Full Automation Capabilities in Linux OS

Hello eveyone,

We have configured Defender to detect viruses, and our goal is that if one of our assets downloads or encounters a virus, it is automatically hidden or removed.

Based on the documentation regarding the automation levels in Automated Investigation and Remediation capabilities, we have set it to "Full - remediate threats automatically."

While this works correctly on Windows devices, we have noticed that on Linux devices, the defender still detect the virus but it was not prevented. 

I was wondering if anyone has encountered this issue and, if so, how it was resolved?

Additionally, as I am new to the Defender platform, I wanted to ask if could this issue potentially be resolved through specific Linux policies or functionalities?

Best regards

Mathiew