What and Why
Microsoft Defender for Endpoint (MDE) on iOS is retiring in-app OS update notifications and recommendations. To improve consistency and reduce duplicate guidance, OS update compliance and enforcement will rely on Microsoft Intune and existing MDM/MAM capabilities instead of Defender in-app experiences. This change simplifies management for administrators and provides a more unified and secure compliance experience across Microsoft security and device management services. Intune driven OS update requirements will remain unaffected by this change.
Rollout Schedule
- Worldwide, GCC, GCCH, DoD: Mid-July 2026 through late July 2026
Impact on Your Organization
Who is affected
- Organizations using Microsoft Defender for Endpoint on iOS
- Admins managing device compliance or OS update policies
Platforms/Services
- iOS
- Microsoft Defender for Endpoint
- Microsoft Intune
What will happen:
- The Defender app on iOS will no longer display OS update recommendations or notifications.
- OS update compliance and enforcement will rely on Microsoft Intune and existing MDM/MAM capabilities instead of Defender in-app experiences.
- Duplicate or conflicting OS update messaging between Defender and Intune will be removed.
- This change will be automatically applied during rollout.
- After retirement, there is no option to continue using this functionality in Defender.
Action Required / Recommendations
No immediate action is required for this change.
To prepare and ensure a smooth transition:
- Review your OS compliance and update enforcement policies in Microsoft Intune.
- Validate existing app configuration policies (for example, OS update notification suppression settings) to ensure they align with this change.
- Inform your helpdesk and end users that OS update notifications will no longer appear in the Defender app on iOS.
Compliance considerations
No compliance considerations identified. Review as appropriate for your organization.