Forum Discussion

Brass Contributor

Nov 11, 2024

Solved

Firewall Off despite policy being enabled

In Firewall and network protection, It says Firewall is off for all Network types. However it should be on. Is this normal/expected? However, In Sec. providers, Firewall is enabled. ...

Mobile Application Management (MAM)

mobile device management (mdm)

Software Management

rahuljindal
Nov 11, 2024
This can happen if you have a GPO policy for Defender FW also assigned as it will take precedence over Intune against the Defender CSP.

Bronze Contributor

Nov 11, 2024

This can happen if you have a GPO policy for Defender FW also assigned as it will take precedence over Intune against the Defender CSP.

AhmedSHMK
Brass Contributor
Nov 11, 2024

Well, while Gpresult HTML does not show anything related to Firewall, I could locate the following key:
Computer\HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\DomainProfile called EnableFirewall and the value is 0x00000000
I have since tried to use the command below to enable it to test but it is still showing disabled:
reg add "HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\DomainProfile" /v EnableFirewall /t REG_DWORD /d 1 /f Set-ItemProperty -Path "HKLM:\SOFTWARE\Policies\Microsoft\WindowsFirewall\DomainProfile" -Name "EnableFirewall" -Value 1
- rahuljindal
  Bronze Contributor
  Nov 11, 2024
  Did you run gpresult for user or with computer as scope?
  - AhmedSHMK
    Brass Contributor
    Nov 12, 2024
    Well both really.
    When enabled locally i.e. from windows firewall in control panel, It works. But for some reason Intune policies do not seem to enable it.
    Not sure if something in the environment itself etc... could be blocking it.

Resources