Merge pull request #828 from MicrosoftDocs/quickfix

Stacyrch140 · web-flow · commit f4829dcad8e7 · 2024-06-26T17:08:04.000-04:00
Update evaluate-controlled-folder-access.md
diff --git a/defender-endpoint/evaluate-controlled-folder-access.md b/defender-endpoint/evaluate-controlled-folder-access.md
@@ -15,7 +15,7 @@ ms.collection:
 - tier2
 - mde-asr
 search.appverid: met150
-ms.date: 06/18/2024
+ms.date: 06/26/2024
 ---
 
 # Evaluate controlled folder access
@@ -50,12 +50,12 @@ To enable audit mode, use the following PowerShell cmdlet:
 Set-MpPreference -EnableControlledFolderAccess AuditMode
 ```
 
-> [!TIP]
-> If you want to fully audit how controlled folder access will work in your organization, use a management tool to deploy this setting to devices in your networks. You can also use Group Policy, Intune, mobile device management (MDM), or Microsoft Configuration Manager to configure and deploy the setting, as described in the main [controlled folder access topic](controlled-folders.md).
-
 > [!NOTE]
-> - If your workflow involves usage of shared network folders, enabling controlled folder access can result in significant performance reduction, particularly because of many queries to the file share server.
-> - Some types of endpoint security or asset management software inject code into every process that starts on the system. These may result in controlled folder access no longer trusting known applications like Office programs. You can see the reason for controlled folder access detections by using the MDEClientAnalyzer tool's `-cfa` argument (see [Run the client analyzer on Windows](run-analyzer-windows.md)). If you're affected, consider adding an [antivirus exclusion](configure-exclusions-microsoft-defender-antivirus.md) for the injecting process, or consult your management software vendor about signing all their binaries.
+> - To see how controlled folder access would work in your organization, use a management tool to deploy it to devices in your network. You can also use Group Policy, Intune, mobile device management (MDM), or Microsoft Configuration Manager to configure and deploy the setting, as described in [Protect important folders with controlled folder access](controlled-folders.md).
+>
+> - If your workflow involves usage of shared network folders, enabling controlled folder access can result in significant network performance reduction, if the shared network folders are accessed by an untrusted process, particularly because of many queries to the file share server. Make sure your file servers are optimized for increased network traffic, especially if you're using shared network folders for offline files.
+>
+> - Some types of endpoint security or asset management software inject code into every process that starts on the system. These may result in controlled folder access no longer trusting known applications like Office programs. You can see the reason for controlled folder access detections by using the [MDEClientAnalyzer](run-analyzer-windows.md) tool's `-cfa` argument. If you're affected, consider adding an [antivirus exclusion](configure-exclusions-microsoft-defender-antivirus.md) for the injecting process, or consult your management software vendor about signing all their binaries.
 
 ## Review controlled folder access events in Windows Event Viewer
 
