Forum Discussion
Feature request: Block readaccess to Windows Defender exclusions
Hello Defender ATP Team, I have already submitted this request via the Feedbackhub, but I think it is important enough to request it here. A user without administrative right can't add exclus...
A quick status from my side about this topic. Someone at Microsoft listened to this post or my Feedbackhub request:
Starting with Windows Defender Platform Version 4.18.2008.4, only admins can view the exclusions when using the Powershell cmdlet "Get-MpPreference":
Sadly, the access to the exclusions via registry (with userrights) is still possible:
The access to the ASR exclusions is also still possible via powershell and registry.
So if you are the one from Microsoft who read my post: it would be great to get this things fixed with the next platform version.
Cheers,
Stefan
This a very important topic. I am very bothered by this. I don't want that the users are able to see the exclusions that I have applied by the policy. It is a security breach.
Just a question when you say that on 4.18.2008.4 only admins can see, do you know if it is also hidden from Defender UI (interface)? Thanks.
Just a question when you say that on 4.18.2008.4 only admins can see, do you know if it is also hidden from Defender UI (interface)? Thanks.
Thiago_Mota Unfortunately, no. The "normal" User without administrative rights can still see exclusion in the Securitycenter:
- This should be adressed for sure!
