Specify a list of files opened by processes to ignore during a scan. Microsoft Defender Antivirus Exclusionsįor each setting in this group, you can expand the setting, select Add, and then specify a value for the exclusion.The following settings are available in the following profiles: Managed settings override preference settings that are configured by the local administrator. Yes - Only items defined by management are used in the resulting effective policy.No - Behavior is the same as Not configured.If there are conflicts, management settings from Intune policy override local preference settings. Not configured (default) - Unique items defined in preference settings that are configured by a local administrator merge into the resulting effective policy.This setting applies to lists such as threats and exclusions. This setting controls if exclusion list settings that are configured by a local administrator merge with managed settings from Intune policy. The following setting is only available in the Microsoft Defender Antivirus profile:ĬSP: Configuration/DisableLocalAdminMerge You can add up to 50 additional seconds to this timeout. Zero tolerance - Block all unknown executable files.ĭefender cloud extended timeout in secondsĭefender Antivirus automatically blocks suspicious files for 10 seconds while it scans them in the cloud to make sure they're safe.High plus - Aggressively block unknowns and apply additional protection measures that might affect client performance.High - Aggressively block unknowns while optimizing client performance, which includes a greater chance of false positives.Not configured ( default) - Default Defender blocking level.Device users can't change this setting.Ĭonfigure how aggressive Defender Antivirus is in blocking and scanning suspicious files. Yes - Cloud-delivered protection is turned on.Not configured ( default) - The setting is restored to the system default.Microsoft analyzes that information to learn more about problems affecting you and other customers, to offer improved solutions. These settings are available in the following profiles:īy default, Defender on Windows 10/11 desktop devices sends information to Microsoft about any problems it finds. View the Endpoint security antivirus policy settings you can configure for the Microsoft Defender Antivirus profile for Windows 10/11 in Microsoft Intune as part of an Endpoint security policy. Settings for Microsoft Defender Antivirus policy in Microsoft Intune for Windows devices
0 kommentar(er)
