mirror of
https://github.com/MicrosoftDocs/windows-itpro-docs.git
synced 2025-06-19 12:23:37 +00:00
bulk update tiering info and docfx for Windows Firewall
This commit is contained in:
Paolo Matarazzo
@ -68,15 +68,18 @@
|
||||
},
|
||||
"fileMetadata": {
|
||||
"author":{
|
||||
"identity-protection/**/*.md": "paolomatarazzo"
|
||||
"identity-protection/**/*.md": "paolomatarazzo",
|
||||
"threat-protection/windows-firewall/**/*.md": "aczechowski"
|
||||
},
|
||||
"ms.author":{
|
||||
"identity-protection/**/*.md": "paoloma"
|
||||
"identity-protection/**/*.md": "paoloma",
|
||||
"threat-protection/windows-firewall/*.md": "aaroncz"
|
||||
},
|
||||
"ms.reviewer":{
|
||||
"identity-protection/hello-for-business/*.md": "erikdau",
|
||||
"identity-protection/credential-guard/*.md": "zwhittington",
|
||||
"identity-protection/access-control/*.md": "sulahiri"
|
||||
"identity-protection/access-control/*.md": "sulahiri",
|
||||
"threat-protection/windows-firewall/*.md": "paoloma"
|
||||
},
|
||||
"ms.collection":{
|
||||
"identity-protection/hello-for-business/*.md": "tier1",
|
||||
|
||||
@ -1,26 +1,12 @@
|
||||
---
|
||||
title: Add Production Devices to the Membership Group for a Zone (Windows)
|
||||
description: Learn how to add production devices to the membership group for a zone and refresh the group policy on the devices in the membership group.
|
||||
ms.assetid: 7141de15-5840-4beb-aabe-21c1dd89eb23
|
||||
ms.reviewer: jekrynit
|
||||
ms.author: paoloma
|
||||
ms.prod: windows-client
|
||||
ms.mktglfcycl: deploy
|
||||
ms.sitesec: library
|
||||
ms.pagetype: security
|
||||
ms.localizationpriority: medium
|
||||
author: paolomatarazzo
|
||||
manager: aaroncz
|
||||
audience: ITPro
|
||||
ms.topic: conceptual
|
||||
ms.date: 09/07/2021
|
||||
ms.technology: itpro-security
|
||||
appliesto:
|
||||
- ✅ <b>Windows 10</b>
|
||||
- ✅ <b>Windows 11</b>
|
||||
- ✅ <b>Windows Server 2016</b>
|
||||
- ✅ <b>Windows Server 2019</b>
|
||||
- ✅ <b>Windows Server 2022</b>
|
||||
- ✅ <a href="https://learn.microsoft.com/windows/release-health/supported-versions-windows-client" target="_blank">Windows 10 and later</a>
|
||||
- ✅ <a href="https://learn.microsoft.com/windows/release-health/windows-server-release-info" target="_blank">Windows Server 2016 and later</a>
|
||||
---
|
||||
|
||||
# Add Production Devices to the Membership Group for a Zone
|
||||
|
||||
@ -1,26 +1,12 @@
|
||||
---
|
||||
title: Add Test Devices to the Membership Group for a Zone (Windows)
|
||||
description: Learn how to add devices to the group for a zone to test whether your Windows Defender Firewall with Advanced Security implementation works as expected.
|
||||
ms.assetid: 47057d90-b053-48a3-b881-4f2458d3e431
|
||||
ms.reviewer: jekrynit
|
||||
ms.author: paoloma
|
||||
ms.prod: windows-client
|
||||
ms.mktglfcycl: deploy
|
||||
ms.sitesec: library
|
||||
ms.pagetype: security
|
||||
ms.localizationpriority: medium
|
||||
author: paolomatarazzo
|
||||
manager: aaroncz
|
||||
audience: ITPro
|
||||
ms.topic: conceptual
|
||||
ms.date: 09/07/2021
|
||||
ms.technology: itpro-security
|
||||
appliesto:
|
||||
- ✅ <b>Windows 10</b>
|
||||
- ✅ <b>Windows 11</b>
|
||||
- ✅ <b>Windows Server 2016</b>
|
||||
- ✅ <b>Windows Server 2019</b>
|
||||
- ✅ <b>Windows Server 2022</b>
|
||||
- ✅ <a href="https://learn.microsoft.com/windows/release-health/supported-versions-windows-client" target="_blank">Windows 10 and later</a>
|
||||
- ✅ <a href="https://learn.microsoft.com/windows/release-health/windows-server-release-info" target="_blank">Windows Server 2016 and later</a>
|
||||
---
|
||||
|
||||
# Add Test Devices to the Membership Group for a Zone
|
||||
|
||||
@ -1,26 +1,12 @@
|
||||
---
|
||||
title: Appendix A Sample GPO Template Files for Settings Used in this Guide (Windows)
|
||||
description: Use sample template files import an XML file containing customized registry preferences into a Group Policy Object (GPO).
|
||||
ms.assetid: 75930afd-ab1b-4e53-915b-a28787814b38
|
||||
ms.reviewer: jekrynit
|
||||
ms.author: paoloma
|
||||
ms.prod: windows-client
|
||||
ms.mktglfcycl: deploy
|
||||
ms.sitesec: library
|
||||
ms.pagetype: security
|
||||
ms.localizationpriority: medium
|
||||
author: paolomatarazzo
|
||||
manager: aaroncz
|
||||
audience: ITPro
|
||||
ms.topic: conceptual
|
||||
ms.date: 09/07/2021
|
||||
ms.technology: itpro-security
|
||||
appliesto:
|
||||
- ✅ <b>Windows 10</b>
|
||||
- ✅ <b>Windows 11</b>
|
||||
- ✅ <b>Windows Server 2016</b>
|
||||
- ✅ <b>Windows Server 2019</b>
|
||||
- ✅ <b>Windows Server 2022</b>
|
||||
- ✅ <a href="https://learn.microsoft.com/windows/release-health/supported-versions-windows-client" target="_blank">Windows 10 and later</a>
|
||||
- ✅ <a href="https://learn.microsoft.com/windows/release-health/windows-server-release-info" target="_blank">Windows Server 2016 and later</a>
|
||||
---
|
||||
|
||||
# Appendix A: Sample GPO Template Files for Settings Used in this Guide
|
||||
|
||||
@ -1,29 +1,15 @@
|
||||
---
|
||||
title: Assign Security Group Filters to the GPO (Windows)
|
||||
description: Learn how to use Group Policy Management MMC to assign security group filters to a GPO to make sure that the GPO is applied to the correct computers.
|
||||
ms.assetid: bcbe3299-8d87-4ec1-9e86-8e4a680fd7c8
|
||||
ms.reviewer: jekrynit
|
||||
ms.author: paoloma
|
||||
ms.prod: windows-client
|
||||
ms.mktglfcycl: deploy
|
||||
ms.sitesec: library
|
||||
ms.pagetype: security
|
||||
ms.localizationpriority: medium
|
||||
author: paolomatarazzo
|
||||
manager: aaroncz
|
||||
audience: ITPro
|
||||
ms.collection:
|
||||
- highpri
|
||||
- tier3
|
||||
ms.topic: conceptual
|
||||
ms.date: 09/07/2021
|
||||
ms.technology: itpro-security
|
||||
appliesto:
|
||||
- ✅ <b>Windows 10</b>
|
||||
- ✅ <b>Windows 11</b>
|
||||
- ✅ <b>Windows Server 2016</b>
|
||||
- ✅ <b>Windows Server 2019</b>
|
||||
- ✅ <b>Windows Server 2022</b>
|
||||
- ✅ <a href="https://learn.microsoft.com/windows/release-health/supported-versions-windows-client" target="_blank">Windows 10 and later</a>
|
||||
- ✅ <a href="https://learn.microsoft.com/windows/release-health/windows-server-release-info" target="_blank">Windows Server 2016 and later</a>
|
||||
---
|
||||
|
||||
# Assign Security Group Filters to the GPO
|
||||
|
||||
@ -1,25 +1,11 @@
|
||||
---
|
||||
title: Basic Firewall Policy Design (Windows)
|
||||
description: Protect the devices in your organization from unwanted network traffic that gets through the perimeter defenses by using basic firewall policy design.
|
||||
ms.assetid: 6f7af99e-6850-4522-b7f5-db98e6941418
|
||||
ms.reviewer: jekrynit
|
||||
ms.author: paoloma
|
||||
ms.prod: windows-client
|
||||
ms.mktglfcycl: deploy
|
||||
ms.sitesec: library
|
||||
ms.pagetype: security
|
||||
ms.localizationpriority: medium
|
||||
author: paolomatarazzo
|
||||
manager: aaroncz
|
||||
audience: ITPro
|
||||
ms.topic: conceptual
|
||||
ms.technology: itpro-security
|
||||
appliesto:
|
||||
- ✅ <b>Windows 10</b>
|
||||
- ✅ <b>Windows 11</b>
|
||||
- ✅ <b>Windows Server 2016</b>
|
||||
- ✅ <b>Windows Server 2019</b>
|
||||
- ✅ <b>Windows Server 2022</b>
|
||||
- ✅ <a href="https://learn.microsoft.com/windows/release-health/supported-versions-windows-client" target="_blank">Windows 10 and later</a>
|
||||
- ✅ <a href="https://learn.microsoft.com/windows/release-health/windows-server-release-info" target="_blank">Windows Server 2016 and later</a>
|
||||
ms.date: 12/31/2017
|
||||
---
|
||||
|
||||
|
||||
@ -1,25 +1,15 @@
|
||||
---
|
||||
title: Best practices for configuring Windows Defender Firewall
|
||||
description: Learn about best practices for configuring Windows Defender Firewall
|
||||
keywords: firewall, best practices, security, network security, network, rules, filters,
|
||||
ms.prod: windows-client
|
||||
ms.date: 11/09/2022
|
||||
ms.mktglfcycl: deploy
|
||||
ms.sitesec: library
|
||||
ms.pagetype: security
|
||||
ms.author: paoloma
|
||||
author: paolomatarazzo
|
||||
ms.localizationpriority: medium
|
||||
manager: aaroncz
|
||||
audience: ITPro
|
||||
ms.collection:
|
||||
- highpri
|
||||
- tier3
|
||||
ms.topic: article
|
||||
ms.technology: itpro-security
|
||||
appliesto:
|
||||
- ✅ <b>Windows 10 and later</b>
|
||||
- ✅ <b>Windows Server 2016 and later</b>
|
||||
- ✅ <a href="https://learn.microsoft.com/windows/release-health/supported-versions-windows-client" target="_blank">Windows 10 and later</a>
|
||||
- ✅ <a href="https://learn.microsoft.com/windows/release-health/windows-server-release-info" target="_blank">Windows Server 2016 and later</a>
|
||||
---
|
||||
|
||||
# Best practices for configuring Windows Defender Firewall
|
||||
|
||||
@ -1,26 +1,12 @@
|
||||
---
|
||||
title: Boundary Zone GPOs (Windows)
|
||||
description: Learn about GPOs to create that must align with the group you create for the boundary zone in Windows Defender Firewall with Advanced Security.
|
||||
ms.assetid: 1ae66088-02c3-47e4-b7e8-74d0b8f8646e
|
||||
ms.reviewer: jekrynit
|
||||
ms.author: paoloma
|
||||
ms.prod: windows-client
|
||||
ms.mktglfcycl: deploy
|
||||
ms.sitesec: library
|
||||
ms.pagetype: security
|
||||
ms.localizationpriority: medium
|
||||
author: paolomatarazzo
|
||||
manager: aaroncz
|
||||
audience: ITPro
|
||||
ms.topic: conceptual
|
||||
ms.date: 09/07/2021
|
||||
ms.technology: itpro-security
|
||||
appliesto:
|
||||
- ✅ <b>Windows 10</b>
|
||||
- ✅ <b>Windows 11</b>
|
||||
- ✅ <b>Windows Server 2016</b>
|
||||
- ✅ <b>Windows Server 2019</b>
|
||||
- ✅ <b>Windows Server 2022</b>
|
||||
- ✅ <a href="https://learn.microsoft.com/windows/release-health/supported-versions-windows-client" target="_blank">Windows 10 and later</a>
|
||||
- ✅ <a href="https://learn.microsoft.com/windows/release-health/windows-server-release-info" target="_blank">Windows Server 2016 and later</a>
|
||||
---
|
||||
|
||||
# Boundary Zone GPOs
|
||||
|
||||
@ -1,26 +1,12 @@
|
||||
---
|
||||
title: Boundary Zone (Windows)
|
||||
description: Learn how a boundary zone supports devices that must receive traffic from beyond an isolated domain in Windows Defender Firewall with Advanced Security.
|
||||
ms.assetid: ed98b680-fd24-44bd-a7dd-26c522e45a20
|
||||
ms.reviewer: jekrynit
|
||||
ms.author: paoloma
|
||||
ms.prod: windows-client
|
||||
ms.mktglfcycl: deploy
|
||||
ms.sitesec: library
|
||||
ms.pagetype: security
|
||||
ms.localizationpriority: medium
|
||||
author: paolomatarazzo
|
||||
manager: aaroncz
|
||||
audience: ITPro
|
||||
ms.topic: conceptual
|
||||
ms.date: 09/07/2021
|
||||
ms.technology: itpro-security
|
||||
appliesto:
|
||||
- ✅ <b>Windows 10</b>
|
||||
- ✅ <b>Windows 11</b>
|
||||
- ✅ <b>Windows Server 2016</b>
|
||||
- ✅ <b>Windows Server 2019</b>
|
||||
- ✅ <b>Windows Server 2022</b>
|
||||
- ✅ <a href="https://learn.microsoft.com/windows/release-health/supported-versions-windows-client" target="_blank">Windows 10 and later</a>
|
||||
- ✅ <a href="https://learn.microsoft.com/windows/release-health/windows-server-release-info" target="_blank">Windows Server 2016 and later</a>
|
||||
---
|
||||
|
||||
# Boundary Zone
|
||||
|
||||
@ -1,26 +1,12 @@
|
||||
---
|
||||
title: Certificate-based Isolation Policy Design Example (Windows)
|
||||
description: This example uses a fictitious company to illustrate certificate-based isolation policy design in Windows Defender Firewall with Advanced Security.
|
||||
ms.assetid: 509b513e-dd49-4234-99f9-636fd2f749e3
|
||||
ms.reviewer: jekrynit
|
||||
ms.author: paoloma
|
||||
ms.prod: windows-client
|
||||
ms.mktglfcycl: deploy
|
||||
ms.sitesec: library
|
||||
ms.pagetype: security
|
||||
ms.localizationpriority: medium
|
||||
author: paolomatarazzo
|
||||
manager: aaroncz
|
||||
audience: ITPro
|
||||
ms.topic: conceptual
|
||||
ms.date: 09/07/2021
|
||||
ms.technology: itpro-security
|
||||
appliesto:
|
||||
- ✅ <b>Windows 10</b>
|
||||
- ✅ <b>Windows 11</b>
|
||||
- ✅ <b>Windows Server 2016</b>
|
||||
- ✅ <b>Windows Server 2019</b>
|
||||
- ✅ <b>Windows Server 2022</b>
|
||||
- ✅ <a href="https://learn.microsoft.com/windows/release-health/supported-versions-windows-client" target="_blank">Windows 10 and later</a>
|
||||
- ✅ <a href="https://learn.microsoft.com/windows/release-health/windows-server-release-info" target="_blank">Windows Server 2016 and later</a>
|
||||
---
|
||||
|
||||
# Certificate-based Isolation Policy Design Example
|
||||
|
||||
@ -1,26 +1,12 @@
|
||||
---
|
||||
title: Certificate-based Isolation Policy Design (Windows)
|
||||
description: Explore the methodology behind Certificate-based Isolation Policy Design and how it defers from Domain Isolation and Server Isolation Policy Design.
|
||||
ms.assetid: 63e01a60-9daa-4701-9472-096c85e0f862
|
||||
ms.reviewer: jekrynit
|
||||
ms.author: paoloma
|
||||
ms.prod: windows-client
|
||||
ms.mktglfcycl: deploy
|
||||
ms.sitesec: library
|
||||
ms.pagetype: security
|
||||
ms.localizationpriority: medium
|
||||
author: paolomatarazzo
|
||||
manager: aaroncz
|
||||
audience: ITPro
|
||||
ms.topic: conceptual
|
||||
ms.date: 09/07/2021
|
||||
ms.technology: itpro-security
|
||||
appliesto:
|
||||
- ✅ <b>Windows 10</b>
|
||||
- ✅ <b>Windows 11</b>
|
||||
- ✅ <b>Windows Server 2016</b>
|
||||
- ✅ <b>Windows Server 2019</b>
|
||||
- ✅ <b>Windows Server 2022</b>
|
||||
- ✅ <a href="https://learn.microsoft.com/windows/release-health/supported-versions-windows-client" target="_blank">Windows 10 and later</a>
|
||||
- ✅ <a href="https://learn.microsoft.com/windows/release-health/windows-server-release-info" target="_blank">Windows Server 2016 and later</a>
|
||||
---
|
||||
|
||||
# Certificate-based isolation policy design
|
||||
|
||||
@ -1,26 +1,12 @@
|
||||
---
|
||||
title: Change Rules from Request to Require Mode (Windows)
|
||||
description: Learn how to convert a rule from request to require mode and apply the modified GPOs to the client devices.
|
||||
ms.assetid: ad969eda-c681-48cb-a2c4-0b6cae5f4cff
|
||||
ms.reviewer: jekrynit
|
||||
ms.author: paoloma
|
||||
ms.prod: windows-client
|
||||
ms.mktglfcycl: deploy
|
||||
ms.sitesec: library
|
||||
ms.pagetype: security
|
||||
ms.localizationpriority: medium
|
||||
author: paolomatarazzo
|
||||
manager: aaroncz
|
||||
audience: ITPro
|
||||
ms.topic: conceptual
|
||||
ms.date: 09/07/2021
|
||||
ms.technology: itpro-security
|
||||
appliesto:
|
||||
- ✅ <b>Windows 10</b>
|
||||
- ✅ <b>Windows 11</b>
|
||||
- ✅ <b>Windows Server 2016</b>
|
||||
- ✅ <b>Windows Server 2019</b>
|
||||
- ✅ <b>Windows Server 2022</b>
|
||||
- ✅ <a href="https://learn.microsoft.com/windows/release-health/supported-versions-windows-client" target="_blank">Windows 10 and later</a>
|
||||
- ✅ <a href="https://learn.microsoft.com/windows/release-health/windows-server-release-info" target="_blank">Windows Server 2016 and later</a>
|
||||
---
|
||||
|
||||
# Change Rules from Request to Require Mode
|
||||
|
||||
@ -1,26 +1,12 @@
|
||||
---
|
||||
title: Checklist Configuring Basic Firewall Settings (Windows)
|
||||
description: Configure Windows Firewall to set inbound and outbound behavior, display notifications, record log files and more of the necessary function for Firewall.
|
||||
ms.assetid: 0d10cdae-da3d-4a33-b8a4-6b6656b6d1f9
|
||||
ms.reviewer: jekrynit
|
||||
ms.author: paoloma
|
||||
ms.prod: windows-client
|
||||
ms.mktglfcycl: deploy
|
||||
ms.sitesec: library
|
||||
ms.pagetype: security
|
||||
ms.localizationpriority: medium
|
||||
author: paolomatarazzo
|
||||
manager: aaroncz
|
||||
audience: ITPro
|
||||
ms.topic: conceptual
|
||||
ms.date: 09/07/2021
|
||||
ms.technology: itpro-security
|
||||
appliesto:
|
||||
- ✅ <b>Windows 10</b>
|
||||
- ✅ <b>Windows 11</b>
|
||||
- ✅ <b>Windows Server 2016</b>
|
||||
- ✅ <b>Windows Server 2019</b>
|
||||
- ✅ <b>Windows Server 2022</b>
|
||||
- ✅ <a href="https://learn.microsoft.com/windows/release-health/supported-versions-windows-client" target="_blank">Windows 10 and later</a>
|
||||
- ✅ <a href="https://learn.microsoft.com/windows/release-health/windows-server-release-info" target="_blank">Windows Server 2016 and later</a>
|
||||
---
|
||||
|
||||
# Checklist: Configuring Basic Firewall Settings
|
||||
|
||||
@ -1,26 +1,12 @@
|
||||
---
|
||||
title: Checklist Configuring Rules for an Isolated Server Zone (Windows)
|
||||
description: Use these tasks to configure connection security rules and IPsec settings in GPOs for servers in an isolated server zone that are part of an isolated domain.
|
||||
ms.assetid: 67c50a91-e71e-4f1e-a534-dad2582e311c
|
||||
ms.reviewer: jekrynit
|
||||
ms.author: paoloma
|
||||
ms.prod: windows-client
|
||||
ms.mktglfcycl: deploy
|
||||
ms.sitesec: library
|
||||
ms.pagetype: security
|
||||
ms.localizationpriority: medium
|
||||
author: paolomatarazzo
|
||||
manager: aaroncz
|
||||
audience: ITPro
|
||||
ms.topic: conceptual
|
||||
ms.date: 09/07/2021
|
||||
ms.technology: itpro-security
|
||||
appliesto:
|
||||
- ✅ <b>Windows 10</b>
|
||||
- ✅ <b>Windows 11</b>
|
||||
- ✅ <b>Windows Server 2016</b>
|
||||
- ✅ <b>Windows Server 2019</b>
|
||||
- ✅ <b>Windows Server 2022</b>
|
||||
- ✅ <a href="https://learn.microsoft.com/windows/release-health/supported-versions-windows-client" target="_blank">Windows 10 and later</a>
|
||||
- ✅ <a href="https://learn.microsoft.com/windows/release-health/windows-server-release-info" target="_blank">Windows Server 2016 and later</a>
|
||||
---
|
||||
|
||||
# Checklist: Configuring Rules for an Isolated Server Zone
|
||||
|
||||
@ -1,26 +1,12 @@
|
||||
---
|
||||
title: Checklist Configuring Rules for Servers in a Standalone Isolated Server Zone (Windows)
|
||||
description: Checklist Configuring Rules for Servers in a Standalone Isolated Server Zone
|
||||
ms.assetid: ccc09d06-ef75-43b0-9c77-db06f2940955
|
||||
ms.reviewer: jekrynit
|
||||
ms.author: paoloma
|
||||
ms.prod: windows-client
|
||||
ms.mktglfcycl: deploy
|
||||
ms.sitesec: library
|
||||
ms.pagetype: security
|
||||
ms.localizationpriority: medium
|
||||
author: paolomatarazzo
|
||||
manager: aaroncz
|
||||
audience: ITPro
|
||||
ms.topic: conceptual
|
||||
ms.date: 09/07/2021
|
||||
ms.technology: itpro-security
|
||||
appliesto:
|
||||
- ✅ <b>Windows 10</b>
|
||||
- ✅ <b>Windows 11</b>
|
||||
- ✅ <b>Windows Server 2016</b>
|
||||
- ✅ <b>Windows Server 2019</b>
|
||||
- ✅ <b>Windows Server 2022</b>
|
||||
- ✅ <a href="https://learn.microsoft.com/windows/release-health/supported-versions-windows-client" target="_blank">Windows 10 and later</a>
|
||||
- ✅ <a href="https://learn.microsoft.com/windows/release-health/windows-server-release-info" target="_blank">Windows Server 2016 and later</a>
|
||||
---
|
||||
|
||||
# Checklist: Configuring Rules for Servers in a Standalone Isolated Server Zone
|
||||
|
||||
@ -1,26 +1,12 @@
|
||||
---
|
||||
title: Checklist Configuring Rules for the Boundary Zone (Windows)
|
||||
description: Use these tasks to configure connection security rules and IPsec settings in your GPOs to implement the boundary zone in an isolated domain.
|
||||
ms.assetid: 25fe0197-de5a-4b4c-bc44-c6f0620ea94b
|
||||
ms.reviewer: jekrynit
|
||||
ms.author: paoloma
|
||||
ms.prod: windows-client
|
||||
ms.mktglfcycl: deploy
|
||||
ms.sitesec: library
|
||||
ms.pagetype: security
|
||||
ms.localizationpriority: medium
|
||||
author: paolomatarazzo
|
||||
manager: aaroncz
|
||||
audience: ITPro
|
||||
ms.topic: conceptual
|
||||
ms.date: 09/07/2021
|
||||
ms.technology: itpro-security
|
||||
appliesto:
|
||||
- ✅ <b>Windows 10</b>
|
||||
- ✅ <b>Windows 11</b>
|
||||
- ✅ <b>Windows Server 2016</b>
|
||||
- ✅ <b>Windows Server 2019</b>
|
||||
- ✅ <b>Windows Server 2022</b>
|
||||
- ✅ <a href="https://learn.microsoft.com/windows/release-health/supported-versions-windows-client" target="_blank">Windows 10 and later</a>
|
||||
- ✅ <a href="https://learn.microsoft.com/windows/release-health/windows-server-release-info" target="_blank">Windows Server 2016 and later</a>
|
||||
---
|
||||
|
||||
# Checklist: Configuring Rules for the Boundary Zone
|
||||
|
||||
@ -1,26 +1,12 @@
|
||||
---
|
||||
title: Checklist Configuring Rules for the Encryption Zone (Windows)
|
||||
description: Use these tasks to configure connection security rules and IPsec settings in your GPOs to implement the encryption zone in an isolated domain.
|
||||
ms.assetid: 87b1787b-0c70-47a4-ae52-700bff505ea4
|
||||
ms.reviewer: jekrynit
|
||||
ms.author: paoloma
|
||||
ms.prod: windows-client
|
||||
ms.mktglfcycl: deploy
|
||||
ms.sitesec: library
|
||||
ms.pagetype: security
|
||||
ms.localizationpriority: medium
|
||||
author: paolomatarazzo
|
||||
manager: aaroncz
|
||||
audience: ITPro
|
||||
ms.topic: conceptual
|
||||
ms.date: 09/07/2021
|
||||
ms.technology: itpro-security
|
||||
appliesto:
|
||||
- ✅ <b>Windows 10</b>
|
||||
- ✅ <b>Windows 11</b>
|
||||
- ✅ <b>Windows Server 2016</b>
|
||||
- ✅ <b>Windows Server 2019</b>
|
||||
- ✅ <b>Windows Server 2022</b>
|
||||
- ✅ <a href="https://learn.microsoft.com/windows/release-health/supported-versions-windows-client" target="_blank">Windows 10 and later</a>
|
||||
- ✅ <a href="https://learn.microsoft.com/windows/release-health/windows-server-release-info" target="_blank">Windows Server 2016 and later</a>
|
||||
---
|
||||
|
||||
# Checklist: Configuring Rules for the Encryption Zone
|
||||
|
||||
@ -1,26 +1,12 @@
|
||||
---
|
||||
title: Checklist Configuring Rules for the Isolated Domain (Windows)
|
||||
description: Use these tasks to configure connection security rules and IPsec settings in your GPOs to implement the main zone in the isolated domain.
|
||||
ms.assetid: bfd2d29e-4011-40ec-a52e-a67d4af9748e
|
||||
ms.reviewer: jekrynit
|
||||
ms.author: paoloma
|
||||
ms.prod: windows-client
|
||||
ms.mktglfcycl: deploy
|
||||
ms.sitesec: library
|
||||
ms.pagetype: security
|
||||
ms.localizationpriority: medium
|
||||
author: paolomatarazzo
|
||||
manager: aaroncz
|
||||
audience: ITPro
|
||||
ms.topic: conceptual
|
||||
ms.date: 09/07/2021
|
||||
ms.technology: itpro-security
|
||||
appliesto:
|
||||
- ✅ <b>Windows 10</b>
|
||||
- ✅ <b>Windows 11</b>
|
||||
- ✅ <b>Windows Server 2016</b>
|
||||
- ✅ <b>Windows Server 2019</b>
|
||||
- ✅ <b>Windows Server 2022</b>
|
||||
- ✅ <a href="https://learn.microsoft.com/windows/release-health/supported-versions-windows-client" target="_blank">Windows 10 and later</a>
|
||||
- ✅ <a href="https://learn.microsoft.com/windows/release-health/windows-server-release-info" target="_blank">Windows Server 2016 and later</a>
|
||||
---
|
||||
|
||||
# Checklist: Configuring Rules for the Isolated Domain
|
||||
|
||||
@ -1,26 +1,12 @@
|
||||
---
|
||||
title: Checklist Creating Group Policy Objects (Windows)
|
||||
description: Learn to deploy firewall settings, IPsec settings, firewall rules, or connection security rules, by using Group Policy in AD DS.
|
||||
ms.assetid: e99bd6a4-34a7-47b5-9791-ae819977a559
|
||||
ms.reviewer: jekrynit
|
||||
ms.author: paoloma
|
||||
ms.prod: windows-client
|
||||
ms.mktglfcycl: deploy
|
||||
ms.sitesec: library
|
||||
ms.pagetype: security
|
||||
ms.localizationpriority: medium
|
||||
author: paolomatarazzo
|
||||
manager: aaroncz
|
||||
audience: ITPro
|
||||
ms.topic: conceptual
|
||||
ms.date: 09/07/2021
|
||||
ms.technology: itpro-security
|
||||
appliesto:
|
||||
- ✅ <b>Windows 10</b>
|
||||
- ✅ <b>Windows 11</b>
|
||||
- ✅ <b>Windows Server 2016</b>
|
||||
- ✅ <b>Windows Server 2019</b>
|
||||
- ✅ <b>Windows Server 2022</b>
|
||||
- ✅ <a href="https://learn.microsoft.com/windows/release-health/supported-versions-windows-client" target="_blank">Windows 10 and later</a>
|
||||
- ✅ <a href="https://learn.microsoft.com/windows/release-health/windows-server-release-info" target="_blank">Windows Server 2016 and later</a>
|
||||
---
|
||||
|
||||
# Checklist: Creating Group Policy Objects
|
||||
|
||||
@ -1,26 +1,12 @@
|
||||
---
|
||||
title: Checklist Creating Inbound Firewall Rules (Windows)
|
||||
description: Use these tasks for creating inbound firewall rules in your GPOs for Windows Defender Firewall with Advanced Security.
|
||||
ms.assetid: 0520e14e-5c82-48da-8fbf-87cef36ce02f
|
||||
ms.reviewer: jekrynit
|
||||
ms.author: paoloma
|
||||
ms.prod: windows-client
|
||||
ms.mktglfcycl: deploy
|
||||
ms.sitesec: library
|
||||
ms.pagetype: security
|
||||
ms.localizationpriority: medium
|
||||
author: paolomatarazzo
|
||||
manager: aaroncz
|
||||
audience: ITPro
|
||||
ms.topic: conceptual
|
||||
ms.date: 09/07/2021
|
||||
ms.technology: itpro-security
|
||||
appliesto:
|
||||
- ✅ <b>Windows 10</b>
|
||||
- ✅ <b>Windows 11</b>
|
||||
- ✅ <b>Windows Server 2016</b>
|
||||
- ✅ <b>Windows Server 2019</b>
|
||||
- ✅ <b>Windows Server 2022</b>
|
||||
- ✅ <a href="https://learn.microsoft.com/windows/release-health/supported-versions-windows-client" target="_blank">Windows 10 and later</a>
|
||||
- ✅ <a href="https://learn.microsoft.com/windows/release-health/windows-server-release-info" target="_blank">Windows Server 2016 and later</a>
|
||||
---
|
||||
|
||||
# Checklist: Creating Inbound Firewall Rules
|
||||
|
||||
@ -1,26 +1,12 @@
|
||||
---
|
||||
title: Checklist Creating Outbound Firewall Rules (Windows)
|
||||
description: Use these tasks for creating outbound firewall rules in your GPOs for Windows Defender Firewall with Advanced Security.
|
||||
ms.assetid: 611bb98f-4e97-411f-82bf-7a844a4130de
|
||||
ms.reviewer: jekrynit
|
||||
ms.author: paoloma
|
||||
ms.prod: windows-client
|
||||
ms.mktglfcycl: deploy
|
||||
ms.sitesec: library
|
||||
ms.pagetype: security
|
||||
ms.localizationpriority: medium
|
||||
author: paolomatarazzo
|
||||
manager: aaroncz
|
||||
audience: ITPro
|
||||
ms.topic: conceptual
|
||||
ms.date: 09/07/2021
|
||||
ms.technology: itpro-security
|
||||
appliesto:
|
||||
- ✅ <b>Windows 10</b>
|
||||
- ✅ <b>Windows 11</b>
|
||||
- ✅ <b>Windows Server 2016</b>
|
||||
- ✅ <b>Windows Server 2019</b>
|
||||
- ✅ <b>Windows Server 2022</b>
|
||||
- ✅ <a href="https://learn.microsoft.com/windows/release-health/supported-versions-windows-client" target="_blank">Windows 10 and later</a>
|
||||
- ✅ <a href="https://learn.microsoft.com/windows/release-health/windows-server-release-info" target="_blank">Windows Server 2016 and later</a>
|
||||
---
|
||||
|
||||
# Checklist: Creating Outbound Firewall Rules
|
||||
|
||||
@ -1,26 +1,12 @@
|
||||
---
|
||||
title: Create Rules for Standalone Isolated Server Zone Clients (Windows)
|
||||
description: Checklist for when creating rules for clients of a Standalone Isolated Server Zone
|
||||
ms.assetid: 6a5e6478-add3-47e3-8221-972549e013f6
|
||||
ms.reviewer: jekrynit
|
||||
ms.author: paoloma
|
||||
ms.prod: windows-client
|
||||
ms.mktglfcycl: deploy
|
||||
ms.sitesec: library
|
||||
ms.pagetype: security
|
||||
ms.localizationpriority: medium
|
||||
author: paolomatarazzo
|
||||
manager: aaroncz
|
||||
audience: ITPro
|
||||
ms.topic: conceptual
|
||||
ms.date: 09/07/2021
|
||||
ms.technology: itpro-security
|
||||
appliesto:
|
||||
- ✅ <b>Windows 10</b>
|
||||
- ✅ <b>Windows 11</b>
|
||||
- ✅ <b>Windows Server 2016</b>
|
||||
- ✅ <b>Windows Server 2019</b>
|
||||
- ✅ <b>Windows Server 2022</b>
|
||||
- ✅ <a href="https://learn.microsoft.com/windows/release-health/supported-versions-windows-client" target="_blank">Windows 10 and later</a>
|
||||
- ✅ <a href="https://learn.microsoft.com/windows/release-health/windows-server-release-info" target="_blank">Windows Server 2016 and later</a>
|
||||
---
|
||||
|
||||
# Checklist: Creating Rules for Clients of a Standalone Isolated Server Zone
|
||||
|
||||
@ -1,26 +1,12 @@
|
||||
---
|
||||
title: Checklist Implementing a Basic Firewall Policy Design (Windows)
|
||||
description: Follow this parent checklist for implementing a basic firewall policy design to ensure successful implementation.
|
||||
ms.assetid: 6caf0c1e-ac72-4f9d-a986-978b77fbbaa3
|
||||
ms.reviewer: jekrynit
|
||||
ms.author: paoloma
|
||||
ms.prod: windows-client
|
||||
ms.mktglfcycl: deploy
|
||||
ms.sitesec: library
|
||||
ms.pagetype: security
|
||||
ms.localizationpriority: medium
|
||||
author: paolomatarazzo
|
||||
manager: aaroncz
|
||||
audience: ITPro
|
||||
ms.topic: conceptual
|
||||
ms.date: 09/07/2021
|
||||
ms.technology: itpro-security
|
||||
appliesto:
|
||||
- ✅ <b>Windows 10</b>
|
||||
- ✅ <b>Windows 11</b>
|
||||
- ✅ <b>Windows Server 2016</b>
|
||||
- ✅ <b>Windows Server 2019</b>
|
||||
- ✅ <b>Windows Server 2022</b>
|
||||
- ✅ <a href="https://learn.microsoft.com/windows/release-health/supported-versions-windows-client" target="_blank">Windows 10 and later</a>
|
||||
- ✅ <a href="https://learn.microsoft.com/windows/release-health/windows-server-release-info" target="_blank">Windows Server 2016 and later</a>
|
||||
---
|
||||
|
||||
# Checklist: Implementing a Basic Firewall Policy Design
|
||||
|
||||
@ -1,26 +1,12 @@
|
||||
---
|
||||
title: Checklist Implementing a Certificate-based Isolation Policy Design (Windows)
|
||||
description: Use these references to learn about using certificates as an authentication option and configure a certificate-based isolation policy design.
|
||||
ms.assetid: 1e34b5ea-2e77-4598-a765-550418d33894
|
||||
ms.reviewer: jekrynit
|
||||
ms.author: paoloma
|
||||
ms.prod: windows-client
|
||||
ms.mktglfcycl: deploy
|
||||
ms.sitesec: library
|
||||
ms.pagetype: security
|
||||
ms.localizationpriority: medium
|
||||
author: paolomatarazzo
|
||||
manager: aaroncz
|
||||
audience: ITPro
|
||||
ms.topic: conceptual
|
||||
ms.date: 09/07/2021
|
||||
ms.technology: itpro-security
|
||||
appliesto:
|
||||
- ✅ <b>Windows 10</b>
|
||||
- ✅ <b>Windows 11</b>
|
||||
- ✅ <b>Windows Server 2016</b>
|
||||
- ✅ <b>Windows Server 2019</b>
|
||||
- ✅ <b>Windows Server 2022</b>
|
||||
- ✅ <a href="https://learn.microsoft.com/windows/release-health/supported-versions-windows-client" target="_blank">Windows 10 and later</a>
|
||||
- ✅ <a href="https://learn.microsoft.com/windows/release-health/windows-server-release-info" target="_blank">Windows Server 2016 and later</a>
|
||||
---
|
||||
|
||||
# Checklist: Implementing a Certificate-based Isolation Policy Design
|
||||
|
||||
@ -1,26 +1,12 @@
|
||||
---
|
||||
title: Checklist Implementing a Domain Isolation Policy Design (Windows)
|
||||
description: Use these references to learn about the domain isolation policy design and links to other checklists to complete tasks require to implement this design.
|
||||
ms.assetid: 76586eb3-c13c-4d71-812f-76bff200fc20
|
||||
ms.reviewer: jekrynit
|
||||
ms.author: paoloma
|
||||
ms.prod: windows-client
|
||||
ms.mktglfcycl: deploy
|
||||
ms.sitesec: library
|
||||
ms.pagetype: security
|
||||
ms.localizationpriority: medium
|
||||
author: paolomatarazzo
|
||||
manager: aaroncz
|
||||
audience: ITPro
|
||||
ms.topic: conceptual
|
||||
ms.date: 09/07/2021
|
||||
ms.technology: itpro-security
|
||||
appliesto:
|
||||
- ✅ <b>Windows 10</b>
|
||||
- ✅ <b>Windows 11</b>
|
||||
- ✅ <b>Windows Server 2016</b>
|
||||
- ✅ <b>Windows Server 2019</b>
|
||||
- ✅ <b>Windows Server 2022</b>
|
||||
- ✅ <a href="https://learn.microsoft.com/windows/release-health/supported-versions-windows-client" target="_blank">Windows 10 and later</a>
|
||||
- ✅ <a href="https://learn.microsoft.com/windows/release-health/windows-server-release-info" target="_blank">Windows Server 2016 and later</a>
|
||||
---
|
||||
|
||||
# Checklist: Implementing a Domain Isolation Policy Design
|
||||
|
||||
@ -1,26 +1,12 @@
|
||||
---
|
||||
title: Checklist Implementing a Standalone Server Isolation Policy Design (Windows)
|
||||
description: Use these tasks to create a server isolation policy design that isn't part of an isolated domain. See references to concepts and links to other checklists.
|
||||
ms.assetid: 50a997d8-f079-408c-8ac6-ecd02078ade3
|
||||
ms.reviewer: jekrynit
|
||||
ms.author: paoloma
|
||||
ms.prod: windows-client
|
||||
ms.mktglfcycl: deploy
|
||||
ms.sitesec: library
|
||||
ms.pagetype: security
|
||||
ms.localizationpriority: medium
|
||||
author: paolomatarazzo
|
||||
manager: aaroncz
|
||||
audience: ITPro
|
||||
ms.topic: conceptual
|
||||
ms.date: 09/07/2021
|
||||
ms.technology: itpro-security
|
||||
appliesto:
|
||||
- ✅ <b>Windows 10</b>
|
||||
- ✅ <b>Windows 11</b>
|
||||
- ✅ <b>Windows Server 2016</b>
|
||||
- ✅ <b>Windows Server 2019</b>
|
||||
- ✅ <b>Windows Server 2022</b>
|
||||
- ✅ <a href="https://learn.microsoft.com/windows/release-health/supported-versions-windows-client" target="_blank">Windows 10 and later</a>
|
||||
- ✅ <a href="https://learn.microsoft.com/windows/release-health/windows-server-release-info" target="_blank">Windows Server 2016 and later</a>
|
||||
---
|
||||
|
||||
# Checklist: Implementing a Standalone Server Isolation Policy Design
|
||||
|
||||
@ -1,26 +1,12 @@
|
||||
---
|
||||
title: Configure Authentication Methods (Windows)
|
||||
description: Learn how to configure authentication methods for devices in an isolated domain or standalone server zone in Windows Defender Firewall with Advanced Security.
|
||||
ms.assetid: 5fcdc523-617f-4233-9213-15fe19f4cd02
|
||||
ms.reviewer: jekrynit
|
||||
ms.author: paoloma
|
||||
ms.prod: windows-client
|
||||
ms.mktglfcycl: deploy
|
||||
ms.sitesec: library
|
||||
ms.pagetype: security
|
||||
ms.localizationpriority: medium
|
||||
author: paolomatarazzo
|
||||
manager: aaroncz
|
||||
audience: ITPro
|
||||
ms.topic: conceptual
|
||||
ms.date: 09/07/2021
|
||||
ms.technology: itpro-security
|
||||
appliesto:
|
||||
- ✅ <b>Windows 10</b>
|
||||
- ✅ <b>Windows 11</b>
|
||||
- ✅ <b>Windows Server 2016</b>
|
||||
- ✅ <b>Windows Server 2019</b>
|
||||
- ✅ <b>Windows Server 2022</b>
|
||||
- ✅ <a href="https://learn.microsoft.com/windows/release-health/supported-versions-windows-client" target="_blank">Windows 10 and later</a>
|
||||
- ✅ <a href="https://learn.microsoft.com/windows/release-health/windows-server-release-info" target="_blank">Windows Server 2016 and later</a>
|
||||
---
|
||||
|
||||
# Configure Authentication Methods
|
||||
|
||||
@ -1,26 +1,12 @@
|
||||
---
|
||||
title: Configure Data Protection (Quick Mode) Settings (Windows)
|
||||
description: Learn how to configure the data protection settings for connection security rules in an isolated domain or a standalone isolated server zone.
|
||||
ms.assetid: fdcb1b36-e267-4be7-b842-5df9a067c9e0
|
||||
ms.reviewer: jekrynit
|
||||
ms.author: paoloma
|
||||
ms.prod: windows-client
|
||||
ms.mktglfcycl: deploy
|
||||
ms.sitesec: library
|
||||
ms.pagetype: security
|
||||
ms.localizationpriority: medium
|
||||
author: paolomatarazzo
|
||||
manager: aaroncz
|
||||
audience: ITPro
|
||||
ms.topic: conceptual
|
||||
ms.date: 09/07/2021
|
||||
ms.technology: itpro-security
|
||||
appliesto:
|
||||
- ✅ <b>Windows 10</b>
|
||||
- ✅ <b>Windows 11</b>
|
||||
- ✅ <b>Windows Server 2016</b>
|
||||
- ✅ <b>Windows Server 2019</b>
|
||||
- ✅ <b>Windows Server 2022</b>
|
||||
- ✅ <a href="https://learn.microsoft.com/windows/release-health/supported-versions-windows-client" target="_blank">Windows 10 and later</a>
|
||||
- ✅ <a href="https://learn.microsoft.com/windows/release-health/windows-server-release-info" target="_blank">Windows Server 2016 and later</a>
|
||||
---
|
||||
|
||||
# Configure Data Protection (Quick Mode) Settings
|
||||
|
||||
@ -1,26 +1,12 @@
|
||||
---
|
||||
title: Configure Group Policy to Autoenroll and Deploy Certificates (Windows)
|
||||
description: Learn how to configure Group Policy to automatically enroll client computer certificates and deploy them to the workstations on your network.
|
||||
ms.assetid: faeb62b5-2cc3-42f7-bee5-53ba45d05c09
|
||||
ms.reviewer: jekrynit
|
||||
ms.author: paoloma
|
||||
ms.prod: windows-client
|
||||
ms.mktglfcycl: deploy
|
||||
ms.sitesec: library
|
||||
ms.pagetype: security
|
||||
ms.localizationpriority: medium
|
||||
author: paolomatarazzo
|
||||
manager: aaroncz
|
||||
audience: ITPro
|
||||
ms.topic: conceptual
|
||||
ms.date: 09/07/2021
|
||||
ms.technology: itpro-security
|
||||
appliesto:
|
||||
- ✅ <b>Windows 10</b>
|
||||
- ✅ <b>Windows 11</b>
|
||||
- ✅ <b>Windows Server 2016</b>
|
||||
- ✅ <b>Windows Server 2019</b>
|
||||
- ✅ <b>Windows Server 2022</b>
|
||||
- ✅ <a href="https://learn.microsoft.com/windows/release-health/supported-versions-windows-client" target="_blank">Windows 10 and later</a>
|
||||
- ✅ <a href="https://learn.microsoft.com/windows/release-health/windows-server-release-info" target="_blank">Windows Server 2016 and later</a>
|
||||
---
|
||||
|
||||
# Configure Group Policy to Autoenroll and Deploy Certificates
|
||||
|
||||
@ -1,26 +1,12 @@
|
||||
---
|
||||
title: Configure Key Exchange (Main Mode) Settings (Windows)
|
||||
description: Learn how to configure the main mode key exchange settings used to secure the IPsec authentication traffic in Windows Defender Firewall with Advanced Security.
|
||||
ms.assetid: 5c593b6b-2cd9-43de-9b4e-95943fe82f52
|
||||
ms.reviewer: jekrynit
|
||||
ms.author: paoloma
|
||||
ms.prod: windows-client
|
||||
ms.mktglfcycl: deploy
|
||||
ms.sitesec: library
|
||||
ms.pagetype: security
|
||||
ms.localizationpriority: medium
|
||||
author: paolomatarazzo
|
||||
manager: aaroncz
|
||||
audience: ITPro
|
||||
ms.topic: conceptual
|
||||
ms.date: 09/07/2021
|
||||
ms.technology: itpro-security
|
||||
appliesto:
|
||||
- ✅ <b>Windows 10</b>
|
||||
- ✅ <b>Windows 11</b>
|
||||
- ✅ <b>Windows Server 2016</b>
|
||||
- ✅ <b>Windows Server 2019</b>
|
||||
- ✅ <b>Windows Server 2022</b>
|
||||
- ✅ <a href="https://learn.microsoft.com/windows/release-health/supported-versions-windows-client" target="_blank">Windows 10 and later</a>
|
||||
- ✅ <a href="https://learn.microsoft.com/windows/release-health/windows-server-release-info" target="_blank">Windows Server 2016 and later</a>
|
||||
---
|
||||
|
||||
# Configure Key Exchange (Main Mode) Settings
|
||||
|
||||
@ -1,26 +1,12 @@
|
||||
---
|
||||
title: Configure the Rules to Require Encryption (Windows)
|
||||
description: Learn how to configure rules to add encryption algorithms and delete the algorithm combinations that don't use encryption for zones that require encryption.
|
||||
ms.assetid: 07b7760f-3225-4b4b-b418-51787b0972a0
|
||||
ms.reviewer: jekrynit
|
||||
ms.author: paoloma
|
||||
ms.prod: windows-client
|
||||
ms.mktglfcycl: deploy
|
||||
ms.sitesec: library
|
||||
ms.pagetype: security
|
||||
ms.localizationpriority: medium
|
||||
author: paolomatarazzo
|
||||
manager: aaroncz
|
||||
audience: ITPro
|
||||
ms.topic: conceptual
|
||||
ms.date: 09/07/2021
|
||||
ms.technology: itpro-security
|
||||
appliesto:
|
||||
- ✅ <b>Windows 10</b>
|
||||
- ✅ <b>Windows 11</b>
|
||||
- ✅ <b>Windows Server 2016</b>
|
||||
- ✅ <b>Windows Server 2019</b>
|
||||
- ✅ <b>Windows Server 2022</b>
|
||||
- ✅ <a href="https://learn.microsoft.com/windows/release-health/supported-versions-windows-client" target="_blank">Windows 10 and later</a>
|
||||
- ✅ <a href="https://learn.microsoft.com/windows/release-health/windows-server-release-info" target="_blank">Windows Server 2016 and later</a>
|
||||
---
|
||||
|
||||
# Configure the Rules to Require Encryption
|
||||
|
||||
@ -1,26 +1,12 @@
|
||||
---
|
||||
title: Configure the Windows Defender Firewall Log (Windows)
|
||||
description: Learn how to configure Windows Defender Firewall with Advanced Security to log dropped packets or successful connections by using Group Policy Management MMC.
|
||||
ms.assetid: f037113d-506b-44d3-b9c0-0b79d03e7d18
|
||||
ms.reviewer: jekrynit
|
||||
ms.author: paoloma
|
||||
ms.prod: windows-client
|
||||
ms.mktglfcycl: deploy
|
||||
ms.sitesec: library
|
||||
ms.pagetype: security
|
||||
ms.localizationpriority: medium
|
||||
author: paolomatarazzo
|
||||
manager: aaroncz
|
||||
audience: ITPro
|
||||
ms.topic: conceptual
|
||||
ms.date: 09/07/2021
|
||||
ms.technology: itpro-security
|
||||
appliesto:
|
||||
- ✅ <b>Windows 10</b>
|
||||
- ✅ <b>Windows 11</b>
|
||||
- ✅ <b>Windows Server 2016</b>
|
||||
- ✅ <b>Windows Server 2019</b>
|
||||
- ✅ <b>Windows Server 2022</b>
|
||||
- ✅ <a href="https://learn.microsoft.com/windows/release-health/supported-versions-windows-client" target="_blank">Windows 10 and later</a>
|
||||
- ✅ <a href="https://learn.microsoft.com/windows/release-health/windows-server-release-info" target="_blank">Windows Server 2016 and later</a>
|
||||
---
|
||||
|
||||
# Configure the Windows Defender Firewall with Advanced Security Log
|
||||
|
||||
@ -1,24 +1,11 @@
|
||||
---
|
||||
title: Configure the Workstation Authentication Template (Windows)
|
||||
description: Learn how to configure a workstation authentication certificate template, which is used for device certificates that are enrolled and deployed to workstations.
|
||||
ms.assetid: c3ac9960-6efc-47c1-bd69-d9d4bf84f7a6
|
||||
ms.reviewer: jekrynit
|
||||
manager: aaroncz
|
||||
ms.author: paoloma
|
||||
ms.prod: windows-client
|
||||
ms.mktglfcycl: deploy
|
||||
ms.sitesec: library
|
||||
ms.pagetype: security
|
||||
ms.localizationpriority: medium
|
||||
author: paolomatarazzo
|
||||
ms.date: 09/07/2021
|
||||
ms.technology: itpro-security
|
||||
appliesto:
|
||||
- ✅ <b>Windows 10</b>
|
||||
- ✅ <b>Windows 11</b>
|
||||
- ✅ <b>Windows Server 2016</b>
|
||||
- ✅ <b>Windows Server 2019</b>
|
||||
- ✅ <b>Windows Server 2022</b>
|
||||
- ✅ <a href="https://learn.microsoft.com/windows/release-health/supported-versions-windows-client" target="_blank">Windows 10 and later</a>
|
||||
- ✅ <a href="https://learn.microsoft.com/windows/release-health/windows-server-release-info" target="_blank">Windows Server 2016 and later</a>
|
||||
ms.topic: conceptual
|
||||
---
|
||||
|
||||
|
||||
@ -1,26 +1,12 @@
|
||||
---
|
||||
title: Configure Windows Defender Firewall with Advanced Security to Suppress Notifications When a Program is Blocked (Windows)
|
||||
description: Configure Windows Defender Firewall with Advanced Security to suppress notifications when a program is Blocked
|
||||
ms.assetid: b7665d1d-f4d2-4b5a-befc-8b6bd940f69b
|
||||
ms.reviewer: jekrynit
|
||||
ms.author: paoloma
|
||||
ms.prod: windows-client
|
||||
ms.mktglfcycl: deploy
|
||||
ms.sitesec: library
|
||||
ms.pagetype: security
|
||||
ms.localizationpriority: medium
|
||||
author: paolomatarazzo
|
||||
manager: aaroncz
|
||||
audience: ITPro
|
||||
ms.topic: conceptual
|
||||
ms.date: 09/07/2021
|
||||
ms.technology: itpro-security
|
||||
appliesto:
|
||||
- ✅ <b>Windows 10</b>
|
||||
- ✅ <b>Windows 11</b>
|
||||
- ✅ <b>Windows Server 2016</b>
|
||||
- ✅ <b>Windows Server 2019</b>
|
||||
- ✅ <b>Windows Server 2022</b>
|
||||
- ✅ <a href="https://learn.microsoft.com/windows/release-health/supported-versions-windows-client" target="_blank">Windows 10 and later</a>
|
||||
- ✅ <a href="https://learn.microsoft.com/windows/release-health/windows-server-release-info" target="_blank">Windows Server 2016 and later</a>
|
||||
---
|
||||
|
||||
# Configure Windows Defender Firewall with Advanced Security to Suppress Notifications When a Program Is Blocked
|
||||
|
||||
@ -1,19 +1,12 @@
|
||||
---
|
||||
title: Confirm That Certificates Are Deployed Correctly (Windows)
|
||||
description: Learn how to confirm that a Group Policy is being applied as expected and that the certificates are being properly installed on the workstations.
|
||||
ms.author: paoloma
|
||||
ms.prod: windows-client
|
||||
author: paolomatarazzo
|
||||
manager: aaroncz
|
||||
ms.topic: conceptual
|
||||
ms.date: 01/24/2023
|
||||
ms.technology: itpro-security
|
||||
appliesto:
|
||||
- ✅ <b>Windows 10</b>
|
||||
- ✅ <b>Windows 11</b>
|
||||
- ✅ <b>Windows Server 2016</b>
|
||||
- ✅ <b>Windows Server 2019</b>
|
||||
- ✅ <b>Windows Server 2022</b>
|
||||
- ✅ <a href="https://learn.microsoft.com/windows/release-health/supported-versions-windows-client" target="_blank">Windows 10 and later</a>
|
||||
- ✅ <a href="https://learn.microsoft.com/windows/release-health/windows-server-release-info" target="_blank">Windows Server 2016 and later</a>
|
||||
---
|
||||
|
||||
# Confirm That Certificates Are Deployed Correctly
|
||||
|
||||
@ -1,26 +1,12 @@
|
||||
---
|
||||
title: Copy a GPO to Create a New GPO (Windows)
|
||||
description: Learn how to make a copy of a GPO by using the Active Directory Users and devices MMC snap-in to create a GPO for boundary zone devices.
|
||||
ms.assetid: 7f6a23e5-4b3f-40d6-bf6d-7895558b1406
|
||||
ms.reviewer: jekrynit
|
||||
ms.author: paoloma
|
||||
ms.prod: windows-client
|
||||
ms.mktglfcycl: deploy
|
||||
ms.sitesec: library
|
||||
ms.pagetype: security
|
||||
ms.localizationpriority: medium
|
||||
author: paolomatarazzo
|
||||
manager: aaroncz
|
||||
audience: ITPro
|
||||
ms.topic: conceptual
|
||||
ms.date: 09/07/2021
|
||||
ms.technology: itpro-security
|
||||
appliesto:
|
||||
- ✅ <b>Windows 10</b>
|
||||
- ✅ <b>Windows 11</b>
|
||||
- ✅ <b>Windows Server 2016</b>
|
||||
- ✅ <b>Windows Server 2019</b>
|
||||
- ✅ <b>Windows Server 2022</b>
|
||||
- ✅ <a href="https://learn.microsoft.com/windows/release-health/supported-versions-windows-client" target="_blank">Windows 10 and later</a>
|
||||
- ✅ <a href="https://learn.microsoft.com/windows/release-health/windows-server-release-info" target="_blank">Windows Server 2016 and later</a>
|
||||
---
|
||||
|
||||
# Copy a GPO to Create a New GPO
|
||||
|
||||
@ -1,26 +1,12 @@
|
||||
---
|
||||
title: Create a Group Account in Active Directory (Windows)
|
||||
description: Learn how to create a security group for the computers that are to receive Group Policy settings by using the Active Directory Users and Computers console.
|
||||
ms.assetid: c3700413-e02d-4d56-96b8-7991f97ae432
|
||||
ms.reviewer: jekrynit
|
||||
ms.author: paoloma
|
||||
ms.prod: windows-client
|
||||
ms.mktglfcycl: deploy
|
||||
ms.sitesec: library
|
||||
ms.pagetype: security
|
||||
ms.localizationpriority: medium
|
||||
author: paolomatarazzo
|
||||
manager: aaroncz
|
||||
audience: ITPro
|
||||
ms.topic: conceptual
|
||||
ms.date: 09/07/2021
|
||||
ms.technology: itpro-security
|
||||
appliesto:
|
||||
- ✅ <b>Windows 10</b>
|
||||
- ✅ <b>Windows 11</b>
|
||||
- ✅ <b>Windows Server 2016</b>
|
||||
- ✅ <b>Windows Server 2019</b>
|
||||
- ✅ <b>Windows Server 2022</b>
|
||||
- ✅ <a href="https://learn.microsoft.com/windows/release-health/supported-versions-windows-client" target="_blank">Windows 10 and later</a>
|
||||
- ✅ <a href="https://learn.microsoft.com/windows/release-health/windows-server-release-info" target="_blank">Windows Server 2016 and later</a>
|
||||
---
|
||||
|
||||
# Create a Group Account in Active Directory
|
||||
|
||||
@ -1,29 +1,15 @@
|
||||
---
|
||||
title: Create a Group Policy Object (Windows)
|
||||
description: Learn how to use the Active Directory Users and Computers MMC snap-in to create a GPO. You must be a member of the Domain Administrators group.
|
||||
ms.assetid: 72a50dd7-5033-4d97-a5eb-0aff8a35cced
|
||||
ms.reviewer: jekrynit
|
||||
ms.author: paoloma
|
||||
ms.prod: windows-client
|
||||
ms.mktglfcycl: deploy
|
||||
ms.sitesec: library
|
||||
ms.pagetype: security
|
||||
ms.localizationpriority: medium
|
||||
author: paolomatarazzo
|
||||
manager: aaroncz
|
||||
audience: ITPro
|
||||
ms.collection:
|
||||
- highpri
|
||||
- tier3
|
||||
ms.topic: conceptual
|
||||
ms.date: 09/07/2021
|
||||
ms.technology: itpro-security
|
||||
appliesto:
|
||||
- ✅ <b>Windows 10</b>
|
||||
- ✅ <b>Windows 11</b>
|
||||
- ✅ <b>Windows Server 2016</b>
|
||||
- ✅ <b>Windows Server 2019</b>
|
||||
- ✅ <b>Windows Server 2022</b>
|
||||
- ✅ <a href="https://learn.microsoft.com/windows/release-health/supported-versions-windows-client" target="_blank">Windows 10 and later</a>
|
||||
- ✅ <a href="https://learn.microsoft.com/windows/release-health/windows-server-release-info" target="_blank">Windows Server 2016 and later</a>
|
||||
---
|
||||
|
||||
# Create a Group Policy Object
|
||||
|
||||
@ -1,26 +1,12 @@
|
||||
---
|
||||
title: Create an Authentication Exemption List Rule (Windows)
|
||||
description: Learn how to create rules that exempt devices that cannot communicate by using IPSec from the authentication requirements of your isolation policies.
|
||||
ms.assetid: 8f6493f3-8527-462a-82c0-fd91a6cb5dd8
|
||||
ms.reviewer: jekrynit
|
||||
ms.author: paoloma
|
||||
ms.prod: windows-client
|
||||
ms.mktglfcycl: deploy
|
||||
ms.sitesec: library
|
||||
ms.pagetype: security
|
||||
ms.localizationpriority: medium
|
||||
author: paolomatarazzo
|
||||
manager: aaroncz
|
||||
audience: ITPro
|
||||
ms.topic: conceptual
|
||||
ms.date: 09/07/2021
|
||||
ms.technology: itpro-security
|
||||
appliesto:
|
||||
- ✅ <b>Windows 10</b>
|
||||
- ✅ <b>Windows 11</b>
|
||||
- ✅ <b>Windows Server 2016</b>
|
||||
- ✅ <b>Windows Server 2019</b>
|
||||
- ✅ <b>Windows Server 2022</b>
|
||||
- ✅ <a href="https://learn.microsoft.com/windows/release-health/supported-versions-windows-client" target="_blank">Windows 10 and later</a>
|
||||
- ✅ <a href="https://learn.microsoft.com/windows/release-health/windows-server-release-info" target="_blank">Windows Server 2016 and later</a>
|
||||
---
|
||||
|
||||
# Create an Authentication Exemption List Rule
|
||||
|
||||
@ -1,26 +1,12 @@
|
||||
---
|
||||
title: Create an Authentication Request Rule (Windows)
|
||||
description: Create a new rule for Windows Defender Firewall with Advanced Security so devices on the network use IPsec protocols and methods before they can communicate.
|
||||
ms.assetid: 1296e048-039f-4d1a-aaf2-8472ad05e359
|
||||
ms.reviewer: jekrynit
|
||||
ms.author: paoloma
|
||||
ms.prod: windows-client
|
||||
ms.mktglfcycl: deploy
|
||||
ms.sitesec: library
|
||||
ms.pagetype: security
|
||||
ms.localizationpriority: medium
|
||||
author: paolomatarazzo
|
||||
manager: aaroncz
|
||||
audience: ITPro
|
||||
ms.topic: conceptual
|
||||
ms.date: 09/07/2021
|
||||
ms.technology: itpro-security
|
||||
appliesto:
|
||||
- ✅ <b>Windows 10</b>
|
||||
- ✅ <b>Windows 11</b>
|
||||
- ✅ <b>Windows Server 2016</b>
|
||||
- ✅ <b>Windows Server 2019</b>
|
||||
- ✅ <b>Windows Server 2022</b>
|
||||
- ✅ <a href="https://learn.microsoft.com/windows/release-health/supported-versions-windows-client" target="_blank">Windows 10 and later</a>
|
||||
- ✅ <a href="https://learn.microsoft.com/windows/release-health/windows-server-release-info" target="_blank">Windows Server 2016 and later</a>
|
||||
---
|
||||
|
||||
# Create an Authentication Request Rule
|
||||
|
||||
@ -1,26 +1,12 @@
|
||||
---
|
||||
title: Create an Inbound ICMP Rule (Windows)
|
||||
description: Learn how to allow inbound ICMP traffic by using the Group Policy Management MMC snap-in to create rules in Windows Defender Firewall with Advanced Security.
|
||||
ms.assetid: 267b940a-79d9-4322-b53b-81901e357344
|
||||
ms.reviewer: jekrynit
|
||||
ms.author: paoloma
|
||||
ms.prod: windows-client
|
||||
ms.mktglfcycl: deploy
|
||||
ms.sitesec: library
|
||||
ms.pagetype: security
|
||||
ms.localizationpriority: medium
|
||||
author: paolomatarazzo
|
||||
manager: aaroncz
|
||||
audience: ITPro
|
||||
ms.topic: conceptual
|
||||
ms.date: 09/07/2021
|
||||
ms.technology: itpro-security
|
||||
appliesto:
|
||||
- ✅ <b>Windows 10</b>
|
||||
- ✅ <b>Windows 11</b>
|
||||
- ✅ <b>Windows Server 2016</b>
|
||||
- ✅ <b>Windows Server 2019</b>
|
||||
- ✅ <b>Windows Server 2022</b>
|
||||
- ✅ <a href="https://learn.microsoft.com/windows/release-health/supported-versions-windows-client" target="_blank">Windows 10 and later</a>
|
||||
- ✅ <a href="https://learn.microsoft.com/windows/release-health/windows-server-release-info" target="_blank">Windows Server 2016 and later</a>
|
||||
---
|
||||
|
||||
# Create an Inbound ICMP Rule
|
||||
|
||||
@ -1,29 +1,15 @@
|
||||
---
|
||||
title: Create an Inbound Port Rule (Windows)
|
||||
description: Learn to allow traffic on specific ports by using the Group Policy Management MMC snap-in to create rules in Windows Defender Firewall with Advanced Security.
|
||||
ms.assetid: a7b6c6ca-32fa-46a9-a5df-a4e43147da9f
|
||||
ms.reviewer: jekrynit
|
||||
ms.author: paoloma
|
||||
ms.prod: windows-client
|
||||
ms.mktglfcycl: deploy
|
||||
ms.sitesec: library
|
||||
ms.pagetype: security
|
||||
ms.localizationpriority: medium
|
||||
author: paolomatarazzo
|
||||
manager: aaroncz
|
||||
audience: ITPro
|
||||
ms.collection:
|
||||
- highpri
|
||||
- tier3
|
||||
ms.topic: conceptual
|
||||
ms.date: 09/07/2021
|
||||
ms.technology: itpro-security
|
||||
appliesto:
|
||||
- ✅ <b>Windows 10</b>
|
||||
- ✅ <b>Windows 11</b>
|
||||
- ✅ <b>Windows Server 2016</b>
|
||||
- ✅ <b>Windows Server 2019</b>
|
||||
- ✅ <b>Windows Server 2022</b>
|
||||
- ✅ <a href="https://learn.microsoft.com/windows/release-health/supported-versions-windows-client" target="_blank">Windows 10 and later</a>
|
||||
- ✅ <a href="https://learn.microsoft.com/windows/release-health/windows-server-release-info" target="_blank">Windows Server 2016 and later</a>
|
||||
---
|
||||
|
||||
# Create an Inbound Port Rule
|
||||
|
||||
@ -1,26 +1,12 @@
|
||||
---
|
||||
title: Create an Inbound Program or Service Rule (Windows)
|
||||
description: Learn how to allow inbound traffic to a program or service by using the Group Policy Management MMC snap-in to create firewall rules.
|
||||
ms.assetid: 00b7fa60-7c64-4ba5-ba95-c542052834cf
|
||||
ms.reviewer: jekrynit
|
||||
ms.author: paoloma
|
||||
ms.prod: windows-client
|
||||
ms.mktglfcycl: deploy
|
||||
ms.sitesec: library
|
||||
ms.pagetype: security
|
||||
ms.localizationpriority: medium
|
||||
author: paolomatarazzo
|
||||
manager: aaroncz
|
||||
audience: ITPro
|
||||
ms.topic: conceptual
|
||||
ms.date: 09/07/2021
|
||||
ms.technology: itpro-security
|
||||
appliesto:
|
||||
- ✅ <b>Windows 10</b>
|
||||
- ✅ <b>Windows 11</b>
|
||||
- ✅ <b>Windows Server 2016</b>
|
||||
- ✅ <b>Windows Server 2019</b>
|
||||
- ✅ <b>Windows Server 2022</b>
|
||||
- ✅ <a href="https://learn.microsoft.com/windows/release-health/supported-versions-windows-client" target="_blank">Windows 10 and later</a>
|
||||
- ✅ <a href="https://learn.microsoft.com/windows/release-health/windows-server-release-info" target="_blank">Windows Server 2016 and later</a>
|
||||
---
|
||||
|
||||
# Create an Inbound Program or Service Rule
|
||||
|
||||
@ -1,26 +1,12 @@
|
||||
---
|
||||
title: Create an Outbound Port Rule (Windows)
|
||||
description: Learn to block outbound traffic on a port by using the Group Policy Management MMC snap-in to create rules in Windows Defender Firewall with Advanced Security.
|
||||
ms.assetid: 59062b91-756b-42ea-8f2a-832f05d77ddf
|
||||
ms.reviewer: jekrynit
|
||||
ms.author: paoloma
|
||||
ms.prod: windows-client
|
||||
ms.mktglfcycl: deploy
|
||||
ms.sitesec: library
|
||||
ms.pagetype: security
|
||||
ms.localizationpriority: medium
|
||||
author: paolomatarazzo
|
||||
manager: aaroncz
|
||||
audience: ITPro
|
||||
ms.topic: conceptual
|
||||
ms.date: 09/07/2021
|
||||
ms.technology: itpro-security
|
||||
appliesto:
|
||||
- ✅ <b>Windows 10</b>
|
||||
- ✅ <b>Windows 11</b>
|
||||
- ✅ <b>Windows Server 2016</b>
|
||||
- ✅ <b>Windows Server 2019</b>
|
||||
- ✅ <b>Windows Server 2022</b>
|
||||
- ✅ <a href="https://learn.microsoft.com/windows/release-health/supported-versions-windows-client" target="_blank">Windows 10 and later</a>
|
||||
- ✅ <a href="https://learn.microsoft.com/windows/release-health/windows-server-release-info" target="_blank">Windows Server 2016 and later</a>
|
||||
---
|
||||
|
||||
# Create an Outbound Port Rule
|
||||
|
||||
@ -1,21 +1,12 @@
|
||||
---
|
||||
title: Create an Outbound Program or Service Rule (Windows)
|
||||
description: Use the Windows Defender Firewall with Advanced Security node in the Group Policy Management console to create firewall rules.
|
||||
ms.reviewer: jekrynit
|
||||
ms.author: paoloma
|
||||
ms.prod: windows-client
|
||||
ms.localizationpriority: medium
|
||||
author: paolomatarazzo
|
||||
manager: aaroncz
|
||||
ms.topic: conceptual
|
||||
ms.date: 09/07/2021
|
||||
ms.technology: itpro-security
|
||||
appliesto:
|
||||
- ✅ <b>Windows 10</b>
|
||||
- ✅ <b>Windows 11</b>
|
||||
- ✅ <b>Windows Server 2016</b>
|
||||
- ✅ <b>Windows Server 2019</b>
|
||||
- ✅ <b>Windows Server 2022</b>
|
||||
- ✅ <a href="https://learn.microsoft.com/windows/release-health/supported-versions-windows-client" target="_blank">Windows 10 and later</a>
|
||||
- ✅ <a href="https://learn.microsoft.com/windows/release-health/windows-server-release-info" target="_blank">Windows Server 2016 and later</a>
|
||||
---
|
||||
|
||||
# Create an Outbound Program or Service Rule
|
||||
|
||||
@ -1,21 +1,12 @@
|
||||
---
|
||||
title: Create Inbound Rules to Support RPC (Windows)
|
||||
description: Learn how to allow RPC network traffic by using the Group Policy Management MMC snap-in to create rules in Windows Defender Firewall with Advanced Security.
|
||||
ms.reviewer: jekrynit
|
||||
ms.author: paoloma
|
||||
ms.prod: windows-client
|
||||
ms.localizationpriority: medium
|
||||
author: paolomatarazzo
|
||||
manager: aaroncz
|
||||
ms.topic: conceptual
|
||||
ms.date: 09/07/2021
|
||||
ms.technology: itpro-security
|
||||
appliesto:
|
||||
- ✅ <b>Windows 10</b>
|
||||
- ✅ <b>Windows 11</b>
|
||||
- ✅ <b>Windows Server 2016</b>
|
||||
- ✅ <b>Windows Server 2019</b>
|
||||
- ✅ <b>Windows Server 2022</b>
|
||||
- ✅ <a href="https://learn.microsoft.com/windows/release-health/supported-versions-windows-client" target="_blank">Windows 10 and later</a>
|
||||
- ✅ <a href="https://learn.microsoft.com/windows/release-health/windows-server-release-info" target="_blank">Windows Server 2016 and later</a>
|
||||
---
|
||||
|
||||
# Create Inbound Rules to Support RPC
|
||||
|
||||
@ -1,20 +1,11 @@
|
||||
---
|
||||
title: Create Windows Firewall rules in Intune (Windows)
|
||||
description: Learn how to use Intune to create rules in Windows Defender Firewall with Advanced Security. Start by creating a profile in Device Configuration in Intune.
|
||||
ms.reviewer: jekrynit
|
||||
ms.author: paoloma
|
||||
ms.prod: windows-client
|
||||
ms.localizationpriority: medium
|
||||
author: paolomatarazzo
|
||||
manager: aaroncz
|
||||
ms.topic: conceptual
|
||||
ms.technology: itpro-security
|
||||
appliesto:
|
||||
- ✅ <b>Windows 10</b>
|
||||
- ✅ <b>Windows 11</b>
|
||||
- ✅ <b>Windows Server 2016</b>
|
||||
- ✅ <b>Windows Server 2019</b>
|
||||
- ✅ <b>Windows Server 2022</b>
|
||||
- ✅ <a href="https://learn.microsoft.com/windows/release-health/supported-versions-windows-client" target="_blank">Windows 10 and later</a>
|
||||
- ✅ <a href="https://learn.microsoft.com/windows/release-health/windows-server-release-info" target="_blank">Windows Server 2016 and later</a>
|
||||
ms.date: 12/31/2017
|
||||
---
|
||||
|
||||
|
||||
@ -1,24 +1,15 @@
|
||||
---
|
||||
title: Create WMI Filters for the GPO (Windows)
|
||||
description: Learn how to use WMI filters on a GPO to make sure that each GPO for a group can only be applied to devices running the correct version of Windows.
|
||||
ms.reviewer: jekrynit
|
||||
ms.author: paoloma
|
||||
ms.prod: windows-client
|
||||
ms.localizationpriority: medium
|
||||
author: paolomatarazzo
|
||||
manager: aaroncz
|
||||
ms.collection:
|
||||
- highpri
|
||||
- tier3
|
||||
ms.topic: conceptual
|
||||
ms.date: 09/07/2021
|
||||
ms.technology: itpro-security
|
||||
appliesto:
|
||||
- ✅ <b>Windows 10</b>
|
||||
- ✅ <b>Windows 11</b>
|
||||
- ✅ <b>Windows Server 2016</b>
|
||||
- ✅ <b>Windows Server 2019</b>
|
||||
- ✅ <b>Windows Server 2022</b>
|
||||
- ✅ <a href="https://learn.microsoft.com/windows/release-health/supported-versions-windows-client" target="_blank">Windows 10 and later</a>
|
||||
- ✅ <a href="https://learn.microsoft.com/windows/release-health/windows-server-release-info" target="_blank">Windows Server 2016 and later</a>
|
||||
---
|
||||
|
||||
# Create WMI Filters for the GPO
|
||||
|
||||
@ -1,21 +1,12 @@
|
||||
---
|
||||
title: Designing a Windows Defender Firewall Strategy (Windows)
|
||||
description: Answer the question in this article to design an effective Windows Defender Firewall with Advanced Security Strategy.
|
||||
ms.reviewer: jekrynit
|
||||
ms.author: paoloma
|
||||
ms.prod: windows-client
|
||||
ms.localizationpriority: medium
|
||||
author: paolomatarazzo
|
||||
manager: aaroncz
|
||||
ms.topic: conceptual
|
||||
ms.date: 09/07/2021
|
||||
ms.technology: itpro-security
|
||||
appliesto:
|
||||
- ✅ <b>Windows 10</b>
|
||||
- ✅ <b>Windows 11</b>
|
||||
- ✅ <b>Windows Server 2016</b>
|
||||
- ✅ <b>Windows Server 2019</b>
|
||||
- ✅ <b>Windows Server 2022</b>
|
||||
- ✅ <a href="https://learn.microsoft.com/windows/release-health/supported-versions-windows-client" target="_blank">Windows 10 and later</a>
|
||||
- ✅ <a href="https://learn.microsoft.com/windows/release-health/windows-server-release-info" target="_blank">Windows Server 2016 and later</a>
|
||||
---
|
||||
|
||||
# Designing a Windows Defender Firewall with Advanced Security Strategy
|
||||
|
||||
@ -1,21 +1,12 @@
|
||||
---
|
||||
title: Determining the Trusted State of Your Devices (Windows)
|
||||
description: Learn how to define the trusted state of devices in your enterprise to help design your strategy for using Windows Defender Firewall with Advanced Security.
|
||||
ms.reviewer: jekrynit
|
||||
ms.author: paoloma
|
||||
ms.prod: windows-client
|
||||
ms.localizationpriority: medium
|
||||
author: paolomatarazzo
|
||||
manager: aaroncz
|
||||
ms.topic: conceptual
|
||||
ms.date: 09/07/2021
|
||||
ms.technology: itpro-security
|
||||
appliesto:
|
||||
- ✅ <b>Windows 10</b>
|
||||
- ✅ <b>Windows 11</b>
|
||||
- ✅ <b>Windows Server 2016</b>
|
||||
- ✅ <b>Windows Server 2019</b>
|
||||
- ✅ <b>Windows Server 2022</b>
|
||||
- ✅ <a href="https://learn.microsoft.com/windows/release-health/supported-versions-windows-client" target="_blank">Windows 10 and later</a>
|
||||
- ✅ <a href="https://learn.microsoft.com/windows/release-health/windows-server-release-info" target="_blank">Windows Server 2016 and later</a>
|
||||
---
|
||||
|
||||
# Determining the Trusted State of Your Devices
|
||||
|
||||
@ -1,21 +1,12 @@
|
||||
---
|
||||
title: Documenting the Zones (Windows)
|
||||
description: Learn how to document the zone placement of devices in your design for Windows Defender Firewall with Advanced Security.
|
||||
ms.reviewer: jekrynit
|
||||
ms.author: paoloma
|
||||
ms.prod: windows-client
|
||||
ms.localizationpriority: medium
|
||||
author: paolomatarazzo
|
||||
manager: aaroncz
|
||||
ms.topic: conceptual
|
||||
ms.date: 09/07/2021
|
||||
ms.technology: itpro-security
|
||||
appliesto:
|
||||
- ✅ <b>Windows 10</b>
|
||||
- ✅ <b>Windows 11</b>
|
||||
- ✅ <b>Windows Server 2016</b>
|
||||
- ✅ <b>Windows Server 2019</b>
|
||||
- ✅ <b>Windows Server 2022</b>
|
||||
- ✅ <a href="https://learn.microsoft.com/windows/release-health/supported-versions-windows-client" target="_blank">Windows 10 and later</a>
|
||||
- ✅ <a href="https://learn.microsoft.com/windows/release-health/windows-server-release-info" target="_blank">Windows Server 2016 and later</a>
|
||||
---
|
||||
|
||||
# Documenting the Zones
|
||||
|
||||
@ -1,21 +1,12 @@
|
||||
---
|
||||
title: Domain Isolation Policy Design Example (Windows)
|
||||
description: This example uses a fictitious company to illustrate domain isolation policy design in Windows Defender Firewall with Advanced Security.
|
||||
ms.reviewer: jekrynit
|
||||
ms.author: paoloma
|
||||
ms.prod: windows-client
|
||||
ms.localizationpriority: medium
|
||||
author: paolomatarazzo
|
||||
manager: aaroncz
|
||||
ms.topic: conceptual
|
||||
ms.date: 09/07/2021
|
||||
ms.technology: itpro-security
|
||||
appliesto:
|
||||
- ✅ <b>Windows 10</b>
|
||||
- ✅ <b>Windows 11</b>
|
||||
- ✅ <b>Windows Server 2016</b>
|
||||
- ✅ <b>Windows Server 2019</b>
|
||||
- ✅ <b>Windows Server 2022</b>
|
||||
- ✅ <a href="https://learn.microsoft.com/windows/release-health/supported-versions-windows-client" target="_blank">Windows 10 and later</a>
|
||||
- ✅ <a href="https://learn.microsoft.com/windows/release-health/windows-server-release-info" target="_blank">Windows Server 2016 and later</a>
|
||||
---
|
||||
|
||||
# Domain Isolation Policy Design Example
|
||||
|
||||
@ -1,21 +1,12 @@
|
||||
---
|
||||
title: Domain Isolation Policy Design (Windows)
|
||||
description: Learn how to design a domain isolation policy, based on which devices accept only connections from authenticated members of the same isolated domain.
|
||||
ms.reviewer: jekrynit
|
||||
ms.author: paoloma
|
||||
ms.prod: windows-client
|
||||
ms.localizationpriority: medium
|
||||
author: paolomatarazzo
|
||||
manager: aaroncz
|
||||
ms.topic: conceptual
|
||||
ms.date: 09/07/2021
|
||||
ms.technology: itpro-security
|
||||
appliesto:
|
||||
- ✅ <b>Windows 10</b>
|
||||
- ✅ <b>Windows 11</b>
|
||||
- ✅ <b>Windows Server 2016</b>
|
||||
- ✅ <b>Windows Server 2019</b>
|
||||
- ✅ <b>Windows Server 2022</b>
|
||||
- ✅ <a href="https://learn.microsoft.com/windows/release-health/supported-versions-windows-client" target="_blank">Windows 10 and later</a>
|
||||
- ✅ <a href="https://learn.microsoft.com/windows/release-health/windows-server-release-info" target="_blank">Windows Server 2016 and later</a>
|
||||
---
|
||||
|
||||
# Domain Isolation Policy Design
|
||||
|
||||
@ -1,21 +1,12 @@
|
||||
---
|
||||
title: Enable Predefined Inbound Rules (Windows)
|
||||
description: Learn the rules for Windows Defender Firewall with Advanced Security for common networking roles and functions.
|
||||
ms.reviewer: jekrynit
|
||||
ms.author: paoloma
|
||||
ms.prod: windows-client
|
||||
ms.localizationpriority: medium
|
||||
author: paolomatarazzo
|
||||
manager: aaroncz
|
||||
ms.topic: conceptual
|
||||
ms.date: 09/07/2021
|
||||
ms.technology: itpro-security
|
||||
appliesto:
|
||||
- ✅ <b>Windows 10</b>
|
||||
- ✅ <b>Windows 11</b>
|
||||
- ✅ <b>Windows Server 2016</b>
|
||||
- ✅ <b>Windows Server 2019</b>
|
||||
- ✅ <b>Windows Server 2022</b>
|
||||
- ✅ <a href="https://learn.microsoft.com/windows/release-health/supported-versions-windows-client" target="_blank">Windows 10 and later</a>
|
||||
- ✅ <a href="https://learn.microsoft.com/windows/release-health/windows-server-release-info" target="_blank">Windows Server 2016 and later</a>
|
||||
---
|
||||
|
||||
# Enable Predefined Inbound Rules
|
||||
|
||||
@ -1,21 +1,12 @@
|
||||
---
|
||||
title: Enable Predefined Outbound Rules (Windows)
|
||||
description: Learn to deploy predefined firewall rules that block outbound network traffic for common network functions in Windows Defender Firewall with Advanced Security.
|
||||
ms.reviewer: jekrynit
|
||||
ms.author: paoloma
|
||||
ms.prod: windows-client
|
||||
ms.localizationpriority: medium
|
||||
author: paolomatarazzo
|
||||
manager: aaroncz
|
||||
ms.topic: conceptual
|
||||
ms.date: 09/07/2021
|
||||
ms.technology: itpro-security
|
||||
appliesto:
|
||||
- ✅ <b>Windows 10</b>
|
||||
- ✅ <b>Windows 11</b>
|
||||
- ✅ <b>Windows Server 2016</b>
|
||||
- ✅ <b>Windows Server 2019</b>
|
||||
- ✅ <b>Windows Server 2022</b>
|
||||
- ✅ <a href="https://learn.microsoft.com/windows/release-health/supported-versions-windows-client" target="_blank">Windows 10 and later</a>
|
||||
- ✅ <a href="https://learn.microsoft.com/windows/release-health/windows-server-release-info" target="_blank">Windows Server 2016 and later</a>
|
||||
---
|
||||
|
||||
# Enable Predefined Outbound Rules
|
||||
|
||||
@ -1,21 +1,12 @@
|
||||
---
|
||||
title: Encryption Zone GPOs (Windows)
|
||||
description: Learn how to add a device to an encryption zone by adding the device account to the encryption zone group in Windows Defender Firewall with Advanced Security.
|
||||
ms.reviewer: jekrynit
|
||||
ms.author: paoloma
|
||||
ms.prod: windows-client
|
||||
ms.localizationpriority: medium
|
||||
author: paolomatarazzo
|
||||
manager: aaroncz
|
||||
ms.topic: conceptual
|
||||
ms.date: 09/08/2021
|
||||
ms.technology: itpro-security
|
||||
appliesto:
|
||||
- ✅ <b>Windows 10</b>
|
||||
- ✅ <b>Windows 11</b>
|
||||
- ✅ <b>Windows Server 2016</b>
|
||||
- ✅ <b>Windows Server 2019</b>
|
||||
- ✅ <b>Windows Server 2022</b>
|
||||
- ✅ <a href="https://learn.microsoft.com/windows/release-health/supported-versions-windows-client" target="_blank">Windows 10 and later</a>
|
||||
- ✅ <a href="https://learn.microsoft.com/windows/release-health/windows-server-release-info" target="_blank">Windows Server 2016 and later</a>
|
||||
---
|
||||
|
||||
# Encryption Zone GPOs
|
||||
|
||||
@ -1,21 +1,12 @@
|
||||
---
|
||||
title: Encryption Zone (Windows)
|
||||
description: Learn how to create an encryption zone to contain devices that host sensitive data and require that the sensitive network traffic be encrypted.
|
||||
ms.reviewer: jekrynit
|
||||
ms.author: paoloma
|
||||
ms.prod: windows-client
|
||||
ms.localizationpriority: medium
|
||||
author: paolomatarazzo
|
||||
manager: aaroncz
|
||||
ms.topic: conceptual
|
||||
ms.date: 09/08/2021
|
||||
ms.technology: itpro-security
|
||||
appliesto:
|
||||
- ✅ <b>Windows 10</b>
|
||||
- ✅ <b>Windows 11</b>
|
||||
- ✅ <b>Windows Server 2016</b>
|
||||
- ✅ <b>Windows Server 2019</b>
|
||||
- ✅ <b>Windows Server 2022</b>
|
||||
- ✅ <a href="https://learn.microsoft.com/windows/release-health/supported-versions-windows-client" target="_blank">Windows 10 and later</a>
|
||||
- ✅ <a href="https://learn.microsoft.com/windows/release-health/windows-server-release-info" target="_blank">Windows Server 2016 and later</a>
|
||||
---
|
||||
|
||||
# Encryption Zone
|
||||
|
||||
@ -1,21 +1,12 @@
|
||||
---
|
||||
title: Exempt ICMP from Authentication (Windows)
|
||||
description: Learn how to add exemptions for any network traffic that uses the ICMP protocol in Windows Defender Firewall with Advanced Security.
|
||||
ms.reviewer: jekrynit
|
||||
ms.author: paoloma
|
||||
ms.prod: windows-client
|
||||
ms.localizationpriority: medium
|
||||
author: paolomatarazzo
|
||||
manager: aaroncz
|
||||
ms.topic: conceptual
|
||||
ms.date: 09/08/2021
|
||||
ms.technology: itpro-security
|
||||
appliesto:
|
||||
- ✅ <b>Windows 10</b>
|
||||
- ✅ <b>Windows 11</b>
|
||||
- ✅ <b>Windows Server 2016</b>
|
||||
- ✅ <b>Windows Server 2019</b>
|
||||
- ✅ <b>Windows Server 2022</b>
|
||||
- ✅ <a href="https://learn.microsoft.com/windows/release-health/supported-versions-windows-client" target="_blank">Windows 10 and later</a>
|
||||
- ✅ <a href="https://learn.microsoft.com/windows/release-health/windows-server-release-info" target="_blank">Windows Server 2016 and later</a>
|
||||
---
|
||||
|
||||
# Exempt ICMP from Authentication
|
||||
|
||||
@ -1,21 +1,12 @@
|
||||
---
|
||||
title: Exemption List (Windows)
|
||||
description: Learn about reasons to add devices to an exemption list in Windows Defender Firewall with Advanced Security and the trade-offs of having too many exemptions.
|
||||
ms.reviewer: jekrynit
|
||||
ms.author: paoloma
|
||||
ms.prod: windows-client
|
||||
ms.localizationpriority: medium
|
||||
author: paolomatarazzo
|
||||
manager: aaroncz
|
||||
ms.topic: conceptual
|
||||
ms.date: 09/08/2021
|
||||
ms.technology: itpro-security
|
||||
appliesto:
|
||||
- ✅ <b>Windows 10</b>
|
||||
- ✅ <b>Windows 11</b>
|
||||
- ✅ <b>Windows Server 2016</b>
|
||||
- ✅ <b>Windows Server 2019</b>
|
||||
- ✅ <b>Windows Server 2022</b>
|
||||
- ✅ <a href="https://learn.microsoft.com/windows/release-health/supported-versions-windows-client" target="_blank">Windows 10 and later</a>
|
||||
- ✅ <a href="https://learn.microsoft.com/windows/release-health/windows-server-release-info" target="_blank">Windows Server 2016 and later</a>
|
||||
---
|
||||
|
||||
# Exemption List
|
||||
|
||||
@ -1,20 +1,11 @@
|
||||
---
|
||||
title: Filter origin audit log improvements
|
||||
description: Filter origin documentation audit log improvements
|
||||
ms.reviewer: jekrynit
|
||||
ms.author: paoloma
|
||||
ms.prod: windows-client
|
||||
ms.localizationpriority: normal
|
||||
author: paolomatarazzo
|
||||
manager: aaroncz
|
||||
ms.topic: troubleshooting
|
||||
ms.technology: itpro-security
|
||||
appliesto:
|
||||
- ✅ <b>Windows 10</b>
|
||||
- ✅ <b>Windows 11</b>
|
||||
- ✅ <b>Windows Server 2016</b>
|
||||
- ✅ <b>Windows Server 2019</b>
|
||||
- ✅ <b>Windows Server 2022</b>
|
||||
- ✅ <a href="https://learn.microsoft.com/windows/release-health/supported-versions-windows-client" target="_blank">Windows 10 and later</a>
|
||||
- ✅ <a href="https://learn.microsoft.com/windows/release-health/windows-server-release-info" target="_blank">Windows Server 2016 and later</a>
|
||||
ms.date: 12/31/2017
|
||||
---
|
||||
|
||||
|
||||
@ -1,21 +1,12 @@
|
||||
---
|
||||
title: Firewall GPOs (Windows)
|
||||
description: In this example, a Group Policy Object is linked to the domain container because the domain controllers aren't part of the isolated domain.
|
||||
ms.reviewer: jekrynit
|
||||
ms.author: paoloma
|
||||
ms.prod: windows-client
|
||||
ms.localizationpriority: medium
|
||||
author: paolomatarazzo
|
||||
manager: aaroncz
|
||||
ms.topic: conceptual
|
||||
ms.date: 09/08/2021
|
||||
ms.technology: itpro-security
|
||||
appliesto:
|
||||
- ✅ <b>Windows 10</b>
|
||||
- ✅ <b>Windows 11</b>
|
||||
- ✅ <b>Windows Server 2016</b>
|
||||
- ✅ <b>Windows Server 2019</b>
|
||||
- ✅ <b>Windows Server 2022</b>
|
||||
- ✅ <a href="https://learn.microsoft.com/windows/release-health/supported-versions-windows-client" target="_blank">Windows 10 and later</a>
|
||||
- ✅ <a href="https://learn.microsoft.com/windows/release-health/windows-server-release-info" target="_blank">Windows Server 2016 and later</a>
|
||||
---
|
||||
|
||||
# Firewall GPOs
|
||||
|
||||
@ -1,21 +1,12 @@
|
||||
---
|
||||
title: Basic Firewall Policy Design Example (Windows)
|
||||
description: This example features a fictitious company and illustrates firewall policy design for Windows Defender Firewall with Advanced Security.
|
||||
ms.reviewer: jekrynit
|
||||
ms.author: paoloma
|
||||
ms.prod: windows-client
|
||||
ms.localizationpriority: medium
|
||||
author: paolomatarazzo
|
||||
manager: aaroncz
|
||||
ms.topic: conceptual
|
||||
ms.date: 09/08/2021
|
||||
ms.technology: itpro-security
|
||||
appliesto:
|
||||
- ✅ <b>Windows 10</b>
|
||||
- ✅ <b>Windows 11</b>
|
||||
- ✅ <b>Windows Server 2016</b>
|
||||
- ✅ <b>Windows Server 2019</b>
|
||||
- ✅ <b>Windows Server 2022</b>
|
||||
- ✅ <a href="https://learn.microsoft.com/windows/release-health/supported-versions-windows-client" target="_blank">Windows 10 and later</a>
|
||||
- ✅ <a href="https://learn.microsoft.com/windows/release-health/windows-server-release-info" target="_blank">Windows Server 2016 and later</a>
|
||||
---
|
||||
|
||||
# Basic Firewall Policy Design Example
|
||||
|
||||
@ -1,20 +1,11 @@
|
||||
---
|
||||
title: Troubleshooting Windows Firewall settings after a Windows upgrade
|
||||
description: Firewall settings lost on upgrade
|
||||
ms.reviewer: jekrynit
|
||||
ms.author: paoloma
|
||||
ms.prod: windows-client
|
||||
ms.localizationpriority: medium
|
||||
author: paolomatarazzo
|
||||
manager: aaroncz
|
||||
ms.topic: troubleshooting
|
||||
ms.technology: itpro-security
|
||||
appliesto:
|
||||
- ✅ <b>Windows 10</b>
|
||||
- ✅ <b>Windows 11</b>
|
||||
- ✅ <b>Windows Server 2016</b>
|
||||
- ✅ <b>Windows Server 2019</b>
|
||||
- ✅ <b>Windows Server 2022</b>
|
||||
- ✅ <a href="https://learn.microsoft.com/windows/release-health/supported-versions-windows-client" target="_blank">Windows 10 and later</a>
|
||||
- ✅ <a href="https://learn.microsoft.com/windows/release-health/windows-server-release-info" target="_blank">Windows Server 2016 and later</a>
|
||||
ms.date: 12/31/2017
|
||||
---
|
||||
|
||||
|
||||
@ -1,21 +1,12 @@
|
||||
---
|
||||
title: Gathering Information about Your Active Directory Deployment (Windows)
|
||||
description: Learn about gathering Active Directory information, including domain layout, organizational unit architecture, and site topology, for your firewall deployment.
|
||||
ms.reviewer: jekrynit
|
||||
ms.author: paoloma
|
||||
ms.prod: windows-client
|
||||
ms.localizationpriority: medium
|
||||
author: paolomatarazzo
|
||||
manager: aaroncz
|
||||
ms.topic: conceptual
|
||||
ms.date: 09/08/2021
|
||||
ms.technology: itpro-security
|
||||
appliesto:
|
||||
- ✅ <b>Windows 10</b>
|
||||
- ✅ <b>Windows 11</b>
|
||||
- ✅ <b>Windows Server 2016</b>
|
||||
- ✅ <b>Windows Server 2019</b>
|
||||
- ✅ <b>Windows Server 2022</b>
|
||||
- ✅ <a href="https://learn.microsoft.com/windows/release-health/supported-versions-windows-client" target="_blank">Windows 10 and later</a>
|
||||
- ✅ <a href="https://learn.microsoft.com/windows/release-health/windows-server-release-info" target="_blank">Windows Server 2016 and later</a>
|
||||
---
|
||||
|
||||
# Gathering Information about Your Active Directory Deployment
|
||||
|
||||
@ -1,21 +1,12 @@
|
||||
---
|
||||
title: Gathering Info about Your Network Infrastructure (Windows)
|
||||
description: Learn how to gather info about your network infrastructure so that you can effectively plan for Windows Defender Firewall with Advanced Security deployment.
|
||||
ms.reviewer: jekrynit
|
||||
ms.author: paoloma
|
||||
ms.prod: windows-client
|
||||
ms.localizationpriority: medium
|
||||
author: paolomatarazzo
|
||||
manager: aaroncz
|
||||
ms.topic: conceptual
|
||||
ms.date: 09/08/2021
|
||||
ms.technology: itpro-security
|
||||
appliesto:
|
||||
- ✅ <b>Windows 10</b>
|
||||
- ✅ <b>Windows 11</b>
|
||||
- ✅ <b>Windows Server 2016</b>
|
||||
- ✅ <b>Windows Server 2019</b>
|
||||
- ✅ <b>Windows Server 2022</b>
|
||||
- ✅ <a href="https://learn.microsoft.com/windows/release-health/supported-versions-windows-client" target="_blank">Windows 10 and later</a>
|
||||
- ✅ <a href="https://learn.microsoft.com/windows/release-health/windows-server-release-info" target="_blank">Windows Server 2016 and later</a>
|
||||
---
|
||||
|
||||
# Gathering Information about Your Current Network Infrastructure
|
||||
|
||||
@ -1,21 +1,12 @@
|
||||
---
|
||||
title: Gathering Information about Your Devices (Windows)
|
||||
description: Learn what information to gather about the devices in your enterprise to plan your Windows Defender Firewall with Advanced Security deployment.
|
||||
ms.reviewer: jekrynit
|
||||
ms.author: paoloma
|
||||
ms.prod: windows-client
|
||||
ms.localizationpriority: medium
|
||||
author: paolomatarazzo
|
||||
manager: aaroncz
|
||||
ms.topic: conceptual
|
||||
ms.date: 09/08/2021
|
||||
ms.technology: itpro-security
|
||||
appliesto:
|
||||
- ✅ <b>Windows 10</b>
|
||||
- ✅ <b>Windows 11</b>
|
||||
- ✅ <b>Windows Server 2016</b>
|
||||
- ✅ <b>Windows Server 2019</b>
|
||||
- ✅ <b>Windows Server 2022</b>
|
||||
- ✅ <a href="https://learn.microsoft.com/windows/release-health/supported-versions-windows-client" target="_blank">Windows 10 and later</a>
|
||||
- ✅ <a href="https://learn.microsoft.com/windows/release-health/windows-server-release-info" target="_blank">Windows Server 2016 and later</a>
|
||||
---
|
||||
|
||||
# Gathering Information about Your Devices
|
||||
|
||||
@ -1,21 +1,12 @@
|
||||
---
|
||||
title: Gathering Other Relevant Information (Windows)
|
||||
description: Learn about additional information you may need to gather to deploy Windows Defender Firewall with Advanced Security policies in your organization.
|
||||
ms.reviewer: jekrynit
|
||||
ms.author: paoloma
|
||||
ms.prod: windows-client
|
||||
ms.localizationpriority: medium
|
||||
author: paolomatarazzo
|
||||
manager: aaroncz
|
||||
ms.topic: conceptual
|
||||
ms.date: 09/08/2021
|
||||
ms.technology: itpro-security
|
||||
appliesto:
|
||||
- ✅ <b>Windows 10</b>
|
||||
- ✅ <b>Windows 11</b>
|
||||
- ✅ <b>Windows Server 2016</b>
|
||||
- ✅ <b>Windows Server 2019</b>
|
||||
- ✅ <b>Windows Server 2022</b>
|
||||
- ✅ <a href="https://learn.microsoft.com/windows/release-health/supported-versions-windows-client" target="_blank">Windows 10 and later</a>
|
||||
- ✅ <a href="https://learn.microsoft.com/windows/release-health/windows-server-release-info" target="_blank">Windows Server 2016 and later</a>
|
||||
---
|
||||
|
||||
# Gathering Other Relevant Information
|
||||
|
||||
@ -1,21 +1,12 @@
|
||||
---
|
||||
title: Gathering the Information You Need (Windows)
|
||||
description: Collect and analyze information about your network, directory services, and devices to prepare for Windows Defender Firewall with Advanced Security deployment.
|
||||
ms.reviewer: jekrynit
|
||||
ms.author: paoloma
|
||||
ms.prod: windows-client
|
||||
ms.localizationpriority: medium
|
||||
author: paolomatarazzo
|
||||
manager: aaroncz
|
||||
ms.topic: conceptual
|
||||
ms.date: 09/08/2021
|
||||
ms.technology: itpro-security
|
||||
appliesto:
|
||||
- ✅ <b>Windows 10</b>
|
||||
- ✅ <b>Windows 11</b>
|
||||
- ✅ <b>Windows Server 2016</b>
|
||||
- ✅ <b>Windows Server 2019</b>
|
||||
- ✅ <b>Windows Server 2022</b>
|
||||
- ✅ <a href="https://learn.microsoft.com/windows/release-health/supported-versions-windows-client" target="_blank">Windows 10 and later</a>
|
||||
- ✅ <a href="https://learn.microsoft.com/windows/release-health/windows-server-release-info" target="_blank">Windows Server 2016 and later</a>
|
||||
---
|
||||
|
||||
# Gathering the Information You Need
|
||||
|
||||
@ -1,21 +1,12 @@
|
||||
---
|
||||
title: GPO\_DOMISO\_Boundary (Windows)
|
||||
description: This example GPO supports devices that aren't part of the isolated domain to access specific servers that must be available to those untrusted devices.
|
||||
ms.reviewer: jekrynit
|
||||
ms.author: paoloma
|
||||
ms.prod: windows-client
|
||||
ms.localizationpriority: medium
|
||||
author: paolomatarazzo
|
||||
manager: aaroncz
|
||||
ms.topic: conceptual
|
||||
ms.date: 09/08/2021
|
||||
ms.technology: itpro-security
|
||||
appliesto:
|
||||
- ✅ <b>Windows 10</b>
|
||||
- ✅ <b>Windows 11</b>
|
||||
- ✅ <b>Windows Server 2016</b>
|
||||
- ✅ <b>Windows Server 2019</b>
|
||||
- ✅ <b>Windows Server 2022</b>
|
||||
- ✅ <a href="https://learn.microsoft.com/windows/release-health/supported-versions-windows-client" target="_blank">Windows 10 and later</a>
|
||||
- ✅ <a href="https://learn.microsoft.com/windows/release-health/windows-server-release-info" target="_blank">Windows Server 2016 and later</a>
|
||||
---
|
||||
|
||||
# GPO\_DOMISO\_Boundary
|
||||
|
||||
@ -1,21 +1,12 @@
|
||||
---
|
||||
title: GPO\_DOMISO\_Encryption\_WS2008 (Windows)
|
||||
description: This example GPO supports the ability for servers that contain sensitive data to require encryption for all connection requests.
|
||||
ms.reviewer: jekrynit
|
||||
ms.author: paoloma
|
||||
author: paolomatarazzo
|
||||
manager: aaroncz
|
||||
ms.topic: conceptual
|
||||
ms.prod: windows-client
|
||||
ms.localizationpriority: medium
|
||||
ms.date: 09/08/2021
|
||||
ms.technology: itpro-security
|
||||
appliesto:
|
||||
- ✅ <b>Windows 10</b>
|
||||
- ✅ <b>Windows 11</b>
|
||||
- ✅ <b>Windows Server 2016</b>
|
||||
- ✅ <b>Windows Server 2019</b>
|
||||
- ✅ <b>Windows Server 2022</b>
|
||||
- ✅ <a href="https://learn.microsoft.com/windows/release-health/supported-versions-windows-client" target="_blank">Windows 10 and later</a>
|
||||
- ✅ <a href="https://learn.microsoft.com/windows/release-health/windows-server-release-info" target="_blank">Windows Server 2016 and later</a>
|
||||
---
|
||||
|
||||
# GPO\_DOMISO\_Encryption\_WS2008
|
||||
|
||||
@ -1,21 +1,12 @@
|
||||
---
|
||||
title: GPO\_DOMISO\_Firewall (Windows)
|
||||
description: Learn about the settings and rules in this example GPO, which is authored by using the Group Policy editing tools.
|
||||
ms.reviewer: jekrynit
|
||||
ms.author: paoloma
|
||||
ms.prod: windows-client
|
||||
ms.localizationpriority: medium
|
||||
author: paolomatarazzo
|
||||
manager: aaroncz
|
||||
ms.topic: conceptual
|
||||
ms.date: 09/08/2021
|
||||
ms.technology: itpro-security
|
||||
appliesto:
|
||||
- ✅ <b>Windows 10</b>
|
||||
- ✅ <b>Windows 11</b>
|
||||
- ✅ <b>Windows Server 2016</b>
|
||||
- ✅ <b>Windows Server 2019</b>
|
||||
- ✅ <b>Windows Server 2022</b>
|
||||
- ✅ <a href="https://learn.microsoft.com/windows/release-health/supported-versions-windows-client" target="_blank">Windows 10 and later</a>
|
||||
- ✅ <a href="https://learn.microsoft.com/windows/release-health/windows-server-release-info" target="_blank">Windows Server 2016 and later</a>
|
||||
---
|
||||
|
||||
# GPO\_DOMISO\_Firewall
|
||||
|
||||
@ -1,21 +1,12 @@
|
||||
---
|
||||
title: GPO\_DOMISO\_IsolatedDomain\_Clients (Windows)
|
||||
description: Author this GPO by using Windows Defender Firewall with Advanced Security interface in the Group Policy editing tools.
|
||||
ms.reviewer: jekrynit
|
||||
ms.author: paoloma
|
||||
ms.prod: windows-client
|
||||
ms.localizationpriority: medium
|
||||
author: paolomatarazzo
|
||||
manager: aaroncz
|
||||
ms.topic: conceptual
|
||||
ms.date: 09/08/2021
|
||||
ms.technology: itpro-security
|
||||
appliesto:
|
||||
- ✅ <b>Windows 10</b>
|
||||
- ✅ <b>Windows 11</b>
|
||||
- ✅ <b>Windows Server 2016</b>
|
||||
- ✅ <b>Windows Server 2019</b>
|
||||
- ✅ <b>Windows Server 2022</b>
|
||||
- ✅ <a href="https://learn.microsoft.com/windows/release-health/supported-versions-windows-client" target="_blank">Windows 10 and later</a>
|
||||
- ✅ <a href="https://learn.microsoft.com/windows/release-health/windows-server-release-info" target="_blank">Windows Server 2016 and later</a>
|
||||
---
|
||||
|
||||
# GPO\_DOMISO\_IsolatedDomain\_Clients
|
||||
|
||||
@ -1,21 +1,12 @@
|
||||
---
|
||||
title: GPO\_DOMISO\_IsolatedDomain\_Servers (Windows)
|
||||
description: Author this GPO by using the Windows Defender Firewall with Advanced Security interface in the Group Policy editing tools.
|
||||
ms.reviewer: jekrynit
|
||||
ms.author: paoloma
|
||||
ms.prod: windows-client
|
||||
ms.localizationpriority: medium
|
||||
author: paolomatarazzo
|
||||
manager: aaroncz
|
||||
ms.topic: conceptual
|
||||
ms.date: 09/08/2021
|
||||
ms.technology: itpro-security
|
||||
appliesto:
|
||||
- ✅ <b>Windows 10</b>
|
||||
- ✅ <b>Windows 11</b>
|
||||
- ✅ <b>Windows Server 2016</b>
|
||||
- ✅ <b>Windows Server 2019</b>
|
||||
- ✅ <b>Windows Server 2022</b>
|
||||
- ✅ <a href="https://learn.microsoft.com/windows/release-health/supported-versions-windows-client" target="_blank">Windows 10 and later</a>
|
||||
- ✅ <a href="https://learn.microsoft.com/windows/release-health/windows-server-release-info" target="_blank">Windows Server 2016 and later</a>
|
||||
---
|
||||
|
||||
# GPO\_DOMISO\_IsolatedDomain\_Servers
|
||||
|
||||
@ -1,21 +1,12 @@
|
||||
---
|
||||
title: Identify implementation goals for Windows Defender Firewall with Advanced Security Deployment (Windows)
|
||||
description: Identifying Your Windows Defender Firewall with Advanced Security (WFAS) implementation goals
|
||||
ms.reviewer: jekrynit
|
||||
ms.author: paoloma
|
||||
ms.prod: windows-client
|
||||
ms.localizationpriority: medium
|
||||
author: paolomatarazzo
|
||||
manager: aaroncz
|
||||
ms.topic: conceptual
|
||||
ms.date: 09/08/2021
|
||||
ms.technology: itpro-security
|
||||
appliesto:
|
||||
- ✅ <b>Windows 10</b>
|
||||
- ✅ <b>Windows 11</b>
|
||||
- ✅ <b>Windows Server 2016</b>
|
||||
- ✅ <b>Windows Server 2019</b>
|
||||
- ✅ <b>Windows Server 2022</b>
|
||||
- ✅ <a href="https://learn.microsoft.com/windows/release-health/supported-versions-windows-client" target="_blank">Windows 10 and later</a>
|
||||
- ✅ <a href="https://learn.microsoft.com/windows/release-health/windows-server-release-info" target="_blank">Windows Server 2016 and later</a>
|
||||
---
|
||||
|
||||
# Identifying Windows Defender Firewall with Advanced Security implementation goals
|
||||
|
||||
@ -1,21 +1,12 @@
|
||||
---
|
||||
title: Implementing Your Windows Defender Firewall with Advanced Security Design Plan (Windows)
|
||||
description: Implementing Your Windows Defender Firewall with Advanced Security Design Plan
|
||||
ms.reviewer: jekrynit
|
||||
ms.author: paoloma
|
||||
ms.prod: windows-client
|
||||
ms.localizationpriority: medium
|
||||
author: paolomatarazzo
|
||||
manager: aaroncz
|
||||
ms.topic: conceptual
|
||||
ms.date: 09/08/2021
|
||||
ms.technology: itpro-security
|
||||
appliesto:
|
||||
- ✅ <b>Windows 10</b>
|
||||
- ✅ <b>Windows 11</b>
|
||||
- ✅ <b>Windows Server 2016</b>
|
||||
- ✅ <b>Windows Server 2019</b>
|
||||
- ✅ <b>Windows Server 2022</b>
|
||||
- ✅ <a href="https://learn.microsoft.com/windows/release-health/supported-versions-windows-client" target="_blank">Windows 10 and later</a>
|
||||
- ✅ <a href="https://learn.microsoft.com/windows/release-health/windows-server-release-info" target="_blank">Windows Server 2016 and later</a>
|
||||
---
|
||||
|
||||
# Implementing Your Windows Defender Firewall with Advanced Security Design Plan
|
||||
|
||||
@ -1,21 +1,12 @@
|
||||
---
|
||||
title: Isolated Domain GPOs (Windows)
|
||||
description: Learn about GPOs for isolated domains in this example configuration of Windows Defender Firewall with Advanced Security.
|
||||
ms.reviewer: jekrynit
|
||||
ms.author: paoloma
|
||||
ms.prod: windows-client
|
||||
ms.localizationpriority: medium
|
||||
author: paolomatarazzo
|
||||
manager: aaroncz
|
||||
ms.topic: conceptual
|
||||
ms.date: 09/08/2021
|
||||
ms.technology: itpro-security
|
||||
appliesto:
|
||||
- ✅ <b>Windows 10</b>
|
||||
- ✅ <b>Windows 11</b>
|
||||
- ✅ <b>Windows Server 2016</b>
|
||||
- ✅ <b>Windows Server 2019</b>
|
||||
- ✅ <b>Windows Server 2022</b>
|
||||
- ✅ <a href="https://learn.microsoft.com/windows/release-health/supported-versions-windows-client" target="_blank">Windows 10 and later</a>
|
||||
- ✅ <a href="https://learn.microsoft.com/windows/release-health/windows-server-release-info" target="_blank">Windows Server 2016 and later</a>
|
||||
---
|
||||
|
||||
# Isolated Domain GPOs
|
||||
|
||||
@ -1,21 +1,12 @@
|
||||
---
|
||||
title: Isolated Domain (Windows)
|
||||
description: Learn about the isolated domain, which is the primary zone for trusted devices, which use connection security and firewall rules to control communication.
|
||||
ms.reviewer: jekrynit
|
||||
ms.author: paoloma
|
||||
ms.prod: windows-client
|
||||
ms.localizationpriority: medium
|
||||
author: paolomatarazzo
|
||||
manager: aaroncz
|
||||
ms.topic: conceptual
|
||||
ms.date: 09/08/2021
|
||||
ms.technology: itpro-security
|
||||
appliesto:
|
||||
- ✅ <b>Windows 10</b>
|
||||
- ✅ <b>Windows 11</b>
|
||||
- ✅ <b>Windows Server 2016</b>
|
||||
- ✅ <b>Windows Server 2019</b>
|
||||
- ✅ <b>Windows Server 2022</b>
|
||||
- ✅ <a href="https://learn.microsoft.com/windows/release-health/supported-versions-windows-client" target="_blank">Windows 10 and later</a>
|
||||
- ✅ <a href="https://learn.microsoft.com/windows/release-health/windows-server-release-info" target="_blank">Windows Server 2016 and later</a>
|
||||
---
|
||||
|
||||
# Isolated Domain
|
||||
|
||||
@ -2,20 +2,11 @@
|
||||
title: Isolating Microsoft Store Apps on Your Network (Windows)
|
||||
description: Learn how to customize your firewall configuration to isolate the network access of the new Microsoft Store apps that run on devices added to your network.
|
||||
ms.prod: windows-client
|
||||
ms.localizationpriority: medium
|
||||
author: paolomatarazzo
|
||||
manager: aaroncz
|
||||
ms.topic: conceptual
|
||||
ms.date: 09/08/2021
|
||||
ms.reviewer: jekrynit
|
||||
ms.author: paoloma
|
||||
ms.technology: itpro-security
|
||||
appliesto:
|
||||
- ✅ <b>Windows 10</b>
|
||||
- ✅ <b>Windows 11</b>
|
||||
- ✅ <b>Windows Server 2016</b>
|
||||
- ✅ <b>Windows Server 2019</b>
|
||||
- ✅ <b>Windows Server 2022</b>
|
||||
- ✅ <a href="https://learn.microsoft.com/windows/release-health/supported-versions-windows-client" target="_blank">Windows 10 and later</a>
|
||||
- ✅ <a href="https://learn.microsoft.com/windows/release-health/windows-server-release-info" target="_blank">Windows Server 2016 and later</a>
|
||||
---
|
||||
|
||||
# Isolating Microsoft Store Apps on Your Network
|
||||
|
||||
@ -1,21 +1,12 @@
|
||||
---
|
||||
title: Link the GPO to the Domain (Windows)
|
||||
description: Learn how to link a GPO to the Active Directory container for the target devices, after you configure it in Windows Defender Firewall with Advanced Security.
|
||||
ms.reviewer: jekrynit
|
||||
ms.author: paoloma
|
||||
ms.prod: windows-client
|
||||
ms.localizationpriority: medium
|
||||
author: paolomatarazzo
|
||||
manager: aaroncz
|
||||
ms.topic: conceptual
|
||||
ms.date: 09/08/2021
|
||||
ms.technology: itpro-security
|
||||
appliesto:
|
||||
- ✅ <b>Windows 10</b>
|
||||
- ✅ <b>Windows 11</b>
|
||||
- ✅ <b>Windows Server 2016</b>
|
||||
- ✅ <b>Windows Server 2019</b>
|
||||
- ✅ <b>Windows Server 2022</b>
|
||||
- ✅ <a href="https://learn.microsoft.com/windows/release-health/supported-versions-windows-client" target="_blank">Windows 10 and later</a>
|
||||
- ✅ <a href="https://learn.microsoft.com/windows/release-health/windows-server-release-info" target="_blank">Windows Server 2016 and later</a>
|
||||
---
|
||||
|
||||
# Link the GPO to the Domain
|
||||
|
||||
@ -1,21 +1,12 @@
|
||||
---
|
||||
title: Mapping your implementation goals to a Windows Firewall with Advanced Security design (Windows)
|
||||
description: Mapping your implementation goals to a Windows Firewall with Advanced Security design
|
||||
ms.reviewer: jekrynit
|
||||
ms.author: paoloma
|
||||
ms.prod: windows-client
|
||||
ms.localizationpriority: medium
|
||||
author: paolomatarazzo
|
||||
manager: aaroncz
|
||||
ms.topic: conceptual
|
||||
ms.date: 09/08/2021
|
||||
ms.technology: itpro-security
|
||||
appliesto:
|
||||
- ✅ <b>Windows 10</b>
|
||||
- ✅ <b>Windows 11</b>
|
||||
- ✅ <b>Windows Server 2016</b>
|
||||
- ✅ <b>Windows Server 2019</b>
|
||||
- ✅ <b>Windows Server 2022</b>
|
||||
- ✅ <a href="https://learn.microsoft.com/windows/release-health/supported-versions-windows-client" target="_blank">Windows 10 and later</a>
|
||||
- ✅ <a href="https://learn.microsoft.com/windows/release-health/windows-server-release-info" target="_blank">Windows Server 2016 and later</a>
|
||||
---
|
||||
|
||||
# Mapping your implementation goals to a Windows Firewall with Advanced Security design
|
||||
|
||||
@ -1,21 +1,12 @@
|
||||
---
|
||||
title: Modify GPO Filters (Windows)
|
||||
description: Learn how to modify GPO filters to apply to a different zone or version of windows in Windows Defender Firewall with Advanced Security.
|
||||
ms.reviewer: jekrynit
|
||||
ms.author: paoloma
|
||||
ms.prod: windows-client
|
||||
ms.localizationpriority: medium
|
||||
author: paolomatarazzo
|
||||
manager: aaroncz
|
||||
ms.topic: conceptual
|
||||
ms.date: 09/08/2021
|
||||
ms.technology: itpro-security
|
||||
appliesto:
|
||||
- ✅ <b>Windows 10</b>
|
||||
- ✅ <b>Windows 11</b>
|
||||
- ✅ <b>Windows Server 2016</b>
|
||||
- ✅ <b>Windows Server 2019</b>
|
||||
- ✅ <b>Windows Server 2022</b>
|
||||
- ✅ <a href="https://learn.microsoft.com/windows/release-health/supported-versions-windows-client" target="_blank">Windows 10 and later</a>
|
||||
- ✅ <a href="https://learn.microsoft.com/windows/release-health/windows-server-release-info" target="_blank">Windows Server 2016 and later</a>
|
||||
---
|
||||
|
||||
# Modify GPO Filters to Apply to a Different Zone or Version of Windows
|
||||
|
||||
@ -1,21 +1,12 @@
|
||||
---
|
||||
title: Open the Group Policy Management Console to IP Security Policies (Windows)
|
||||
description: Learn how to open the Group Policy Management Console to IP Security Policies to configure GPOs for earlier versions of the Windows operating system.
|
||||
ms.reviewer: jekrynit
|
||||
ms.author: paoloma
|
||||
ms.prod: windows-client
|
||||
ms.localizationpriority: medium
|
||||
author: paolomatarazzo
|
||||
manager: aaroncz
|
||||
ms.topic: conceptual
|
||||
ms.date: 09/08/2021
|
||||
ms.technology: itpro-security
|
||||
appliesto:
|
||||
- ✅ <b>Windows 10</b>
|
||||
- ✅ <b>Windows 11</b>
|
||||
- ✅ <b>Windows Server 2016</b>
|
||||
- ✅ <b>Windows Server 2019</b>
|
||||
- ✅ <b>Windows Server 2022</b>
|
||||
- ✅ <a href="https://learn.microsoft.com/windows/release-health/supported-versions-windows-client" target="_blank">Windows 10 and later</a>
|
||||
- ✅ <a href="https://learn.microsoft.com/windows/release-health/windows-server-release-info" target="_blank">Windows Server 2016 and later</a>
|
||||
---
|
||||
|
||||
# Open the Group Policy Management Console to IP Security Policies
|
||||
|
||||
@ -1,24 +1,15 @@
|
||||
---
|
||||
title: Group Policy Management of Windows Firewall with Advanced Security (Windows)
|
||||
description: Group Policy Management of Windows Firewall with Advanced Security
|
||||
ms.reviewer: jekrynit
|
||||
ms.author: paoloma
|
||||
ms.prod: windows-client
|
||||
ms.localizationpriority: medium
|
||||
author: paolomatarazzo
|
||||
manager: aaroncz
|
||||
ms.collection:
|
||||
- highpri
|
||||
- tier3
|
||||
ms.topic: conceptual
|
||||
ms.date: 09/08/2021
|
||||
ms.technology: itpro-security
|
||||
appliesto:
|
||||
- ✅ <b>Windows 10</b>
|
||||
- ✅ <b>Windows 11</b>
|
||||
- ✅ <b>Windows Server 2016</b>
|
||||
- ✅ <b>Windows Server 2019</b>
|
||||
- ✅ <b>Windows Server 2022</b>
|
||||
- ✅ <a href="https://learn.microsoft.com/windows/release-health/supported-versions-windows-client" target="_blank">Windows 10 and later</a>
|
||||
- ✅ <a href="https://learn.microsoft.com/windows/release-health/windows-server-release-info" target="_blank">Windows Server 2016 and later</a>
|
||||
---
|
||||
|
||||
# Group Policy Management of Windows Firewall with Advanced Security
|
||||
|
||||
@ -1,21 +1,12 @@
|
||||
---
|
||||
title: Group Policy Management of Windows Defender Firewall (Windows)
|
||||
description: Group Policy Management of Windows Defender Firewall with Advanced Security
|
||||
ms.reviewer: jekrynit
|
||||
ms.author: paoloma
|
||||
ms.prod: windows-client
|
||||
ms.localizationpriority: medium
|
||||
author: paolomatarazzo
|
||||
manager: aaroncz
|
||||
ms.topic: conceptual
|
||||
ms.date: 09/08/2021
|
||||
ms.technology: itpro-security
|
||||
appliesto:
|
||||
- ✅ <b>Windows 10</b>
|
||||
- ✅ <b>Windows 11</b>
|
||||
- ✅ <b>Windows Server 2016</b>
|
||||
- ✅ <b>Windows Server 2019</b>
|
||||
- ✅ <b>Windows Server 2022</b>
|
||||
- ✅ <a href="https://learn.microsoft.com/windows/release-health/supported-versions-windows-client" target="_blank">Windows 10 and later</a>
|
||||
- ✅ <a href="https://learn.microsoft.com/windows/release-health/windows-server-release-info" target="_blank">Windows Server 2016 and later</a>
|
||||
---
|
||||
|
||||
# Group Policy Management of Windows Defender Firewall
|
||||
|
||||
@ -1,21 +1,12 @@
|
||||
---
|
||||
title: Open Windows Defender Firewall with Advanced Security (Windows)
|
||||
description: Learn how to open the Windows Defender Firewall with Advanced Security console. You must be a member of the Administrators group.
|
||||
ms.reviewer: jekrynit
|
||||
ms.author: paoloma
|
||||
ms.prod: windows-client
|
||||
ms.localizationpriority: medium
|
||||
author: paolomatarazzo
|
||||
manager: aaroncz
|
||||
ms.topic: conceptual
|
||||
ms.date: 09/08/2021
|
||||
ms.technology: itpro-security
|
||||
appliesto:
|
||||
- ✅ <b>Windows 10</b>
|
||||
- ✅ <b>Windows 11</b>
|
||||
- ✅ <b>Windows Server 2016</b>
|
||||
- ✅ <b>Windows Server 2019</b>
|
||||
- ✅ <b>Windows Server 2022</b>
|
||||
- ✅ <a href="https://learn.microsoft.com/windows/release-health/supported-versions-windows-client" target="_blank">Windows 10 and later</a>
|
||||
- ✅ <a href="https://learn.microsoft.com/windows/release-health/windows-server-release-info" target="_blank">Windows Server 2016 and later</a>
|
||||
---
|
||||
|
||||
# Open Windows Defender Firewall with Advanced Security
|
||||
|
||||
@ -1,21 +1,12 @@
|
||||
---
|
||||
title: Planning Certificate-based Authentication (Windows)
|
||||
description: Learn how a device unable to join an Active Directory domain can still participate in an isolated domain by using certificate-based authentication.
|
||||
ms.reviewer: jekrynit
|
||||
ms.author: paoloma
|
||||
ms.prod: windows-client
|
||||
ms.localizationpriority: medium
|
||||
author: paolomatarazzo
|
||||
manager: aaroncz
|
||||
ms.topic: conceptual
|
||||
ms.date: 09/08/2021
|
||||
ms.technology: itpro-security
|
||||
appliesto:
|
||||
- ✅ <b>Windows 10</b>
|
||||
- ✅ <b>Windows 11</b>
|
||||
- ✅ <b>Windows Server 2016</b>
|
||||
- ✅ <b>Windows Server 2019</b>
|
||||
- ✅ <b>Windows Server 2022</b>
|
||||
- ✅ <a href="https://learn.microsoft.com/windows/release-health/supported-versions-windows-client" target="_blank">Windows 10 and later</a>
|
||||
- ✅ <a href="https://learn.microsoft.com/windows/release-health/windows-server-release-info" target="_blank">Windows Server 2016 and later</a>
|
||||
---
|
||||
|
||||
# Planning Certificate-based Authentication
|
||||
|
||||
@ -1,21 +1,12 @@
|
||||
---
|
||||
title: Planning Domain Isolation Zones (Windows)
|
||||
description: Learn how to use information you've gathered to make decisions about isolation zones for your environment in Windows Defender Firewall with Advanced Security.
|
||||
ms.reviewer: jekrynit
|
||||
ms.author: paoloma
|
||||
ms.prod: windows-client
|
||||
ms.localizationpriority: medium
|
||||
author: paolomatarazzo
|
||||
manager: aaroncz
|
||||
ms.topic: conceptual
|
||||
ms.date: 09/08/2021
|
||||
ms.technology: itpro-security
|
||||
appliesto:
|
||||
- ✅ <b>Windows 10</b>
|
||||
- ✅ <b>Windows 11</b>
|
||||
- ✅ <b>Windows Server 2016</b>
|
||||
- ✅ <b>Windows Server 2019</b>
|
||||
- ✅ <b>Windows Server 2022</b>
|
||||
- ✅ <a href="https://learn.microsoft.com/windows/release-health/supported-versions-windows-client" target="_blank">Windows 10 and later</a>
|
||||
- ✅ <a href="https://learn.microsoft.com/windows/release-health/windows-server-release-info" target="_blank">Windows Server 2016 and later</a>
|
||||
---
|
||||
|
||||
# Planning Domain Isolation Zones
|
||||
|
||||
@ -1,21 +1,12 @@
|
||||
---
|
||||
title: Planning GPO Deployment (Windows)
|
||||
description: Learn how to use security group filtering and WMI filtering to provide the most flexible options for applying GPOs to devices in Active Directory.
|
||||
ms.reviewer: jekrynit
|
||||
ms.author: paoloma
|
||||
ms.prod: windows-client
|
||||
ms.localizationpriority: medium
|
||||
author: paolomatarazzo
|
||||
manager: aaroncz
|
||||
ms.topic: conceptual
|
||||
ms.date: 09/08/2021
|
||||
ms.technology: itpro-security
|
||||
appliesto:
|
||||
- ✅ <b>Windows 10</b>
|
||||
- ✅ <b>Windows 11</b>
|
||||
- ✅ <b>Windows Server 2016</b>
|
||||
- ✅ <b>Windows Server 2019</b>
|
||||
- ✅ <b>Windows Server 2022</b>
|
||||
- ✅ <a href="https://learn.microsoft.com/windows/release-health/supported-versions-windows-client" target="_blank">Windows 10 and later</a>
|
||||
- ✅ <a href="https://learn.microsoft.com/windows/release-health/windows-server-release-info" target="_blank">Windows Server 2016 and later</a>
|
||||
---
|
||||
|
||||
# Planning GPO Deployment
|
||||
|
||||
@ -1,21 +1,12 @@
|
||||
---
|
||||
title: Planning Group Policy Deployment for Your Isolation Zones (Windows)
|
||||
description: Learn how to plan a group policy deployment for your isolation zones after you determine the best logical design for your isolation environment.
|
||||
ms.reviewer: jekrynit
|
||||
ms.author: paoloma
|
||||
ms.prod: windows-client
|
||||
ms.localizationpriority: medium
|
||||
author: paolomatarazzo
|
||||
manager: aaroncz
|
||||
ms.topic: conceptual
|
||||
ms.date: 09/08/2021
|
||||
ms.technology: itpro-security
|
||||
appliesto:
|
||||
- ✅ <b>Windows 10</b>
|
||||
- ✅ <b>Windows 11</b>
|
||||
- ✅ <b>Windows Server 2016</b>
|
||||
- ✅ <b>Windows Server 2019</b>
|
||||
- ✅ <b>Windows Server 2022</b>
|
||||
- ✅ <a href="https://learn.microsoft.com/windows/release-health/supported-versions-windows-client" target="_blank">Windows 10 and later</a>
|
||||
- ✅ <a href="https://learn.microsoft.com/windows/release-health/windows-server-release-info" target="_blank">Windows Server 2016 and later</a>
|
||||
---
|
||||
|
||||
# Planning Group Policy Deployment for Your Isolation Zones
|
||||
|
||||
@ -1,21 +1,12 @@
|
||||
---
|
||||
title: Planning Isolation Groups for the Zones (Windows)
|
||||
description: Learn about planning isolation groups for the zones in Microsoft Firewall, including information on universal groups and GPOs.
|
||||
ms.reviewer: jekrynit
|
||||
ms.author: paoloma
|
||||
ms.prod: windows-client
|
||||
ms.localizationpriority: medium
|
||||
author: paolomatarazzo
|
||||
manager: aaroncz
|
||||
ms.topic: conceptual
|
||||
ms.date: 09/08/2021
|
||||
ms.technology: itpro-security
|
||||
appliesto:
|
||||
- ✅ <b>Windows 10</b>
|
||||
- ✅ <b>Windows 11</b>
|
||||
- ✅ <b>Windows Server 2016</b>
|
||||
- ✅ <b>Windows Server 2019</b>
|
||||
- ✅ <b>Windows Server 2022</b>
|
||||
- ✅ <a href="https://learn.microsoft.com/windows/release-health/supported-versions-windows-client" target="_blank">Windows 10 and later</a>
|
||||
- ✅ <a href="https://learn.microsoft.com/windows/release-health/windows-server-release-info" target="_blank">Windows Server 2016 and later</a>
|
||||
---
|
||||
|
||||
# Planning Isolation Groups for the Zones
|
||||
|
||||
@ -1,21 +1,12 @@
|
||||
---
|
||||
title: Planning Network Access Groups (Windows)
|
||||
description: Learn how to implement a network access group for users and devices that can access an isolated server in Windows Defender Firewall with Advanced Security.
|
||||
ms.reviewer: jekrynit
|
||||
ms.author: paoloma
|
||||
ms.prod: windows-client
|
||||
ms.localizationpriority: medium
|
||||
author: paolomatarazzo
|
||||
manager: aaroncz
|
||||
ms.topic: conceptual
|
||||
ms.date: 09/08/2021
|
||||
ms.technology: itpro-security
|
||||
appliesto:
|
||||
- ✅ <b>Windows 10</b>
|
||||
- ✅ <b>Windows 11</b>
|
||||
- ✅ <b>Windows Server 2016</b>
|
||||
- ✅ <b>Windows Server 2019</b>
|
||||
- ✅ <b>Windows Server 2022</b>
|
||||
- ✅ <a href="https://learn.microsoft.com/windows/release-health/supported-versions-windows-client" target="_blank">Windows 10 and later</a>
|
||||
- ✅ <a href="https://learn.microsoft.com/windows/release-health/windows-server-release-info" target="_blank">Windows Server 2016 and later</a>
|
||||
---
|
||||
|
||||
# Planning Network Access Groups
|
||||
|
||||
@ -1,21 +1,12 @@
|
||||
---
|
||||
title: Planning Server Isolation Zones (Windows)
|
||||
description: Learn how to restrict access to a server to approved users by using a server isolation zone in Windows Defender Firewall with Advanced Security.
|
||||
ms.reviewer: jekrynit
|
||||
ms.author: paoloma
|
||||
ms.prod: windows-client
|
||||
ms.localizationpriority: medium
|
||||
author: paolomatarazzo
|
||||
manager: aaroncz
|
||||
ms.topic: conceptual
|
||||
ms.date: 09/08/2021
|
||||
ms.technology: itpro-security
|
||||
appliesto:
|
||||
- ✅ <b>Windows 10</b>
|
||||
- ✅ <b>Windows 11</b>
|
||||
- ✅ <b>Windows Server 2016</b>
|
||||
- ✅ <b>Windows Server 2019</b>
|
||||
- ✅ <b>Windows Server 2022</b>
|
||||
- ✅ <a href="https://learn.microsoft.com/windows/release-health/supported-versions-windows-client" target="_blank">Windows 10 and later</a>
|
||||
- ✅ <a href="https://learn.microsoft.com/windows/release-health/windows-server-release-info" target="_blank">Windows Server 2016 and later</a>
|
||||
---
|
||||
|
||||
# Planning Server Isolation Zones
|
||||
|
||||
@ -1,21 +1,12 @@
|
||||
---
|
||||
title: Planning Settings for a Basic Firewall Policy (Windows)
|
||||
description: Learn how to design a basic policy for Windows Defender Firewall with Advanced Security, the settings and rules that enforce your requirements on devices.
|
||||
ms.reviewer: jekrynit
|
||||
ms.author: paoloma
|
||||
ms.prod: windows-client
|
||||
ms.localizationpriority: medium
|
||||
author: paolomatarazzo
|
||||
manager: aaroncz
|
||||
ms.topic: conceptual
|
||||
ms.date: 09/08/2021
|
||||
ms.technology: itpro-security
|
||||
appliesto:
|
||||
- ✅ <b>Windows 10</b>
|
||||
- ✅ <b>Windows 11</b>
|
||||
- ✅ <b>Windows Server 2016</b>
|
||||
- ✅ <b>Windows Server 2019</b>
|
||||
- ✅ <b>Windows Server 2022</b>
|
||||
- ✅ <a href="https://learn.microsoft.com/windows/release-health/supported-versions-windows-client" target="_blank">Windows 10 and later</a>
|
||||
- ✅ <a href="https://learn.microsoft.com/windows/release-health/windows-server-release-info" target="_blank">Windows Server 2016 and later</a>
|
||||
---
|
||||
|
||||
# Planning Settings for a Basic Firewall Policy
|
||||
|
||||
@ -1,21 +1,12 @@
|
||||
---
|
||||
title: Planning the GPOs (Windows)
|
||||
description: Learn about planning Group Policy Objects for your isolation zones in Windows Defender Firewall with Advanced Security, after you design the zone layout.
|
||||
ms.reviewer: jekrynit
|
||||
ms.author: paoloma
|
||||
ms.prod: windows-client
|
||||
ms.localizationpriority: medium
|
||||
author: paolomatarazzo
|
||||
manager: aaroncz
|
||||
ms.topic: conceptual
|
||||
ms.date: 09/08/2021
|
||||
ms.technology: itpro-security
|
||||
appliesto:
|
||||
- ✅ <b>Windows 10</b>
|
||||
- ✅ <b>Windows 11</b>
|
||||
- ✅ <b>Windows Server 2016</b>
|
||||
- ✅ <b>Windows Server 2019</b>
|
||||
- ✅ <b>Windows Server 2022</b>
|
||||
- ✅ <a href="https://learn.microsoft.com/windows/release-health/supported-versions-windows-client" target="_blank">Windows 10 and later</a>
|
||||
- ✅ <a href="https://learn.microsoft.com/windows/release-health/windows-server-release-info" target="_blank">Windows Server 2016 and later</a>
|
||||
---
|
||||
|
||||
# Planning the GPOs
|
||||
|
||||
@ -1,21 +1,12 @@
|
||||
---
|
||||
title: Plan to Deploy Windows Defender Firewall with Advanced Security (Windows)
|
||||
description: Use the design information in this article to plan for the deployment of Windows Defender Firewall with Advanced Security in your organization.
|
||||
ms.reviewer: jekrynit
|
||||
ms.author: paoloma
|
||||
ms.prod: windows-client
|
||||
ms.localizationpriority: medium
|
||||
author: paolomatarazzo
|
||||
manager: aaroncz
|
||||
ms.topic: conceptual
|
||||
ms.date: 09/08/2021
|
||||
ms.technology: itpro-security
|
||||
appliesto:
|
||||
- ✅ <b>Windows 10</b>
|
||||
- ✅ <b>Windows 11</b>
|
||||
- ✅ <b>Windows Server 2016</b>
|
||||
- ✅ <b>Windows Server 2019</b>
|
||||
- ✅ <b>Windows Server 2022</b>
|
||||
- ✅ <a href="https://learn.microsoft.com/windows/release-health/supported-versions-windows-client" target="_blank">Windows 10 and later</a>
|
||||
- ✅ <a href="https://learn.microsoft.com/windows/release-health/windows-server-release-info" target="_blank">Windows Server 2016 and later</a>
|
||||
---
|
||||
|
||||
# Planning to Deploy Windows Defender Firewall with Advanced Security
|
||||
|
||||
@ -1,21 +1,12 @@
|
||||
---
|
||||
title: Planning Your Windows Defender Firewall with Advanced Security Design (Windows)
|
||||
description: After you gather the relevant information, select the design or combination of designs for Windows Defender Firewall with Advanced Security in your environment.
|
||||
ms.reviewer: jekrynit
|
||||
ms.author: paoloma
|
||||
ms.prod: windows-client
|
||||
ms.localizationpriority: medium
|
||||
author: paolomatarazzo
|
||||
manager: aaroncz
|
||||
ms.topic: conceptual
|
||||
ms.date: 09/08/2021
|
||||
ms.technology: itpro-security
|
||||
appliesto:
|
||||
- ✅ <b>Windows 10</b>
|
||||
- ✅ <b>Windows 11</b>
|
||||
- ✅ <b>Windows Server 2016</b>
|
||||
- ✅ <b>Windows Server 2019</b>
|
||||
- ✅ <b>Windows Server 2022</b>
|
||||
- ✅ <a href="https://learn.microsoft.com/windows/release-health/supported-versions-windows-client" target="_blank">Windows 10 and later</a>
|
||||
- ✅ <a href="https://learn.microsoft.com/windows/release-health/windows-server-release-info" target="_blank">Windows Server 2016 and later</a>
|
||||
---
|
||||
|
||||
# Planning Your Windows Defender Firewall with Advanced Security Design
|
||||
|
||||
@ -1,21 +1,12 @@
|
||||
---
|
||||
title: Protect devices from unwanted network traffic (Windows)
|
||||
description: Learn how running a host-based firewall on every device in your organization can help protect against attacks as part of a defense-in-depth security strategy.
|
||||
ms.reviewer: jekrynit
|
||||
ms.author: paoloma
|
||||
ms.prod: windows-client
|
||||
ms.localizationpriority: medium
|
||||
author: paolomatarazzo
|
||||
manager: aaroncz
|
||||
ms.topic: conceptual
|
||||
ms.date: 01/18/2022
|
||||
ms.technology: itpro-security
|
||||
appliesto:
|
||||
- ✅ <b>Windows 10</b>
|
||||
- ✅ <b>Windows 11</b>
|
||||
- ✅ <b>Windows Server 2016</b>
|
||||
- ✅ <b>Windows Server 2019</b>
|
||||
- ✅ <b>Windows Server 2022</b>
|
||||
- ✅ <a href="https://learn.microsoft.com/windows/release-health/supported-versions-windows-client" target="_blank">Windows 10 and later</a>
|
||||
- ✅ <a href="https://learn.microsoft.com/windows/release-health/windows-server-release-info" target="_blank">Windows Server 2016 and later</a>
|
||||
---
|
||||
|
||||
# Protect devices from unwanted network traffic
|
||||
|
||||
@ -1,21 +1,12 @@
|
||||
---
|
||||
title: Quarantine behavior
|
||||
description: Quarantine behavior is explained in detail.
|
||||
ms.author: paoloma
|
||||
author: paolomatarazzo
|
||||
manager: aaroncz
|
||||
ms.reviewer: jekrynit
|
||||
ms.prod: windows-client
|
||||
ms.localizationpriority: normal
|
||||
ms.topic: conceptual
|
||||
ms.date: 09/08/2021
|
||||
ms.technology: itpro-security
|
||||
appliesto:
|
||||
- ✅ <b>Windows 10</b>
|
||||
- ✅ <b>Windows 11</b>
|
||||
- ✅ <b>Windows Server 2016</b>
|
||||
- ✅ <b>Windows Server 2019</b>
|
||||
- ✅ <b>Windows Server 2022</b>
|
||||
- ✅ <a href="https://learn.microsoft.com/windows/release-health/supported-versions-windows-client" target="_blank">Windows 10 and later</a>
|
||||
- ✅ <a href="https://learn.microsoft.com/windows/release-health/windows-server-release-info" target="_blank">Windows Server 2016 and later</a>
|
||||
---
|
||||
|
||||
# Quarantine behavior
|
||||
|
||||
@ -1,21 +1,12 @@
|
||||
---
|
||||
title: Require Encryption When Accessing Sensitive Network Resources (Windows)
|
||||
description: Windows Defender Firewall with Advanced Security allows you to require that all network traffic in an isolated domain be encrypted.
|
||||
ms.reviewer: jekrynit
|
||||
ms.author: paoloma
|
||||
ms.prod: windows-client
|
||||
ms.localizationpriority: medium
|
||||
author: paolomatarazzo
|
||||
manager: aaroncz
|
||||
ms.topic: conceptual
|
||||
ms.date: 09/08/2021
|
||||
ms.technology: itpro-security
|
||||
appliesto:
|
||||
- ✅ <b>Windows 10</b>
|
||||
- ✅ <b>Windows 11</b>
|
||||
- ✅ <b>Windows Server 2016</b>
|
||||
- ✅ <b>Windows Server 2019</b>
|
||||
- ✅ <b>Windows Server 2022</b>
|
||||
- ✅ <a href="https://learn.microsoft.com/windows/release-health/supported-versions-windows-client" target="_blank">Windows 10 and later</a>
|
||||
- ✅ <a href="https://learn.microsoft.com/windows/release-health/windows-server-release-info" target="_blank">Windows Server 2016 and later</a>
|
||||
---
|
||||
|
||||
# Require Encryption When Accessing Sensitive Network Resources
|
||||
|
||||
@ -1,21 +1,12 @@
|
||||
---
|
||||
title: Restrict Access to Only Specified Users or Devices (Windows)
|
||||
description: Restrict access to devices and users that are members of domain groups authorized to access that device using Windows Defender Firewall with Advanced Security.
|
||||
ms.reviewer: jekrynit
|
||||
ms.author: paoloma
|
||||
ms.prod: windows-client
|
||||
ms.localizationpriority: medium
|
||||
author: paolomatarazzo
|
||||
manager: aaroncz
|
||||
ms.topic: conceptual
|
||||
ms.date: 09/08/2021
|
||||
ms.technology: itpro-security
|
||||
appliesto:
|
||||
- ✅ <b>Windows 10</b>
|
||||
- ✅ <b>Windows 11</b>
|
||||
- ✅ <b>Windows Server 2016</b>
|
||||
- ✅ <b>Windows Server 2019</b>
|
||||
- ✅ <b>Windows Server 2022</b>
|
||||
- ✅ <a href="https://learn.microsoft.com/windows/release-health/supported-versions-windows-client" target="_blank">Windows 10 and later</a>
|
||||
- ✅ <a href="https://learn.microsoft.com/windows/release-health/windows-server-release-info" target="_blank">Windows Server 2016 and later</a>
|
||||
---
|
||||
|
||||
# Restrict Access to Only Specified Users or Computers
|
||||
|
||||
Some files were not shown because too many files have changed in this diff Show More
Reference in New Issue
Block a user