Edit

Share via

User Experiences in Microsoft Defender for Endpoint on iOS

As part of our ongoing commitment to deliver exceptional user experiences, we're excited to announce a series of upcoming changes to the user interface and overall experience of our Microsoft Defender for Endpoint mobile app.

The new enhancements are designed to improve usability, streamline navigation, and ensure our app meets the evolving needs of our users.

Key changes - November 2025

In this release, we've made it easier for users to share feedback, including logs, to the Microsoft Defender team. The changes include:

Bottom pane experience

When users select Help and Feedback in the left navigation pane (Screen 1, accessible by tapping the profile picture), a new bottom feedback pane opens (Screen 2). This pane has been updated to improve readability and make it easier for users to share feedback.

The Send feedback option in the updated bottom pane enables users to share positive or negative feedback, along with Microsoft Defender and authenticator logs, which will be accessible to the Microsoft Defender team. When a user selects Send feedback, they're redirected to a new screen (Screen 3) where they can include logs along with their feedback submission.

Screenshots showing how to send feedback and logs from the Microsoft Defender mobile app options menu.

One-click Send Logs experience

A new Send logs to Microsoft option has been added directly to the left navigation pane (Screen 1). This enables users to quickly send logs to Microsoft. It redirects them to the logs submission page (Screen 2). This option is particularly useful when a support case has been created and a support engineer is assigned, providing a convenient way for users to submit logs. Because this option doesn't allow users to include written feedback, the Defender team won't have access to the logs unless the incident ID is explicitly shared via mail or support request. This option only collects logs from the Defender app - it won't include logs from the Authenticator app.

Screenshots showing how to send logs directly to Microsoft from the Microsoft Defender mobile app options menu.

Key changes - Previous

We're pleased to introduce the Device Protection feature card for our enterprise users that includes Web Protection, Device Health and Jail break feature that has been designed to be more user-friendly and accessible. The updated feature cards now include recommendation cards. The first recommendation card will prominently display any active alerts, ensuring you stay informed. Additionally, a list of features will now be presented in the form of tiles as a part of L2 screens enhancing ease of use and navigation.

The main changes involved are:

Main Dashboard changes

The main Dashboard screen that appears for enterprise users as per our latest rollout of enhancements to the application.

Screenshot that shows the Microsoft Defender for Endpoint Mobile Dashboard on iOS devices before the new update.

List the features inside one feature card

One feature card called Device Protection lists Web Protection, Device Health, and Jail Break. Previously, the dashboard had one card for each set of capabilities. In the new experience, only the Device Protection card changes.

Screenshot that shows the Microsoft Defender for Endpoint Feature Card.

Detailed feature experience

We updated all the subordinating screens associated with the Device Protection feature

  1. Web Protection

    Screenshot that shows the web protection feature on the Defender for Endpoint on iOS app.

  2. Device Health

    Screenshot that shows the new device health feature on the Defender for Endpoint on iOS app.

Recommendation cards for alerts

The structure of the dashboard is updated to include a recommendation card that contains active alerts (if any). In case there are multiple alerts, resolving the top alert brings forward the next one. Recommendation cards are implemented to provide a more cohesive user experience. These cards are designed to display important alerts and notifications prominently on the dashboard. Here are a few examples:

  1. Web Protection

    Screenshot that shows the web protection recommendation card feature on the Defender for Endpoint on iOS app.

  2. Device Health (iOS Update)

    Screenshot that shows the device health recommendation card feature on the MDE iOS app.

Onboarding screens

This section details these changes:

  • VPN Permission flow while Onboarding

  • VPN Permission flow after Onboarding

  • TVM EUPI Screen

VPN permission flow while onboarding

This is the main VPN Permission screen that appears to the enterprise's users as per our latest rollout of enhancements in the application.

Before

Screenshot that shows the Microsoft Defender for Endpoint mobile iOS setup before the new update.

Now

Screenshot that shows the Microsoft Defender for Endpoint mobile iOS setup after the new update.

VPN permission flow after onboarding

This screen is seen when the VPN configuration is deleted from user's device, and the VPN needs to be re-enabled.

Screenshot that shows the Microsoft Defender for Endpoint mobile iOS re-enable screen.

TVM EUPI screen

We've enhanced the TVM EUPI screen as made it align with our current code flow.

Before

Screenshot that shows the Microsoft Defender for Endpoint mobile iOS TVM EUPI screen before the new update.

Now

Screenshot that shows the Microsoft Defender for Endpoint mobile iOS TVM EUPI after the new update.

  • Last updated on