You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Copy file name to clipboardExpand all lines: defender-endpoint/deployment-vdi-microsoft-defender-antivirus.md
+18-18Lines changed: 18 additions & 18 deletions
Display the source diff
Display the rich diff
Original file line number
Diff line number
Diff line change
@@ -295,45 +295,45 @@ It's important to take advantage of the included threat protection capabilities
295
295
296
296
### Threats
297
297
298
-
Specify threat alert levels at which default action should not be taken when detected: Enabled. Set Severe (5), High (4), Medium (2) and Low (1), all to quarantine (2)
298
+
-Specify threat alert levels at which default action should not be taken when detected: `Enabled`
299
299
300
-
|Value name|Value |
301
-
| -------- | -------- |
302
-
|1 |2 |
303
-
|2|2|
304
-
|4|2|
305
-
|5|2|
300
+
- Set `Severe (5)`, `High (4)`, `Medium (2)`, and `Low (1)` all to `Quarantine (2)`, as shown in the following table:
306
301
307
-
### Attack surface reduction rules
308
-
309
-
Configure all available rules to Audit.
302
+
|Value name|Value |
303
+
| -------- | -------- |
304
+
|`1` (Low) |`2`|
305
+
|`2` (Medium) |`2`|
306
+
|`4` (High) |`2`|
307
+
|`5` (Severe) |`2`|
310
308
309
+
### Attack surface reduction rules
311
310
311
+
Configure all available rules to `Audit`.
312
312
313
313
### Enable network protection
314
314
315
-
Prevent users and apps from accessing dangerous websites (Enable network protection): Enabled - Audit mode
315
+
Prevent users and apps from accessing dangerous websites (Enable network protection): `Enabled - Audit mode`
316
316
317
317
### SmartScreen for Microsoft Edge
318
318
319
-
Require SmartScreen for Microsoft Edge: Yes
319
+
-Require SmartScreen for Microsoft Edge: `Yes`
320
320
321
-
Block malicious site access: Yes
321
+
-Block malicious site access: `Yes`
322
322
323
-
Block unverified file download: Yes
323
+
-Block unverified file download: `Yes`
324
324
325
325
## Run the "Windows Defender Cache Maintenance" scheduled task
326
326
327
327
Optimize the "Windows Defender Cache Maintenance" scheduled task for non-persistent and/or persistent VDI environments. Run this task on the main image before sealing.
328
328
329
329
1. Open up the **Task Scheduler** mmc (`taskschd.msc`).
330
330
331
-
1. Expand **Task Scheduler Library** > **Microsoft** > **Windows** > **Windows Defender**, and then right-click on **Windows Defender Cache Maintenance**.
331
+
2. Expand **Task Scheduler Library** > **Microsoft** > **Windows** > **Windows Defender**, and then right-click on **Windows Defender Cache Maintenance**.
332
332
333
-
1. Select **Run**, and let the scheduled task finish.
333
+
3. Select **Run**, and let the scheduled task finish.
334
334
335
-
1.> [!WARNING]
336
-
> If you do not do this, it can cause higher cpu utilization while the cache maintenance task is running on each of the VMs.
335
+
> [!WARNING]
336
+
> If you do not do this, it can cause higher cpu utilization while the cache maintenance task is running on each of the VMs.
0 commit comments