Forum Discussion
ASR Only Per Rule Exclusions doesn't work - AsrOfficeCommAppChildProcessBlocked - global did
Hello, I'm trying exclude an application from ASR rule "Block Office communication application from creating child processes" but it doesn't work. ASR global exclusion ("Attack Surface Reduction On...
Hi there! It would be great if you could provide more details. Have you already deployed any GPO or ASR policies on that device? Don't you have any other ASR with a per-rule exclusion for that device? If so, combine the configurations for ASR per rule exclusions into a single ASR policy.
checkout
https://learn.microsoft.com/en-us/mem/intune/protect/endpoint-security-asr-policy#exclusions-for-attack-surface-reduction-rules
checkout
https://learn.microsoft.com/en-us/mem/intune/protect/endpoint-security-asr-policy#exclusions-for-attack-surface-reduction-rules
- Hi,
there is only one ASR policy. I work with this policy and adding exclusion directly to this policy. It is hybrid device, but all MDE policies are managend in Intune.- We use Intune as source for ASR and other security policies.
