cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 

Will Microsoft Defender for Endpoint prevent user to change settings in Windows security?

KevinLin
Copper Contributor

‎Sep 07 2021 02:27 AM - edited ‎Sep 07 2021 02:29 AM

‎Sep 07 2021 02:27 AM - edited ‎Sep 07 2021 02:29 AM

Will Microsoft Defender for Endpoint prevent user to change settings in Windows security?

Hi

1. If I turn on Allow or block file ( Microsoft 365 Defender > Settings >Endpoints > General > Advanced features > Allow or block file > On), Will Microsoft Defender for Endpoint prevent user to change settings in Windows security?

 

2. If yes, how to let user have ability to turn it off?

    (Why I ask the question is After turn off Allow or block file, user still see "This setting is managed by your administrator")

Preview file
243 KB
Preview file
283 KB
1,497 Views
0 Likes
2 Replies
Reply
2 Replies
mas18

‎Sep 07 2021 12:50 PM

‎Sep 07 2021 12:50 PM

Re: Will Microsoft Defender for Endpoint prevent user to change settings in Windows security?

1. No, allow or block file nothing to do with preventing user to change the security settings. Tamper protection can prevent security settings beings changed..

2. Reason for seeing message "..managed by administrator" is either those settings are managed by configuration management tools like group policy, mecm, intune...
0 Likes
Reply
KevinLin

‎Sep 07 2021 11:12 PM

‎Sep 07 2021 11:12 PM

Re: Will Microsoft Defender for Endpoint prevent user to change settings in Windows security?

About 2.
The user is local user, computer doesn't join AD, all group policy is "Not configured", we don't have MECM and Intune.

How to check what manage the setting?
0 Likes
Reply