--- - name: Configure Microsoft defender hosts: all become: yes become_user: root tasks: - name: Copy the Configuration File to the host ansible.builtin.template: src: templates/mdatp_managed.json.j2 dest: /etc/opt/microsoft/mdatp/managed/mdatp_managed.json owner: root group: root mode: '0644' - name: create crontab entry for quick scan all 2 days ansible.builtin.cron: name: 'Scan with defender' job: '"/bin/mdatp scan quick" > /tmp/defender_scan_quick.log 2> /dev/null' minute: '30' hour: '2' weekday: '2,4' user: root state: present - name: create crontab entry for full scan on weekend ansible.builtin.cron: name: 'Scan with defender' job: '"/bin/mdatp scan full" > /tmp/defender_scan_full.log 2> /dev/null' minute: '30' hour: '6' weekday: '6' user: root state: present - name: check if Directory exist and create if needed ansible.builtin.file: path: /root/bin owner: root group: root state: directory - name: Copy Clean Log Script ansible.builtin.template: src: templates/delete_defender_log_older_then.sh dest: /root/bin/delete_defender_log_older_then.sh owner: root group: root mode: '0744' - name: create crontab entry for logfile handling ansible.builtin.cron: name: 'Clean old defender logfiles older than 3 month' job: '"/root/bin/delete_defender_log_older_then.sh" > /tmp/defender_crontab_clean_logs.log 2> /dev/null' minute: '30' hour: '4' weekday: '1,3,5' user: root state: present