Would whole heartedly appreciate this feature. Finding problematic behavior in users and helping them correct that is as important as remediating the file itself.

We didn't notice defender was quarantining 100s of files because we assumed as we didnt have alerts all was good... This is a must have for me!

Most Definitely need this. Just would like to know when something is being blocked/Hit.

+1 - We have enabled and are pushing MDE for our clients, with the idea that Huntress will act as the management platform. Right now, we still have to field alert notifications from defender-noreply@microsoft.com

It feels like the hard work has already been too! Viewing the device that MDE generated an Informational alert for today all the data for the incident report is right there, just no PSA ticket!

I can't believe this was requested in 2021 and still isn't built in.

What is huntress actually doing with MDE if not reporting its alerts? I thought that was the whole goal of defender + huntress?

Just got bit by the lack of this. Need some way to at least report on past auto-healed incidents. Arguably we should have a toggle to enable actual tickets and not just historical info.

The official response is "to reduce noise we don't tell you". I'd counter by saying any malware encounter is one too many, even if handled/blocked. At minimum we should council the user and suggest SAT.

Agree!!

We're in the process of transitioning from Webroot with no EDR to Huntress EDR and Microsoft defender - I was under the impression that Huntress would fill in the gaps here and create a ticket through our PSA integration for an incident if there was one, however this does not appear to be the case. Please add it as an option - This is all but a dealbreaker to our plan to can webroot in lieu of using Microsoft defender with Huntress looking over it's shoulder.

This is definitely needed as we can spend a lot of time troubleshooting an issue never to realize defender blocked something and we never knew. This just happened to us today.

Just had an incident where this happened. Upvoting.