M365 Environment 23 – Windows Defender Application Control – Part 2

Windows Defender Application Control – Part 2 In this post, we’ll see how we can configure Windows Defender Application Control using Microsoft Intune custom policy. Existing setup done: Two Local users created Azure AD Connect configured Seamless Single Sign-On (IE) configured Seamless Single Sign-On (Firefox) configured Hybrid Azure AD Join configured Intune enrollment – Domain […]

M365 Environment 22 – Windows Defender Application Control

Windows Defender Application Control In this post, we’ll see how we can configure Windows Defender Application Control using Microsoft Intune. Existing setup done: Two Local users created Azure AD Connect configured Seamless Single Sign-On (IE) configured Seamless Single Sign-On (Firefox) configured Hybrid Azure AD Join configured Intune enrollment – Domain Joined Windows 10 devices Azure […]

M365 Environment 21 – Windows Defender Exploit Guard – CFA, NP, EP

Windows Defender Exploit Guard – Controlled Folder Access In this post, we’ll see how we can configure Windows Defender Exploit Guard’s other features Controlled Folder Access, Network Protection and Exploit Protection using Microsoft Intune. Existing setup done: Two Local users created Azure AD Connect configured Seamless Single Sign-On (IE) configured Seamless Single Sign-On (Firefox) configured […]

M365 Environment 20 – Windows Defender Exploit Guard – Attack Surface Reduction

In this post, we’ll see how we can configure Windows Defender Exploit Guard feature Attack Surface Reduction using Microsoft Intune. Windows Defender Exploit Guard is a new set of intrusion prevention capabilities that ships with the Windows 10 Fall Creators Update. There are four components of Windows Defender Exploit Guard which are designed to lock […]

M365 Environment 19 – Windows Defender Credential Guard

In this post, we’ll see how we can configure Windows Defender Credential Guard using Microsoft Intune. Windows Defender Credential Guard is a Windows 10 feature which uses virtualization-based security to isolate secrets so that only privileged system software can access them. Credential Guard prevents these attacks by protecting NTLM password hashes, Kerberos Ticket Granting Tickets, […]

M365 Environment 18 – Simple Windows Defender Antivirus Configuration

In this post, we’ll see how we can configure Windows Defender Antivirus using Microsoft Intune. There are lots of settings you can configure for Windows Defender Antivirus. Listing and discussing all the settings is difficult. you can however visit https://docs.microsoft.com/en-us/intune/configuration/device-restrictions-windows-10 and check Microsoft Defender Antivirus section for details. The reason why I am configuring this […]

M365 Environment 17 – Extend Windows Defender Application Guard to Google Chrome and Mozilla Firefox

In this post, we’ll extend Windows Defender Application Guard to Mozilla Firefox and Google Chrome. After the configuration, whenever anyone uses Chrome or Firefox to open URLs which are not in the Corporate Network Boundary, it will automatically open in Windows Defender Application Guard window. The steps include installing Windows Defender Companion app from Microsoft […]

M365 Environment 16 – Windows Defender Application Guard

In this post we’ll configure Windows Defender Application Guard. Windows Defender Application Guard is a Windows 10 feature which helps protect in a way that when an employee goes to an untrusted site through either Microsoft Edge or Internet Explorer, Microsoft Edge opens the site in an isolated environment, which is separate from the host […]