From 80e725b9528498901ad2c7e679f03800430463be Mon Sep 17 00:00:00 2001 From: Denise Vangel-MSFT Date: Mon, 10 Aug 2020 10:55:37 -0700 Subject: [PATCH] Update automated-investigations.md --- .../microsoft-defender-atp/automated-investigations.md | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/windows/security/threat-protection/microsoft-defender-atp/automated-investigations.md b/windows/security/threat-protection/microsoft-defender-atp/automated-investigations.md index 8f4c5e16b8..d8c4238731 100644 --- a/windows/security/threat-protection/microsoft-defender-atp/automated-investigations.md +++ b/windows/security/threat-protection/microsoft-defender-atp/automated-investigations.md @@ -72,7 +72,7 @@ You can configure the following levels of automation: |Automation level | Description| |---|---| -|**Full - remediate threats automatically** | All remediation actions will be performed automatically.

Microsoft Defender ATP tenants will have **Full - remediate threats automatically** selected by default.| +|**Full - remediate threats automatically** | All remediation actions will be performed automatically.

*This is the default setting for Microsoft Defender ATP tenants created on or after August 16, 2020.*| |**Semi - require approval for core folders remediation** | An approval is required on files or executables that are in the operating system directories such as Windows folder and Program files folder.

Files or executables in all other folders will automatically be remediated if needed.| |**Semi - require approval for non-temp folders remediation** | An approval is required on files or executables that are not in temporary folders.

Files or executables in temporary folders, such as the user's download folder or the user's temp folder, will automatically be remediated if needed.| |**Semi - require approval for any remediation** | This is the default automation level.

An approval is needed for any remediation action. |