cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 

GPO PreventSmartScreenPromptOverrideForFiles

re_bl
Brass Contributor

‎Feb 10 2021 10:52 PM

‎Feb 10 2021 10:52 PM

GPO PreventSmartScreenPromptOverrideForFiles

We have activated the following GPO => Prevent bypassing of Microsoft Defender SmartScreen warnings about downloads, as it's written in the Security Baseline. Now we have a Problem that an Internal Web Application provide MSI download and the GPO is blocking the download.

PreventSmartScreenPromptOverrideForFiles.jpg

Do we have an option to only unlock Internal URL/ Web Application? Because we won't such download unlock for all URL's.

2,262 Views
1 Like
4 Replies
Reply
4 Replies
Kelly_Y

‎Feb 12 2021 02:49 PM

‎Feb 12 2021 02:49 PM

Re: GPO PreventSmartScreenPromptOverrideForFiles

@re_bl Hi!  I just took a look at our policy documentation.  Have you tried to use the 

SmartScreenAllowListDomains Policy?  (https://docs.microsoft.com/en-us/deployedge/microsoft-edge-policies#smartscreenallowlistdomains)

 

It mentions "Configure the list of Microsoft Defender SmartScreen trusted domains. This means: Microsoft Defender SmartScreen won't check for potentially malicious resources like phishing software and other malware if the source URLs match these domains. The Microsoft Defender SmartScreen download protection service won't check downloads hosted on these domains."  

 

Thanks! 

 

-Kelly

0 Likes
Reply
re_bl

‎Feb 18 2021 01:58 AM

‎Feb 18 2021 01:58 AM

Re: GPO PreventSmartScreenPromptOverrideForFiles

@Kelly_Y To Configure the GPO Configure the list of Microsoft Defender SmartScreen trusted domains, has none effect. Its still not working. 

0 Likes
Reply
Kelly_Y

‎Feb 18 2021 02:42 PM

‎Feb 18 2021 02:42 PM

Re: GPO PreventSmartScreenPromptOverrideForFiles

@re_bl Thanks for following up!  I've reached out to the team to see if they have any recommendations.  We will follow up if they have any information/insights.  

 

-Kelly

0 Likes
Reply
PeRich

‎Mar 17 2021 04:52 AM - edited ‎Mar 17 2021 04:56 AM

‎Mar 17 2021 04:52 AM - edited ‎Mar 17 2021 04:56 AM

Re: GPO PreventSmartScreenPromptOverrideForFiles

Same here. Additionally disabled

 

If you disable this setting, "potentially unwanted app blocking with Microsoft Defender SmartScreen is turned off."

0 Likes
Reply