Forum Discussion
sumo83
Jan 05, 2024Iron Contributor
Enable Domain Network FW via Intune
Hello Experts, I've been trying to implement some defender recommendations and can't figure out why " Secure Microsoft Defender Firewall domain profile" does not have any effect on the endpoint...
- Jan 08, 2024I've just found there is a GPO pushing FW configuration to end user devices.... From what I've read, GPO wins when GPO and Intune both push some policy...
I've removed my computer from that GPO and FW is now showing up and running also for Domain network and also intune report shows FW enabled for my computer now...
So looks ok now...
rahuljindal-MVP
Bronze Contributor
The policy values in your screenshot seem legit. Have you checked the event view logs on the devices in question to gather more details?
sumo83
Jan 05, 2024Iron Contributor
haven't checked events as I am not very familiar with it.... What should I be looking for there pls? Will have a look
- rahuljindal-MVPJan 05, 2024Bronze ContributorI would start by checking under device management, windows defender, windows security event logs.
- sumo83Jan 08, 2024Iron ContributorI've just found there is a GPO pushing FW configuration to end user devices.... From what I've read, GPO wins when GPO and Intune both push some policy...
I've removed my computer from that GPO and FW is now showing up and running also for Domain network and also intune report shows FW enabled for my computer now...
So looks ok now...- rahuljindal-MVPJan 08, 2024Bronze Contributor
sumo83 that is good. If you want you can try pushing mdmwinsovergpo policy from Intune which will allow MDM to apply the setting if there is a conflict with GPO.
Edit: Scratch the recommendation of mdmwinsovergpo. I was under wrong impression that FW CSP is supported.