Skip to main content
🦉
Message CenterMicrosoft 365 Updates
HomePermissionsTenant FinderPortfolio
🦉
M365 Message Centerby Cengiz YILMAZ

Track the latest updates, features, and announcements for Microsoft 365 services. Comprehensive archive of service updates and important changes.

Quick Links

HomePermissionsTenant FinderPortfolio

Connect

© 2026 M365 Message Center. Created with ❤ by Cengiz YILMAZ

Data sourced from Microsoft 365 Message Center • Not affiliated with Microsoft

  1. Home
  2. /
  3. MC1181656

Microsoft Secure Score: New recommendations for Microsoft Defender for Endpoint

Informational

Message ID

MC1181656
View in Admin Center

Services

Microsoft Defender XDR

Summary

New Microsoft Secure Score recommendations for Microsoft Defender for Endpoint will roll out in November 2025, focusing on LDAP security enhancements like client signing, traffic encryption, channel binding, and server signing to improve endpoint protection and prevent attacks. Admins should review and implement these changes.

Details

Introduction

We’re introducing new Microsoft Secure Score recommendations for Microsoft Defender for Endpoint (MDE) to help organizations strengthen their security posture. These recommendations are designed to proactively block common attack techniques and improve endpoint protection.

When this will happen:

Public Preview: Rollout begins in early November 2025 and is expected to complete by mid-November 2025.

How this affects your organization:

Who is affected: Admins managing Microsoft Defender for Endpoint and Microsoft Secure Score.

What’s changing:

Lightweight Directory Access Protocol (LDAP) is a protocol used to access and manage directory information, commonly for authentication and authorization in enterprise environments.

Customers in Public Preview will see the following new recommendations in Microsoft Secure Score:

  1. Require LDAP client signing to prevent tampering and protect directory authentication 
  2. Encrypt LDAP client traffic to protect sensitive data in transi 
  3. Enforce LDAP channel binding to protect authentication sessions from interception 
  4. Require LDAP server signing to ensure integrity of directory traffic

Secure Score will be updated based on the implementation of these recommendations.

What you can do to prepare:

  • Review the new recommendations in Microsoft Secure Score once available.
  • Complete the recommended actions to improve your organization’s security posture.
  • Communicate these changes to your security and endpoint management teams.
  • Learn more about Microsoft Secure Score: Microsoft Secure Score | Microsoft Defender XDR | Microsoft Defender | Microsoft Learn

Compliance considerations:

No compliance considerations identified, review as appropriate for your organization.

Timeline

Published
Oct 30, 2025
Message published to Message Center
Updated
Oct 30, 2025
Message content updated
End Date
Dec 19, 2025
Message timeline ends

Tags

#Feature update#Admin impact

Category

Stay Informed

Related Messages

Similar updates

MC1171845

Microsoft Defender for Office 365: Enhancing the quarantine experience for administrators

Oct 13, 2025
MC1184997

Microsoft Defender for O365: New email actions available in Advanced Hunting

Nov 12, 2025
MC1166867

Microsoft Defender for Office 365: Enhancing the quarantine email preview experience

Oct 6, 2025
MC1192254

Microsoft Defender for Endpoint: New Microsoft Secure Score recommendations

Dec 5, 2025
MC1187386

Microsoft Defender for Identity alerts transitioning to XDR-based detection platform

Nov 17, 2025