Defender device policy 编辑
Windows Defender is malware protection included with Windows 10 and Windows 11. You can use the Endpoint Management device policy, Defender, to configure the Microsoft Defender policy for Windows 10 and Windows 11 desktop and tablet devices.
To add or configure this policy, go to Configure > Device Policies. For more information, see Device policies.
Windows Desktop and Tablet settings
- Allow scanning of archived files: Allows or blocks Defender to scan archived files. Defaults to Off.
- Allow cloud protection: Allows or blocks Defender to send information to Microsoft about malware activity. Defaults to On.
- Allow a full scan of removable drives: Allows or blocks Defender to scan removable drives such as USB sticks. Defaults to On.
- Allow real-time monitoring: Defaults to On.
- Allow scans of network files: Allows or blocks Defender to scan network files. Defaults to On.
- Allow access to the Windows Defender UI: Specifies whether users can access the Windows Defender user interface. This setting takes effect the next time the user device starts. If this setting is Off, users don’t receive any Windows Defender notifications. Defaults to On.
- Excluded extensions: The extensions to exclude from real-time or scheduled scans. To separate extensions, use the
|
character. For example,lib\|obj
. - Excluded paths: The paths to exclude from real-time or scheduled scans. To separate paths, use the
|
character. For example,C:\Example|C:\Example1
. - Excluded processes: The processes to exclude from real-time or scheduled scans. To separate processes, use the
|
character. For example,C:\Example.exe|C:\Example1.exe
. - Submit samples for further analysis: Controls whether to send to Microsoft files that might require further analysis to determine if they are malicious. Options: Always prompt, Send safe samples, Never send, Send all samples. Defaults to Send safe samples.
如果你对这篇内容有疑问,欢迎到本站社区发帖提问 参与讨论,获取更多帮助,或者扫码二维码加入 Web 技术交流群。
绑定邮箱获取回复消息
由于您还没有绑定你的真实邮箱,如果其他用户或者作者回复了您的评论,将不能在第一时间通知您!
发布评论