Forum Discussion
Solved
Exlude a Computer for some hour from defender from endpoint
Hello I would like to know if there is a way to exclude defender for endpoint protection from a pc from a couple of hours. Kind regards
- You can set the device to troubleshooting mode, this doesn't turn off any protections but it will allow local admin to turn them off. Or, you could offboard the device using the API and then onboard it again when you are finished.
pozlu0 hi yes you can exclude as much as you want, from the devices blade choose the device , click on it , and click on exclude,โonce you're done you can activate it again
Please click Mark as Best Response & Like if my post helped you to solve your issue. This will help others to find the correct solution easily.
- This is not what 'Exclude' does in MDE. The function mainly centers around vulnerability management. See here: https://learn.microsoft.com/en-us/microsoft-365/security/defender-endpoint/exclude-devices
- I know this but the only excluding in MDE is that option that cover the vulnerability management and reports, because offboarding a device from MDE is not an excluding ๐ it is removing the device completely from MDE and that's not his case.
- Yes, the poster did not specify exactly what they meant by 'exclude'. But, questions about exclusions always involve excluding from security protections, not excluding from vulnerability management reports. At best you should have clarified this limitation instead of potentially wasting the poster's time and the time of anyone else who winds up here looking to answer the same question.