User Profile
rickside
Copper Contributor
Joined 4 years ago
User Widgets
Recent Discussions
Re: problems with MS Defender for Endpoint on iOS device
MWilkins you are absolutely right. On unsupervised devices, the VPN is still present, and it prevents access to random sites (news, banks, etc.). I tried to figure out a way to get rid of the VPN without breaking up Defender status and compliance policy in Intune without any success yet. For the moment, we told our affected users to temporarily disable the VPN when it is not working.17KViews0likes1CommentRe: problems with MS Defender for Endpoint on iOS device
From what I understand, ATP will still do its job (meaning it will block malicious websites that it already knows) but you are correct, it will not analyze outbound traffic on the fly. Unless Microsoft provides a better way to do this, I am afraid you'll just have to live with it or search for another product/solution. I am not a big fan of the way the traffic inspection works on iOS (i.e. VPN-THAT-POINTS-TO-LOCAL-LOOPBACK) but it seems that's the way they decided to go.20KViews0likes10CommentsRe: problems with MS Defender for Endpoint on iOS device
MarkTheITGuy The problem is not with Defender on iOS per se but instead with the ATP module (web content filtering). Microsoft provides a script for that. It can be downloaded here. The problem is, once a policy that contains that script is created in InTune and is applied to iOS devices, traffic becomes very slow and some sites don't even load (bank sites, news sites, etc.). If you let ATP enabled but remove the policy to filter the traffic it will work fine. However, the outbound traffic will not be inspected anymore.20KViews1like12CommentsRe: Office 365 ATP in conjunction with a Third Party spam filter
AlexR91 Hi Alex, I would be very interested to know how you set up the Enhanced Filtering for Connectors is conjunction with your third party spam filter solution. I am trying to do the exact same thing because I realized our 3rd party solution was not able to block some phishing attempts that Microsoft was able to spot but because we have a rule in place that set confidence level to -1 to all incoming email from our 3rd party provider, somes users end up receiving bad emails in their mailbox. I think the EFFC would fix this but I want to make sure I configure it properly. Thanks in advance for your help!4KViews0likes0Comments
Groups
Recent Blog Articles
No content to show