `installation`: Tasks related to package installation\n- `configuration`: Tasks related to MDATP configuration\n- `onboarding`: Tasks related to MDATP onboarding\n- `security`: Tasks related to security settings\n- `updates`: Tasks related to update settings\n- `proxy`: Tasks related to proxy configuration\n\nExample of using tags:\n```bash\nansible-playbook playbook.yml --tags \"installation,configuration\"\n```\n\n## License\n\nMIT\n\n## Author Information\n\nThis role was created by Faris Alotaibi.\n\n## Support\n\nFor issues with Microsoft Defender for Endpoint itself, please contact Microsoft Support.\nFor issues with this Ansible role, please open an issue on GitHub.\n","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Ffarisc0de%2Fansible-role-mdatp","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Ffarisc0de%2Fansible-role-mdatp","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Ffarisc0de%2Fansible-role-mdatp/lists"}