Forum Discussion
ASR (Attach Surface Reduction) Policies showing Error
We have configured ASR Rules using Endpoint Security Policies in Microsoft Intune.
However many endpoints are showing errors. (See Attached)
How can we mitigate these errors.
1 Reply
- Greetings! Have you double checked that these clients are fulfilling the requirements? https://learn.microsoft.com/en-us/microsoft-365/security/defender-endpoint/enable-attack-surface-reduction?view=o365-worldwide#requirements
Specifically I would double check these first:
- Microsoft Defender Antivirus as primary AV (real-time protection on)
- Cloud-Delivery Protection on (some rules require that)
- Windows Enterprise E5 or E3 License
I assume it's working for some devices, but for others not? Are there any particular differences between these device types (in terms of licensing/configuration)?
