Defender firewall, users are not local admins, cant allow apps

%3CLINGO-SUB%20id%3D%22lingo-sub-1627069%22%20slang%3D%22en-US%22%3EDefender%20firewall%2C%20users%20are%20not%20local%20admins%2C%20cant%20allow%20apps%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-1627069%22%20slang%3D%22en-US%22%3E%3CP%3EA%20third%20part%20program%20has%20been%20used%20as%20firewall.%20When%20that%20is%20uninstalled%20and%20Defender%20firewall%20is%20configured%20through%20Intune%2C%20the%20users%20see%20popups%20with%20IE.%20%22Windows%20Defender%20Firewall%20has%20blocked%20Microsoft%20Teams%20on%20all%20public%2C%20private%20and%20domain%20networks.%22%3C%2FP%3E%3CP%3EWhen%20users%20are%20not%20local%20administrators%2C%20they%20cant%20allow%20access%20to%20the%20software.%3C%2FP%3E%3CP%3EHow%20do%20we%20solve%20this%3F%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-LABS%20id%3D%22lingo-labs-1627069%22%20slang%3D%22en-US%22%3E%3CLINGO-LABEL%3EIntune%3C%2FLINGO-LABEL%3E%3CLINGO-LABEL%3EMobile%20Device%20Management%20(MDM)%3C%2FLINGO-LABEL%3E%3C%2FLINGO-LABS%3E%3CLINGO-SUB%20id%3D%22lingo-sub-1627150%22%20slang%3D%22en-US%22%3ERe%3A%20Defender%20firewall%2C%20users%20are%20not%20local%20admins%2C%20cant%20allow%20apps%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-1627150%22%20slang%3D%22en-US%22%3EYou%20should%20deploy%20the%20firewall%20rules%20through%20a%20policy%20within%20Intune%3CBR%20%2F%3E%3CA%20href%3D%22https%3A%2F%2Fdocs.microsoft.com%2Fen-us%2Fwindows%2Fsecurity%2Fthreat-protection%2Fwindows-firewall%2Fcreate-windows-firewall-rules-in-intune%23%3A~%3Atext%3DTo%2520get%2520started%252C%2520open%2520Device%2CSelect%2520Windows%2520Defender%2520Firewall.%26amp%3Btext%3DA%2520single%2520Endpoint%2520Protection%2520profile%2Cmaximum%2520of%2520150%2520firewall%2520rules%22%20target%3D%22_blank%22%20rel%3D%22noopener%20noreferrer%22%3Ehttps%3A%2F%2Fdocs.microsoft.com%2Fen-us%2Fwindows%2Fsecurity%2Fthreat-protection%2Fwindows-firewall%2Fcreate-windows-firewall-rules-in-intune%23%3A~%3Atext%3DTo%2520get%2520started%252C%2520open%2520Device%2CSelect%2520Windows%2520Defender%2520Firewall.%26amp%3Btext%3DA%2520single%2520Endpoint%2520Protection%2520profile%2Cmaximum%2520of%2520150%2520firewall%2520rules%3C%2FA%3E.%3C%2FLINGO-BODY%3E%3CLINGO-SUB%20id%3D%22lingo-sub-1627154%22%20slang%3D%22en-US%22%3ERe%3A%20Defender%20firewall%2C%20users%20are%20not%20local%20admins%2C%20cant%20allow%20apps%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-1627154%22%20slang%3D%22en-US%22%3E%3CP%3E%3CA%20href%3D%22https%3A%2F%2Ftechcommunity.microsoft.com%2Ft5%2Fuser%2Fviewprofilepage%2Fuser-id%2F186539%22%20target%3D%22_blank%22%3E%40Thijs%20Lecomte%3C%2FA%3E%26nbsp%3B%3C%2FP%3E%3CP%3EThanks%20for%20replying%2C%20have%20been%20looking%20into%20that.%3C%2FP%3E%3CP%3EBut%20I%20dont%20believe%20everything%20is%20closed%20by%20default%3F%26nbsp%3B%3C%2FP%3E%3CP%3EI%20havent%20seen%20this%20behaviour%20before.%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-SUB%20id%3D%22lingo-sub-1627196%22%20slang%3D%22en-US%22%3ERe%3A%20Defender%20firewall%2C%20users%20are%20not%20local%20admins%2C%20cant%20allow%20apps%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-1627196%22%20slang%3D%22en-US%22%3EIf%20you%20have%20configured%20the%20firewall%20to%20block%20all%20incoming%20connections%2C%20than%20it's%20normal%20that%20Teams%20etc%20can't%20work%20when%20the%20users%20aren't%20local%20admin%3C%2FLINGO-BODY%3E
Occasional Contributor

A third part program has been used as firewall. When that is uninstalled and Defender firewall is configured through Intune, the users see popups with IE. "Windows Defender Firewall has blocked Microsoft Teams on all public, private and domain networks."

When users are not local administrators, they cant allow access to the software.

How do we solve this?

 

 

3 Replies

@Thijs Lecomte 

Thanks for replying, have been looking into that.

But I dont believe everything is closed by default? 

I havent seen this behaviour before.

If you have configured the firewall to block all incoming connections, than it's normal that Teams etc can't work when the users aren't local admin