File tree Expand file tree Collapse file tree 1 file changed +16
-1
lines changed Expand file tree Collapse file tree 1 file changed +16
-1
lines changed Original file line number Diff line number Diff line change @@ -660,6 +660,20 @@ Determines whether module load events (file open events on shared libraries) are
660660| ** Possible values** | disabled (default) <p > enabled| * n/a* |
661661| ** Comments** | Available in Defender for Endpoint version ` 101.68.80 ` or later.||
662662
663+ #### Remediate Infected File feature
664+
665+ Determines whether infected processes that open or load any infected file will get remediated or not.
666+
667+ > [ !NOTE]
668+ > When enabled the processes that open or load any infected file will get remediated but these processes will not appear in the threat list.
669+
670+ | Description| JSON Value| Defender Portal Value|
671+ | ---| ---| ---|
672+ | ** Key** | remediateInfectedFile| * Not available* |
673+ | ** Data type** | String| * n/a* |
674+ | ** Possible values** | disabled (default) <p > enabled| * n/a* |
675+ | ** Comments** | Available in Defender for Endpoint version ` 101.24122.0001 ` or later.||
676+
663677#### Supplementary sensor configurations
664678
665679The following settings can be used to configure certain advanced supplementary sensor features.
@@ -961,7 +975,8 @@ The following configuration profile contains entries for all settings described
961975 "sendLowfiEvents" :" disabled"
962976 },
963977 "ebpfSupplementaryEventProvider" :" enabled"
964- "offlineDefinitionUpdateVerifySig" : " disabled"
978+ "offlineDefinitionUpdateVerifySig" : " disabled"
979+ "remediateInfectedFile" : " enabled"
965980 },
966981 "networkProtection" :{
967982 "enforcementLevel" :" disabled"
You can’t perform that action at this time.
0 commit comments