Forum Discussion
Limit Advanced Threat Protection to one domain
Greetings, We use Azure Advanced Threat Protection outside of Azure Security Center. We view the information in a stand alone ATP area. We have several forests but only want to protect one. ...
The secure score control (using MDI data) will show any DCs (and soon AD FS servers) that *should* be monitored by the MDI sensor in order for the organization to be considered protected and gain the point, we are excluding discovered DCs where the domains has a 1-way external trust, as this means that no entities from the the other domain can cause issues ("they trust us but we do not trust them")
If this is not the case and you're willing to accept the risk, you can close that control or mark it as resolved through 3rd party.
With that said, we are evaluating how to provide more granular exclusion options but there is no ETA that i can currently share
Cool. The I will then wait for the exclusion option. Many thanks for your replies.