You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Copy file name to clipboardExpand all lines: defender-endpoint/schedule-antivirus-scans-intune.md
+11-10Lines changed: 11 additions & 10 deletions
Display the source diff
Display the rich diff
Original file line number
Diff line number
Diff line change
@@ -41,17 +41,19 @@ This article describes how to configure scheduled scans using Microsoft Intune.
41
41
42
42
2. On the **Basics** page, specify a name and description for the policy, and then choose **Next**.
43
43
44
-
3. On the **Configuration settings** page, expand each group of settings, and configure the settings you want to manage with this profile. For more information about these settings, see [Policy CSP - Defender](/windows/client-management/mdm/policy-csp-defender).
44
+
3. On the **Configuration settings** page, expand each group of settings, and configure the settings you want to manage with this policy. For more information about these settings, see [Policy CSP - Defender](/windows/client-management/mdm/policy-csp-defender).
45
45
46
-
4.When your done configuring settings, select **Next**.
46
+
When you're done configuring settings, select **Next**.
47
47
48
-
5. In the Scope tags page, choose Select scope tags to open the Select tags pane to assign scope tags to the profile.
48
+
4. On the **Scope tags** page, you can either use the default setting, or search for scope tags to assign to the policy. For more information, see [Use role-based access control (RBAC) and scope tags for distributed IT](/intune/intune-service/fundamentals/scope-tags).
49
49
50
-
6. Select Next to continue.
50
+
When you're done specifying scope tags, select **Next**.
51
51
52
-
7. In Assignments, select the users or groups that will receive your profile. For more information on assigning profiles, see Assign user and device profiles. Then select Next.
52
+
5. On the **Assignments** page, select the users or groups to receive this policy. For more information, see [Assign policies in Microsoft Intune](/intune/intune-service/configuration/device-profile-assign).
53
53
54
-
8. In Review + create, review your settings. When you select Create, your changes are saved, and the profile is assigned. The policy is also shown in the profiles list.
54
+
When you're done Then select **Next**.
55
+
56
+
6. On the **Review + create**, review your settings. When you select **Save**, your changes are saved, and the policy is created and applied.
55
57
56
58
For more information: [Antivirus policy for endpoint security in Intune ](/intune/intune-service/protect/endpoint-security-antivirus-policy)
57
59
@@ -61,10 +63,9 @@ For more information: [Antivirus policy for endpoint security in Intune ](/intun
61
63
| -------- | -------- |
62
64
|Schedule Quick Scan Time|720|
63
65
64
-
65
66
> [!NOTE]
66
67
> In this example, a quick scan runs daily on the Windows clients at 12:00 PM. (720). In this example, we use lunch time, since many devices nowadays are turned off after-hours (e.g laptops).
67
-
>
68
+
68
69
## Use Intune for scheduling Weekly Scan (Quick or Full)
69
70
70
71
| Description|Setting|
@@ -74,7 +75,7 @@ For more information: [Antivirus policy for endpoint security in Intune ](/intun
74
75
|Schedule Scan Time|Windows Clients: 1020 <br>|
75
76
76
77
> [!NOTE]
77
-
> In this example, a quick scan runs for Windows clients on Wednesday's at 5:00 PM. (1020).
78
+
> In this example, a quick scan runs for Windows clients on Wednesdays at 5:00 PM. (1020).
78
79
79
80
> [!TIP]
80
81
> Our recommendation for scheduled scans is to configure quick scan together with always-on real-time protection and [cloud protection](/defender-endpoint/cloud-protection-microsoft-defender-antivirus), as this combination provides strong coverage against malware that starts with the system and kernel-level malware. This configuration is the default configuration. In general, there's no need to schedule a full scan, and most users never need to manually run full scans (see [Comparing quick scan, full scan, and custom scan](/defender-endpoint/schedule-antivirus-scans)).
@@ -85,7 +86,7 @@ For more information: [Antivirus policy for endpoint security in Intune ](/intun
85
86
| -------- | -------- |
86
87
|Check For Signatures Before Running Scan |Disabled (Default)|
87
88
|Randomize Schedule Task Times|Not configured|
88
-
|Scheduler Randomization Time|Scheduled tasks won't be randomized|
0 commit comments