Help on AntiMalware Policy

Question

I am trying to set antimalware policy to allow real-time protection in windows defender to turn off and on by the user automatically .

I created a new antimalware policy from SCCM and applied on a server with “Allow users on client computers to configure real-time protection settings” set to “Yes.  But the real-time protection setting never becomes available to be switched. I can see the policy is  applied but it remains on and cannot be switched off.

Any help is really appreciated..

Thank you

in progress 0
hemachandra chowdary 2021-10-09T10:35:11+05:30 1 Answer 17 views Beginner
0

Answer ( 1 )

  2. Deepak Rai
    1
    2021-10-09T14:25:19+05:30
    Reply

    Good Question really. So the new policy you created. What’s the priority level of that? Why because policies are applied based on that.

    I wrote one piece on this few months ago which should help you understand better.

    https://www.anoopcnair.com/fix-sccm-scep-related-issues-client-side-configmgr-defender/

    I asked something similar in the same forum and was suggested by Anoop Sir to write all about it so it can be helpful for others.

    These lines i have already included in that blog but mentioning once again here.

    There is not much information available on google too apart from the generic MS article docs.microsoft.com/en-us/mem/configmgr/protect/deploy-use/troubleshoot-endpoint-client and the one from Henrik Hoe blog.ctglobalservices.com/configuration-manager-sccm/heh/configuration-items-and-baselines-example-scep-client-compliance/

Leave an answer

Sorry, you do not have permission to answer to this question .