Forum Discussion

Brass Contributor

Nov 11, 2024

Firewall Off despite policy being enabled

In Firewall and network protection, It says Firewall is off for all Network types. However it should be on. Is this normal/expected? However, In Sec. providers, Firewall is enabled. ...

Mobile Application Management (MAM)

Mobile Device Management (MDM)

Software Management

rahuljindal-MVP
Nov 11, 2024
This can happen if you have a GPO policy for Defender FW also assigned as it will take precedence over Intune against the Defender CSP.

AhmedSHMK

Brass Contributor

Well, while Gpresult HTML does not show anything related to Firewall, I could locate the following key:

Computer\HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\DomainProfile called EnableFirewall and the value is 0x00000000

I have since tried to use the command below to enable it to test but it is still showing disabled:

reg add "HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\DomainProfile" /v EnableFirewall /t REG_DWORD /d 1 /f Set-ItemProperty -Path "HKLM:\SOFTWARE\Policies\Microsoft\WindowsFirewall\DomainProfile" -Name "EnableFirewall" -Value 1

rahuljindal-MVP

Bronze Contributor

Nov 11, 2024

Did you run gpresult for user or with computer as scope?

AhmedSHMK
Brass Contributor
Nov 12, 2024
Well both really.
When enabled locally i.e. from windows firewall in control panel, It works. But for some reason Intune policies do not seem to enable it.
Not sure if something in the environment itself etc... could be blocking it.
- rahuljindal-MVP
  Bronze Contributor
  Nov 12, 2024
  Can you also run rsop as both user and computer and share the result here for the Windows Defender settings?
  - AhmedSHMK
    Brass Contributor
    Nov 18, 2024
    I located it and made an exception. Works fine now. Logging for such issues is very unclear though so hard to locate what the issue is. Either ways its good now. Thank you

Forum Discussion

Firewall Off despite policy being enabled

Share

Resources