Forum Discussion
Solved
Enable Domain Network FW via Intune
Hello Experts, I've been trying to implement some defender recommendations and can't figure out why " Secure Microsoft Defender Firewall domain profile" does not have any effect on the endpoint...
- I've just found there is a GPO pushing FW configuration to end user devices.... From what I've read, GPO wins when GPO and Intune both push some policy...
I've removed my computer from that GPO and FW is now showing up and running also for Domain network and also intune report shows FW enabled for my computer now...
So looks ok now...
The policy values in your screenshot seem legit. Have you checked the event view logs on the devices in question to gather more details?
haven't checked events as I am not very familiar with it.... What should I be looking for there pls? Will have a look
- I would start by checking under device management, windows defender, windows security event logs.
- I've just found there is a GPO pushing FW configuration to end user devices.... From what I've read, GPO wins when GPO and Intune both push some policy...
I've removed my computer from that GPO and FW is now showing up and running also for Domain network and also intune report shows FW enabled for my computer now...
So looks ok now...- Uhhh.... dont use mdmwinsovergp 🙂 ... it only applies to the policy csp... there are better options to make sure the firewall settings arent applied on intune enrolled devices.
Use OU seperation, Use Security groups, Use Item-level targetting , Use WMI :)...
