You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Copy file name to clipboardExpand all lines: defender-endpoint/web-threat-protection.md
+4-22Lines changed: 4 additions & 22 deletions
Display the source diff
Display the rich diff
Original file line number
Diff line number
Diff line change
@@ -34,7 +34,9 @@ Web threat protection is part of [Web protection](web-protection-overview.md) in
34
34
35
35
## Prerequisites
36
36
37
-
Web protection uses network protection to provide web browsing security on Microsoft Edge and non-Microsoft web browsers.
37
+
Web threat protection uses network protection to provide web browsing security in Edge (excepting Windows devices), non-Microsoft web browsers and nonbrowser processes. On Windows devices, web threat protection in Edge uses Microsoft Defender SmartScreen and network protection is not required to be enabled.
38
+
39
+
To turn on Microsoft Defender SmartScreen in Edge : [Configure Microsoft Defender SmartScreen](/edgeenterprise/microsoft-edge-browser-policies/SmartScreenEnabled.md).
38
40
39
41
To turn on network protection on your devices:
40
42
@@ -46,28 +48,8 @@ To turn on network protection on your devices:
46
48
47
49
## Configure web threat protection
48
50
49
-
The following procedure describes how to configure web threat protection using the Microsoft Intune admin center.
50
-
51
-
1. Go to the Microsoft Intune admin center ([https://intune.microsoft.com](https://intune.microsoft.com)), and sign in.
52
-
53
-
2. Choose **Endpoint security**\>**Attack surface reduction**, and then choose **+ Create policy**.
54
-
55
-
3. Select a platform, such as **Windows 10 and later**, select the **Web protection** profile, and then choose **Create**.
56
-
57
-
4. On the **Basics** tab, specify a name and description, and then choose **Next**.
58
-
59
-
5. On the **Configuration settings** tab, expand **Web Protection**, specify your settings, and then choose **Next**.
60
-
61
-
- Set **Enable network protection** to **Enabled** so web protection is turned on. Alternately, you can set network protection to **Audit mode** to see how it works in your environment. In audit mode, network protection doesn't prevent users from visiting sites or domains, but it does track detections as events.
62
-
- To protect users from potential phishing scams and malicious software, turn **Require SmartScreen for Microsoft Edge Legacy** to **Yes**.
63
-
- To prevent users from bypassing warnings about potentially malicious sites, set **Block malicious site access** to **Yes**.
64
-
- To prevent users from bypassing the warnings and downloading unverified files, set **Block unverified file download** to **Yes**.
65
-
66
-
6. On the **Scope tags** tab, if your organization is using scope tags, choose **+ Select scope tags**, and then choose **Next**. (If you aren't using scope tags, choose **Next**.) To learn more about scope tags, see [Use role-based access control (RBAC) and scope tags for distributed IT](/mem/intune/fundamentals/scope-tags).
67
-
68
-
7. On the **Assignments** tab, specify the users and devices to receive the web protection policy, and then choose **Next**.
51
+
The legacy **Web protection** policy in Intune has been deprecated and web threat protection will be enabled if the prerequisites are met.
69
52
70
-
8. On the **Review + create** tab, review your policy settings, and then choose **Create**.
0 commit comments