You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Copy file name to clipboardExpand all lines: defender-endpoint/network-protection.md
+22-4Lines changed: 22 additions & 4 deletions
Display the source diff
Display the rich diff
Original file line number
Diff line number
Diff line change
@@ -23,8 +23,7 @@ search.appverid: met150
23
23
24
24
**Applies to:**
25
25
26
-
-[Microsoft Defender for Endpoint Plan 1](microsoft-defender-endpoint.md)
27
-
-[Microsoft Defender for Endpoint Plan 2](microsoft-defender-endpoint.md)
26
+
-[Microsoft Defender for Endpoint Plan 1 and 2](microsoft-defender-endpoint.md)
28
27
-[Microsoft Defender XDR](/defender-xdr)
29
28
- Microsoft Defender Antivirus
30
29
@@ -34,7 +33,7 @@ search.appverid: met150
34
33
- macOS
35
34
- Linux
36
35
37
-
Want to experience Microsoft Defender for Endpoint? [Sign up for a free trial](https://signup.microsoft.com/create-account/signup?products=7f379fee-c4f9-4278-b0a1-e4c8c2fcdf7e&ru=https://aka.ms/MDEp2OpenTrial?ocid=docs-wdatp-exposedapis-abovefoldlink).
36
+
Want to experience Microsoft Defender for Endpoint? [Sign up for a free trial](https://go.microsoft.com/fwlink/p/?linkid=2225630&clcid=0x409&culture=en-us&country=us).
38
37
39
38
## Overview of network protection
40
39
@@ -158,6 +157,26 @@ A user visits a website. If the url has an unknown or uncertain reputation, a to
158
157
> [!NOTE]
159
158
> The images shown in this article for both the `warn` experience and `block` experience use "blocked url" as example placeholder text. In a functioning environment, the actual url or domain is listed.
160
159
160
+
#### Use CSP to enable `Convert warn verdict to block`
#### Use Group Policy to enable Convert warn verdict to block
165
+
166
+
By enabling this setting, network protection blocks network traffic instead of displaying a warning.
167
+
168
+
1. On your Group Policy management computer, open the [Group Policy Management Console](/previous-versions/windows/it-pro/windows-server-2008-R2-and-2008/cc731212(v=ws.11)).
169
+
170
+
2. Right-click the Group Policy Object you want to configure, and then select **Edit**.
171
+
172
+
3. In the **Group Policy Management Editor** go to **Computer configuration** and then select **Administrative templates**.
173
+
174
+
4. Expand the tree to **Windows components** > **Microsoft Defender Antivirus** > **Network inspection system**.
175
+
176
+
5. Double-click **Convert warn verdict to block** and set the option to **Enabled**.
177
+
178
+
6. Select **OK**.
179
+
161
180
#### Block experience
162
181
163
182
A user visits a website. If the url has a bad reputation, a toast notification presents the user with the following options:
@@ -449,7 +468,6 @@ You can disable QUIC at the web browser level. However, this method of disabling
449
468
| Microsoft Edge |`edge://flags/#enable-quic`|
450
469
| Google Chrome |`chrome://flags/#enable-quic`|
451
470
452
-
453
471
## Optimizing network protection performance
454
472
455
473
Network protection includes performance optimization that allows `block` mode to asynchronously inspect long-lived connections, which might provide a performance improvement. This optimization can also help with app compatibility problems. This capability is on by default.
0 commit comments