Add double quotation marks around the path to executable for all service - proactively

Valued Contributor

Hi all,

 

Is there a way to check / fix any paths to exes which dont have quotations? - via intune

 

 

6 Replies
Could you give an example so we have an idea about what you are trying to accomplish?

Hi @Rudy_Ooms_MVP 

 

I want to implement this security recommendation: 

 

Screenshot 2022-12-07 at 08.02.58.png

Was wondering if it can be done by intune

Am I right in saying that this is a security hardening requirement similar to that of CIS controls? If yes, then there is nothing available in Intune to configure this natively. You will probably need to use PS script. Either directly or through proactive remediation.
Hi,

Would you know what sort of script I need to run for this?
No, sorry. But I will like to think that the script will add quotes against each service path in the registry. Here is an example - https://www.techiessphere.com/2017/06/how-to-fix-unquoted-service-path-vulnerability.html

Hi @rahuljindal-MVP @Rudy_Ooms_MVP 

 

I would like to do this all remotely rather than on per machine to then manually add quotations to the missing ones, maybe as a proactive remediation if this is possible so that its all automatically found and fixed ?