This solution analyzes the output from the MDE Client Analyzer for common issue or things we might typically want to know for troubleshooting purposes.
The initial coverage goals:
- Basic health check failures
- Basic configuration recommendations
- Tamper Protection status/source including TPExclusions
- Summary of all scans (such as start time, detections, duration, etc.
- Advanced Auditing policies report
- MPLog estimated impact report
- MDE settings management report
- Update reporting
Future coverage goals:
- Parsing event logs for relevant warnings/errors
- Advanced health checks
- Advanced configuration recommendations (based on workloads such as AD or file server if available)