May 31 2023 05:05 AM
Hi, I have onboarded servers 2012 R2, 2016, 2019 and 2022 into the Microsoft Defender for Endpoint via a unified solution (I am not using MMA or AMA), All statuses are Active and onboarded in the www.security.microsoft.com console. These servers are managing through the SCCM and I could deploy the Antimalware policy for all servers. Still, I am unable to deploy ASR rules for the onboarded servers, I have tried manually configure rules into the servers. Still, when I run Get-MpPreference powershell command there are blank fields for ASR components. Any solution for this?
Note: These servers are not joined AAD.
May 31 2023 06:45 AM
Jun 02 2023 01:10 AM
Jan 11 2024 07:36 AM - edited Jan 11 2024 08:54 AM
Ok works now. That's what I did
find in policy Block Webshell creation for Servers and set it to ‘Not Configured’
need to investigate that, but in general without that setting works fine.
Please confirm from your side.
Regards
Adam
Could you pls check from your side, how you have configured below settings:
btw similar topic: ASR Policy "Not Applicable" - Microsoft Q&A