Microsoft Entra Suite Tech Accelerator
Aug 14 2024, 07:00 AM - 09:30 AM (PDT)
Microsoft Tech Community

What URLs are allowed when a device is in isolation?

Microsoft

I have a customer who's asking what URLs are allowed when a device has been set to "Isolated".  I know there's full isolation (where the only thing allowed is the Defender ATP service) and selective isolation (for Windows devices which allows Outlook, Teams and Skype for Business).

 

Per "Take response actions on a device in Microsoft Defender for Endpoint - Microsoft Defender for Endpoi...", when isolating a device, "only certain processes and destinations are allowed."

 

So:

 

#1-is there a more detailed list of what's allowed?

#2-is it configurable?  

 

Thanks!

1 Reply
I am not sure if there is a definitive list for what you are looking for, but I will say that msense and defender cloud *wd* urls will be required access at a minimum. The full list can be found at the link below which requires unrestricted access in general- https://learn.microsoft.com/en-us/defender-endpoint/configure-network-connections-microsoft-defender...