Means to get more regular Windows defender update definitions for disconnected azure stack.
Disconnected azure stack, can only obtain windows defender definition updates once a month. This pose a high security concern that disconnected azure stack are not able to mitigate new vulnerabilities promptly. We need a channel or means to update defender definitions for disconnected azure sack.
Anthony Clack commented
This is now our most significant security issue with Azure Stack and is seen as a real concern moving forward.
We take a very conservative approach to updates due to numerous issues in the update process to date and so we stay close to the N-2 limit and this unfortunately exacerbates our exposure. In our disconnected environment we already have to provide an offline defender repsitory in order to update the normal Windows estate so we have the required software available, we just need a way to point stack at it!