mirror of
https://github.com/MicrosoftDocs/windows-itpro-docs.git
synced 2025-07-04 03:33:36 +00:00
typo fix
This commit is contained in:
Ruchika Mittal
GitHub
@ -41,7 +41,7 @@ This policy setting allows you to configure scans for malicious software and unw
|
|||||||
<!-- AllowArchiveScanning-Editable-Begin -->
|
<!-- AllowArchiveScanning-Editable-Begin -->
|
||||||
<!-- Add any additional information about this policy here. Anything outside this section will get overwritten. -->
|
<!-- Add any additional information about this policy here. Anything outside this section will get overwritten. -->
|
||||||
> [!NOTE]
|
> [!NOTE]
|
||||||
> Changes to this setting are not applied when [tamper protection][TAMPER-1] is enabled.
|
> Changes to this setting aren't applied when [tamper protection][TAMPER-1] is enabled.
|
||||||
<!-- AllowArchiveScanning-Editable-End -->
|
<!-- AllowArchiveScanning-Editable-End -->
|
||||||
|
|
||||||
<!-- AllowArchiveScanning-DFProperties-Begin -->
|
<!-- AllowArchiveScanning-DFProperties-Begin -->
|
||||||
@ -110,7 +110,7 @@ This policy setting allows you to configure behavior monitoring.
|
|||||||
<!-- AllowBehaviorMonitoring-Editable-Begin -->
|
<!-- AllowBehaviorMonitoring-Editable-Begin -->
|
||||||
<!-- Add any additional information about this policy here. Anything outside this section will get overwritten. -->
|
<!-- Add any additional information about this policy here. Anything outside this section will get overwritten. -->
|
||||||
> [!NOTE]
|
> [!NOTE]
|
||||||
> Changes to this setting are not applied when [tamper protection][TAMPER-1] is enabled.
|
> Changes to this setting aren't applied when [tamper protection][TAMPER-1] is enabled.
|
||||||
<!-- AllowBehaviorMonitoring-Editable-End -->
|
<!-- AllowBehaviorMonitoring-Editable-End -->
|
||||||
|
|
||||||
<!-- AllowBehaviorMonitoring-DFProperties-Begin -->
|
<!-- AllowBehaviorMonitoring-DFProperties-Begin -->
|
||||||
@ -192,7 +192,7 @@ In Windows 10, Basic membership is no longer available, so setting the value to
|
|||||||
<!-- AllowCloudProtection-Editable-Begin -->
|
<!-- AllowCloudProtection-Editable-Begin -->
|
||||||
<!-- Add any additional information about this policy here. Anything outside this section will get overwritten. -->
|
<!-- Add any additional information about this policy here. Anything outside this section will get overwritten. -->
|
||||||
> [!NOTE]
|
> [!NOTE]
|
||||||
> Changes to this setting are not applied when [tamper protection][TAMPER-1] is enabled.
|
> Changes to this setting aren't applied when [tamper protection][TAMPER-1] is enabled.
|
||||||
<!-- AllowCloudProtection-Editable-End -->
|
<!-- AllowCloudProtection-Editable-End -->
|
||||||
|
|
||||||
<!-- AllowCloudProtection-DFProperties-Begin -->
|
<!-- AllowCloudProtection-DFProperties-Begin -->
|
||||||
@ -461,7 +461,7 @@ Allows or disallows Windows Defender Intrusion Prevention functionality.
|
|||||||
<!-- AllowIntrusionPreventionSystem-Editable-Begin -->
|
<!-- AllowIntrusionPreventionSystem-Editable-Begin -->
|
||||||
<!-- Add any additional information about this policy here. Anything outside this section will get overwritten. -->
|
<!-- Add any additional information about this policy here. Anything outside this section will get overwritten. -->
|
||||||
> [!NOTE]
|
> [!NOTE]
|
||||||
> Changes to this setting are not applied when [tamper protection][TAMPER-1] is enabled.
|
> Changes to this setting aren't applied when [tamper protection][TAMPER-1] is enabled.
|
||||||
<!-- AllowIntrusionPreventionSystem-Editable-End -->
|
<!-- AllowIntrusionPreventionSystem-Editable-End -->
|
||||||
|
|
||||||
<!-- AllowIntrusionPreventionSystem-DFProperties-Begin -->
|
<!-- AllowIntrusionPreventionSystem-DFProperties-Begin -->
|
||||||
@ -516,7 +516,7 @@ This policy setting allows you to configure scanning for all downloaded files an
|
|||||||
<!-- AllowIOAVProtection-Editable-Begin -->
|
<!-- AllowIOAVProtection-Editable-Begin -->
|
||||||
<!-- Add any additional information about this policy here. Anything outside this section will get overwritten. -->
|
<!-- Add any additional information about this policy here. Anything outside this section will get overwritten. -->
|
||||||
> [!NOTE]
|
> [!NOTE]
|
||||||
> Changes to this setting are not applied when [tamper protection][TAMPER-1] is enabled.
|
> Changes to this setting aren't applied when [tamper protection][TAMPER-1] is enabled.
|
||||||
<!-- AllowIOAVProtection-Editable-End -->
|
<!-- AllowIOAVProtection-Editable-End -->
|
||||||
|
|
||||||
<!-- AllowIOAVProtection-DFProperties-Begin -->
|
<!-- AllowIOAVProtection-DFProperties-Begin -->
|
||||||
@ -585,7 +585,7 @@ This policy setting allows you to configure monitoring for file and program acti
|
|||||||
<!-- AllowOnAccessProtection-Editable-Begin -->
|
<!-- AllowOnAccessProtection-Editable-Begin -->
|
||||||
<!-- Add any additional information about this policy here. Anything outside this section will get overwritten. -->
|
<!-- Add any additional information about this policy here. Anything outside this section will get overwritten. -->
|
||||||
> [!NOTE]
|
> [!NOTE]
|
||||||
> Changes to this setting are not applied when [tamper protection][TAMPER-1] is enabled.
|
> Changes to this setting aren't applied when [tamper protection][TAMPER-1] is enabled.
|
||||||
<!-- AllowOnAccessProtection-Editable-End -->
|
<!-- AllowOnAccessProtection-Editable-End -->
|
||||||
|
|
||||||
<!-- AllowOnAccessProtection-DFProperties-Begin -->
|
<!-- AllowOnAccessProtection-DFProperties-Begin -->
|
||||||
@ -650,7 +650,7 @@ Allows or disallows Windows Defender Realtime Monitoring functionality.
|
|||||||
<!-- AllowRealtimeMonitoring-Editable-Begin -->
|
<!-- AllowRealtimeMonitoring-Editable-Begin -->
|
||||||
<!-- Add any additional information about this policy here. Anything outside this section will get overwritten. -->
|
<!-- Add any additional information about this policy here. Anything outside this section will get overwritten. -->
|
||||||
> [!NOTE]
|
> [!NOTE]
|
||||||
> Changes to this setting are not applied when [tamper protection][TAMPER-1] is enabled.
|
> Changes to this setting aren't applied when [tamper protection][TAMPER-1] is enabled.
|
||||||
<!-- AllowRealtimeMonitoring-Editable-End -->
|
<!-- AllowRealtimeMonitoring-Editable-End -->
|
||||||
|
|
||||||
<!-- AllowRealtimeMonitoring-DFProperties-Begin -->
|
<!-- AllowRealtimeMonitoring-DFProperties-Begin -->
|
||||||
@ -713,12 +713,12 @@ Allows or disallows Windows Defender Realtime Monitoring functionality.
|
|||||||
|
|
||||||
<!-- AllowScanningNetworkFiles-Editable-Begin -->
|
<!-- AllowScanningNetworkFiles-Editable-Begin -->
|
||||||
<!-- Add any additional information about this policy here. Anything outside this section will get overwritten. -->
|
<!-- Add any additional information about this policy here. Anything outside this section will get overwritten. -->
|
||||||
This policy setting allows you to configure scheduled scans and on-demand (manually initiated) scans for files that are accessed over the network. It is recommended to enable this setting.
|
This policy setting allows you to configure scheduled scans and on-demand (manually initiated) scans for files that are accessed over the network. It's recommended to enable this setting.
|
||||||
>[!NOTE]
|
>[!NOTE]
|
||||||
> Real-time protection (on-access) scanning is not impacted by this policy.
|
> Real-time protection (on-access) scanning isn't impacted by this policy.
|
||||||
|
|
||||||
- If you enable this setting or do not configure this setting, network files will be scanned.
|
- If you enable this setting or don't configure this setting, network files will be scanned.
|
||||||
- If you disable this setting, network files will not be scanned.
|
- If you disable this setting, network files won't be scanned.
|
||||||
<!-- AllowScanningNetworkFiles-Editable-End -->
|
<!-- AllowScanningNetworkFiles-Editable-End -->
|
||||||
|
|
||||||
<!-- AllowScanningNetworkFiles-DFProperties-Begin -->
|
<!-- AllowScanningNetworkFiles-DFProperties-Begin -->
|
||||||
@ -783,7 +783,7 @@ Allows or disallows Windows Defender Script Scanning functionality.
|
|||||||
<!-- AllowScriptScanning-Editable-Begin -->
|
<!-- AllowScriptScanning-Editable-Begin -->
|
||||||
<!-- Add any additional information about this policy here. Anything outside this section will get overwritten. -->
|
<!-- Add any additional information about this policy here. Anything outside this section will get overwritten. -->
|
||||||
> [!NOTE]
|
> [!NOTE]
|
||||||
> Changes to this setting are not applied when [tamper protection][TAMPER-1] is enabled.
|
> Changes to this setting aren't applied when [tamper protection][TAMPER-1] is enabled.
|
||||||
<!-- AllowScriptScanning-Editable-End -->
|
<!-- AllowScriptScanning-Editable-End -->
|
||||||
|
|
||||||
<!-- AllowScriptScanning-DFProperties-Begin -->
|
<!-- AllowScriptScanning-DFProperties-Begin -->
|
||||||
@ -1549,7 +1549,7 @@ This policy setting defines the number of days items should be kept in the Quara
|
|||||||
<!-- Description-Source-DDF -->
|
<!-- Description-Source-DDF -->
|
||||||
This policy setting allows you to configure catch-up scans for scheduled full scans. A catch-up scan is a scan that's initiated because a regularly scheduled scan was missed. Usually these scheduled scans are missed because the computer was turned off at the scheduled time.
|
This policy setting allows you to configure catch-up scans for scheduled full scans. A catch-up scan is a scan that's initiated because a regularly scheduled scan was missed. Usually these scheduled scans are missed because the computer was turned off at the scheduled time.
|
||||||
|
|
||||||
- If you disable or don't configure this setting, catch-up scans for scheduled full scans will be turned on. If a computer is offline for two consecutive scheduled scans, a catch-up scan is started the next time someone logs on to the computer. If there is no scheduled scan configured, there will be no catch-up scan run.
|
- If you disable or don't configure this setting, catch-up scans for scheduled full scans will be turned on. If a computer is offline for two consecutive scheduled scans, a catch-up scan is started the next time someone logs on to the computer. If there's no scheduled scan configured, there will be no catch-up scan run.
|
||||||
|
|
||||||
- If you enable this setting, catch-up scans for scheduled full scans will be disabled.
|
- If you enable this setting, catch-up scans for scheduled full scans will be disabled.
|
||||||
<!-- DisableCatchupFullScan-Description-End -->
|
<!-- DisableCatchupFullScan-Description-End -->
|
||||||
@ -1619,7 +1619,7 @@ This policy setting allows you to configure catch-up scans for scheduled full sc
|
|||||||
<!-- Add any additional information about this policy here. Anything outside this section will get overwritten. -->
|
<!-- Add any additional information about this policy here. Anything outside this section will get overwritten. -->
|
||||||
This policy setting allows you to configure catch-up scans for scheduled quick scans. A catch-up scan is a scan that's initiated because a regularly scheduled scan was missed. Usually these scheduled scans are missed because the computer was turned off at the scheduled time.
|
This policy setting allows you to configure catch-up scans for scheduled quick scans. A catch-up scan is a scan that's initiated because a regularly scheduled scan was missed. Usually these scheduled scans are missed because the computer was turned off at the scheduled time.
|
||||||
|
|
||||||
- If you disable or don't configure this setting, catch-up scans for scheduled quick scans will be turned on. If a computer is offline for two consecutive scheduled scans, a catch-up scan is started the next time someone logs on to the computer. If there is no scheduled scan configured, there will be no catch-up scan run.
|
- If you disable or don't configure this setting, catch-up scans for scheduled quick scans will be turned on. If a computer is offline for two consecutive scheduled scans, a catch-up scan is started the next time someone logs on to the computer. If there's no scheduled scan configured, there will be no catch-up scan run.
|
||||||
|
|
||||||
- If you enable this setting, catch-up scans for scheduled quick scans will be disabled.
|
- If you enable this setting, catch-up scans for scheduled quick scans will be disabled.
|
||||||
<!-- DisableCatchupQuickScan-Editable-End -->
|
<!-- DisableCatchupQuickScan-Editable-End -->
|
||||||
@ -2164,7 +2164,7 @@ Same as Disabled.
|
|||||||
| Value | Description |
|
| Value | Description |
|
||||||
|:--|:--|
|
|:--|:--|
|
||||||
| 0 (Default) | PUA Protection off. Windows Defender won't protect against potentially unwanted applications. |
|
| 0 (Default) | PUA Protection off. Windows Defender won't protect against potentially unwanted applications. |
|
||||||
| 1 | PUA Protection on. Detected items are blocked. They will show in history along with other threats. |
|
| 1 | PUA Protection on. Detected items are blocked. They'll show in history along with other threats. |
|
||||||
| 2 | Audit mode. Windows Defender will detect potentially unwanted applications, but take no action. You can review information about the applications Windows Defender would've taken action against by searching for events created by Windows Defender in the Event Viewer. |
|
| 2 | Audit mode. Windows Defender will detect potentially unwanted applications, but take no action. You can review information about the applications Windows Defender would've taken action against by searching for events created by Windows Defender in the Event Viewer. |
|
||||||
<!-- PUAProtection-AllowedValues-End -->
|
<!-- PUAProtection-AllowedValues-End -->
|
||||||
|
|
||||||
@ -2204,7 +2204,7 @@ Same as Disabled.
|
|||||||
|
|
||||||
<!-- RealTimeScanDirection-Description-Begin -->
|
<!-- RealTimeScanDirection-Description-Begin -->
|
||||||
<!-- Description-Source-ADMX -->
|
<!-- Description-Source-ADMX -->
|
||||||
This policy setting allows you to configure monitoring for incoming and outgoing files, without having to turn off monitoring entirely. It's recommended for use on servers where there is a lot of incoming and outgoing file activity but for performance reasons need to have scanning disabled for a particular scan direction. The appropriate configuration should be evaluated based on the server role.
|
This policy setting allows you to configure monitoring for incoming and outgoing files, without having to turn off monitoring entirely. It's recommended for use on servers where there's a lot of incoming and outgoing file activity but for performance reasons need to have scanning disabled for a particular scan direction. The appropriate configuration should be evaluated based on the server role.
|
||||||
|
|
||||||
Note that this configuration is only honored for NTFS volumes. For any other file system type, full monitoring of file and program activity will be present on those volumes.
|
Note that this configuration is only honored for NTFS volumes. For any other file system type, full monitoring of file and program activity will be present on those volumes.
|
||||||
|
|
||||||
@ -2870,7 +2870,7 @@ Valid remediation action values are:
|
|||||||
> [!NOTE]
|
> [!NOTE]
|
||||||
>
|
>
|
||||||
> - **Ignore** is the same as **Allow** in [Microsoft Defender for Endpoint Security Settings Management](/defender-endpoint/mde-security-settings-management), [Microsoft Intune](/intune/intune-service/protect/endpoint-security-antivirus-policy), and Defender Powershell module: [Set-MpPreference](/powershell/module/defender/set-mppreference).
|
> - **Ignore** is the same as **Allow** in [Microsoft Defender for Endpoint Security Settings Management](/defender-endpoint/mde-security-settings-management), [Microsoft Intune](/intune/intune-service/protect/endpoint-security-antivirus-policy), and Defender Powershell module: [Set-MpPreference](/powershell/module/defender/set-mppreference).
|
||||||
> - Changes to this setting are not applied when [tamper protection][TAMPER-1] is enabled.
|
> - Changes to this setting aren't applied when [tamper protection][TAMPER-1] is enabled.
|
||||||
<!-- ThreatSeverityDefaultAction-Editable-End -->
|
<!-- ThreatSeverityDefaultAction-Editable-End -->
|
||||||
|
|
||||||
<!-- ThreatSeverityDefaultAction-DFProperties-Begin -->
|
<!-- ThreatSeverityDefaultAction-DFProperties-Begin -->
|
||||||
@ -2888,7 +2888,7 @@ Valid remediation action values are:
|
|||||||
| Name | Value |
|
| Name | Value |
|
||||||
|:--|:--|
|
|:--|:--|
|
||||||
| Name | Threats_ThreatSeverityDefaultAction |
|
| Name | Threats_ThreatSeverityDefaultAction |
|
||||||
| Friendly Name | Specify threat alert levels at which default action should not be taken when detected |
|
| Friendly Name | Specify threat alert levels at which default action shouldn't be taken when detected |
|
||||||
| Element Name | Specify threat alert levels at which default action shouldn't be taken when detected. |
|
| Element Name | Specify threat alert levels at which default action shouldn't be taken when detected. |
|
||||||
| Location | Computer Configuration |
|
| Location | Computer Configuration |
|
||||||
| Path | Windows Components > Microsoft Defender Antivirus > Threats |
|
| Path | Windows Components > Microsoft Defender Antivirus > Threats |
|
||||||
|
|||||||
Reference in New Issue
Block a user