This flake allows you to run Microsoft Defender for Endpoint (also known as Microsoft Defender Advanced Threat Protection) on NixOS.
Please feel free to submit the package and module to nixpkgs if you are willing to maintain the package!
Warning
This is an unofficial repackaging of Microsoft's Defender for Endpoint package. Microsoft states in their deployment process guide that:
Repackaging the Defender for Endpoint installation package isn't a supported scenario. Doing so can negatively affect the integrity of the product and lead to adverse results, including but not limited to triggering tampering alerts and updates failing to apply.
It is your responsibility to check that Defender for Endpoint correctly runs on your machine. I am not responsible for any impact to the security of your device, nor is anyone else who maintains or contributes to this repository.
- Add this repo as a flake input in your flake.nix.
- Add the flake's module to your target system's modules.
- In your system configuration, set
services.mdatp.enabletotrue.
Here's an example flake:
{
description = "My system flake";
inputs = {
# ...
mdatp.url = "github:epetousis/nix-mdatp";
};
outputs = {
self,
# ...
mdatp
}:
{
nixosConfigurations."my-device" = nixpkgs.lib.nixosSystem {
system = "x86_64-linux";
modules = [
# ...
mdatp.nixosModules.mdatp
{
services.mdatp.enable = true;
}
];
};
};