deepblue/windows-itpro-docs
1
0
Fork 0
mirror of https://github.com/MicrosoftDocs/windows-itpro-docs.git synced 2025-05-14 06:17:22 +00:00
Code Issues Actions 2 Packages Projects Releases Wiki Activity

corrected list of settings, updated note on E5

Browse Source
This commit is contained in:
martyav 2019-05-09 11:59:32 -04:00
parent 8de2be98e0
commit 34e77a0003
1 changed files with 15 additions and 17 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

32
windows/security/threat-protection/windows-defender-antivirus/prevent-changes-to-security-settings-with-tamper-protection.md
View File

@ -20,35 +20,33 @@ ms.author: v-anbic
- Windows 10 - Windows 10
Tamper protection helps prevent malicious apps from changing important security settings. These settings include: Tamper protection helps prevent malicious apps from changing important security settings. These settings include:
- Real-time protection - Real-time protection
- Cloud-delivered protection - Cloud-delivered protection
- IOfficeAntivirus (IOAV) - IOfficeAntivirus (IOAV)
- Behavior monitoring - Behavior monitoring
- Scheduled scans - Removing security intelligence updates
- Policy override settings
With tamper protection set to **On**, you can still change these settings in the Windows Security app. The following apps and methods can't change these settings: With tamper protection set to **On**, you can still change these settings in the Windows Security app. The following apps and methods can't change these settings:
- Mobile device management (MDM) apps like Intune - Mobile device management (MDM) apps like Intune
- Enterprise configuration management apps like System Center Configuration Manager (SCCM) - Enterprise configuration management apps like System Center Configuration Manager (SCCM)
- Command line instruction MpCmdRun.exe -removedefinitions -dynamicsignatures - Command line instruction MpCmdRun.exe -removedefinitions -dynamicsignatures
- Windows System Image Manager (Windows SIM) settings DisableAntiSpyware and DisableAntiMalware (used in Windows unattended setup) - Windows System Image Manager (Windows SIM) settings DisableAntiSpyware and DisableAntiMalware (used in Windows unattended setup)
- Group Policy - Group Policy
- Other Windows Management Instrumentation (WMI) apps - Other Windows Management Instrumentation (WMI) apps
The tamper protection setting doesn't affect how third party antivirus apps register with the Windows Security app. The tamper protection setting doesn't affect how third party antivirus apps register with the Windows Security app.
On computers running Windows 10 Enterprise E5, users can't change the tamper protection setting. On computers running Windows 10 Enterprise E5, users can't change the tamper protection setting.
Tamper protection is On by default. If you set tamper protection to **Off**, you will see a yellow warning in the Windows Security app under **Virus & threat protection**. Tamper protection is On by default. If you set tamper protection to **Off**, you will see a yellow warning in the Windows Security app under **Virus & threat protection**.
##Configure tamper protection ## Configure tamper protection
1. Open the Windows Security app by clicking the shield icon in the task bar or searching the start menu for **Defender**. 1. Open the Windows Security app by clicking the shield icon in the task bar or searching the start menu for **Defender**.
2. Select **Virus & threat protection**, then select **Virus & threat protection settings**. 2. Select **Virus & threat protection**, then select **Virus & threat protection settings**.
3. Set **Tamper Protection** to **On** or **Off**. 3. Set **Tamper Protection** to **On** or **Off**.
>[!NOTE] >[!NOTE]
>If your computer is running Windows 10 Enterprise E5, you can't change the tamper protection setting. >If your computer is running Windows 10 Enterprise E5, you can't change the tamper protection settings from within Windows Security App.