CrowdStrike Falcon

CrowdStrike Falcon is the University’s endpoint protection, replacing Windows Defender for Windows and Sophos for Mac. It also supports Linux distributions such as Debian, Ubuntu, and Red Hat. At this time, CrowdStrike Falcon is only licensed for University-owned devices and is not authorized for personally-owned devices.

More information can be found on Safe Computing.

Crowdstrike Installation

Windows, MacOS, Linux Installation

The ME department has volunteered to keep installation instructions up-to-date.

Click here to see the current documentation maintained for CoE by the ME Department.


Before you begin to install CrowdStrike, please be sure to use a “tag” that identifies your department. Tags are required to ensure proper notification of Crowdstrike detections. If your department has never picked a canonical tag, please decide on one and register it in this Google Doc.