deepblue/windows-itpro-docs
1
0
Fork 0
mirror of https://github.com/MicrosoftDocs/windows-itpro-docs.git synced 2025-06-21 13:23:36 +00:00
Code Issues Actions 3 Packages Projects Releases Wiki Activity

changes as per SME feedback

Browse Source
This commit is contained in:
Meghana Athavale
2022-07-13 18:25:51 +05:30
parent 326f558673
commit 6468698608
1 changed files with 5 additions and 5 deletions
Download Patch File Download Diff File Expand all files Collapse all files

10
windows/security/threat-protection/microsoft-defender-smartscreen/phishing-protection-microsoft-defender-smartscreen.md
View File

@ -62,10 +62,10 @@ If you manage your policies using Microsoft Intune, youll want to use these M
|Setting |Details | |Setting |Details |
|---------|---------| |---------|---------|
|ServiceEnabled |<li>**URI full path:**./Vendor/MSFT/Policy/Config/… <li> **Data Type:**Integer <li> **Allowed values:**<ul><li> **0**:Turns off Enhanced Phishing Protection. <li> **1**:Turns on Enhanced Phishing Protection in audit mode, which captures work or school password entry events and sends telemetry but doesn't show any notifications to your users.| |ServiceEnabled | <li> **Data Type:**Integer <li> **Allowed values:**<ul><li> **0**:Turns off Enhanced Phishing Protection. <li> **1**:Turns on Enhanced Phishing Protection in audit mode, which captures work or school password entry events and sends telemetry but doesn't show any notifications to your users.|
|NotifyMalicious |<li>**URI full path:**./Vendor/MSFT/Policy/Config/…<li> **Data type:**Integer <li>**Allowed values:**<ul><li> **0**:Turns off Enhanced Phishing Protection notifications when users type their work or school password into one of the following malicious scenarios: a reported phishing site, a login URL with an invalid certificate, or into an application connecting to either a reported phishing site or a login URL with an invalid certificate. <li> **1**:Turns on Enhanced Phishing Protection notifications when users type their work or school password into one of the previously described malicious scenarios and encourages them to change their password. | |NotifyMalicious |<li> **Data type:**Integer <li>**Allowed values:**<ul><li> **0**:Turns off Enhanced Phishing Protection notifications when users type their work or school password into one of the following malicious scenarios: a reported phishing site, a login URL with an invalid certificate, or into an application connecting to either a reported phishing site or a login URL with an invalid certificate. <li> **1**:Turns on Enhanced Phishing Protection notifications when users type their work or school password into one of the previously described malicious scenarios and encourages them to change their password. |
|NotifyPasswordReuse |<li> **URI full path:**./Vendor/MSFT/Policy/Config/… <li> **Data type:**Integer <li> **Allowed values:** <ul><li> **0**:Turns off Enhanced Phishing Protection notifications when users reuse their work or school password. <li> **1**:Turns on Enhanced Phishing Protection notifications when users reuse their work or school password and encourages them to change their password.| |NotifyPasswordReuse | <li> **Data type:**Integer <li> **Allowed values:** <ul><li> **0**:Turns off Enhanced Phishing Protection notifications when users reuse their work or school password. <li> **1**:Turns on Enhanced Phishing Protection notifications when users reuse their work or school password and encourages them to change their password.|
|NotifyUnsafeApp |<li>**URI full path:**./Vendor/MSFT/Policy/Config/… <li> **Data type:**Integer <li> **Allowed values:** <ul><li> **0**:Turns off Enhanced Phishing Protection notifications when users type their work or school passwords in text editor apps like OneNote, Word, Notepad, etc. <li> **1**:Turns on Enhanced Phishing Protection notifications when users type their work or school passwords in text editor apps.| |NotifyUnsafeApp |<li> **Data type:**Integer <li> **Allowed values:** <ul><li> **0**:Turns off Enhanced Phishing Protection notifications when users type their work or school passwords in text editor apps like OneNote, Word, Notepad, etc. <li> **1**:Turns on Enhanced Phishing Protection notifications when users type their work or school passwords in text editor apps.|
### Recommended Group Policy and MDM settings for your organization ### Recommended Group Policy and MDM settings for your organization
By default Enhanced Phishing Protection is deployed on Windows 11 devices in audit mode, which means that users don't see any notifications for any protection scenarios. In audit mode, Enhanced Phishing Protection only captures unsafe password entry events and sends telemetry through Microsoft Defender. Unfortunately, this means that users aren't warned if they enter their work or school password into a phishing site, if they reuse their password, or if they unsafely store their password in apps. Because of this possibility, we strongly recommend that you set up Enhanced Phishing Protection to warn users during all protection scenarios. By default Enhanced Phishing Protection is deployed on Windows 11 devices in audit mode, which means that users don't see any notifications for any protection scenarios. In audit mode, Enhanced Phishing Protection only captures unsafe password entry events and sends telemetry through Microsoft Defender. Unfortunately, this means that users aren't warned if they enter their work or school password into a phishing site, if they reuse their password, or if they unsafely store their password in apps. Because of this possibility, we strongly recommend that you set up Enhanced Phishing Protection to warn users during all protection scenarios.
@ -75,7 +75,7 @@ To better help you protect your organization, we recommend turning on and using
|Group Policy setting |Recommendation | |Group Policy setting |Recommendation |
|---------|---------| |---------|---------|
|Administrative Templates\Windows Components\Windows Defender SmartScreen\Enhanced Phishing Protection\Service Enabled | **Enable**: Enhanced Phishing Protection is enabled in audit mode and your users are unable to turn it off. | |Administrative Templates\Windows Components\Windows Defender SmartScreen\Enhanced Phishing Protection\Service Enabled | **Enable**: Enhanced Phishing Protection is enabled in audit mode and your users are unable to turn it off. |
|Administrative Templates\Windows Components\Windows Defender SmartScreen\Enhanced Phishing Protection\Notify Malicious |**Enable**: Enhanced Phishing Protection warns your users if they type their work or school password into one of the following malicious scenarios and encourages them to change their password: into a reported phishing site, into a login URL with an invalid certificate, or into an application connecting to either a reported phishing site or a login URL with an invalid certificate. | |Administrative Templates\Windows Components\Windows Defender SmartScreen\Enhanced Phishing Protection\Notify Malicious |**Enable**: Enhanced Phishing Protection warns your users if they type their work or school password into one of the following malicious scenarios: into a reported phishing site, into a login URL with an invalid certificate, or into an application connecting to either a reported phishing site or a login URL with an invalid certificate. It encourages users to change their password. |
|Administrative Templates\Windows Components\Windows Defender SmartScreen\Enhanced Phishing Protection\Notify Password Reuse |**Enable**: Enhanced Phishing Protection warns users if they reuse their work or school password and encourages them to change it.| |Administrative Templates\Windows Components\Windows Defender SmartScreen\Enhanced Phishing Protection\Notify Password Reuse |**Enable**: Enhanced Phishing Protection warns users if they reuse their work or school password and encourages them to change it.|
|Administrative Templates\Windows Components\Windows Defender SmartScreen\Enhanced Phishing Protection\Notify Unsafe App |**Enable**: Enhanced Phishing Protection warns users if they store their password in text editor apps.| |Administrative Templates\Windows Components\Windows Defender SmartScreen\Enhanced Phishing Protection\Notify Unsafe App |**Enable**: Enhanced Phishing Protection warns users if they store their password in text editor apps.|