Defender polices- Blocking Office APP

TechUST 516 Reputation points
2023-05-11T17:46:34.6833333+00:00

Hi Expert,

Need your help on below issue,Blocking error

I have excluded for smart office from intune for users, but getting blocking popup.

Can you please suggest.Blocking error.JPG

snap-01
Microsoft Intune
Microsoft Intune
A Microsoft cloud-based management solution that offers mobile device management, mobile application management, and PC management capabilities.
4,669 questions
Microsoft Defender for Identity
Microsoft Defender for Identity
A Microsoft service that helps protect enterprise hybrid environments from multiple types of advanced, targeted cyberattacks and insider threats.
175 questions
0 comments

5 answers

Sort by: Most helpful
Most helpful Newest Oldest
  1. Simon Ren-MSFT 31,756 Reputation points Microsoft Vendor
    2023-05-12T08:41:19.2366667+00:00

    Hi,

    Thank you for posting in Microsoft Q&A forum.

    Please make sure the Antivirus exclusions is deployed to the users.

    We can also try to check Microsoft Defender Antivirus Exclusions manually on the device. Open Settings –> Update & Security –> Windows Security –> Virus & threat protection –> Virus & threat protection settings –> Click on Manage Settings –> Scroll down to find Exclusions –> Click on Add or remove exclusions. Can we see the exclusions you have configured in Intune here?

    Thanks for your time. Have a nice day!

    Best regards,

    Simon

    If the response is helpful, please click "Accept Answer" and upvote it.

    Note: Please follow the steps in our documentation to enable e-mail notifications if you want to receive the related email notification for this thread.

    0 comments
  2. Simon Ren-MSFT 31,756 Reputation points Microsoft Vendor
    2023-05-16T07:26:25.7866667+00:00

    Hi,

    Hope everything goes well. Do you need any further assistance about this issue? If yes, please feel free to let us know, we will do our best to help you.

    If the response is helpful, it's appreciated that you could click "Accept Answer" and upvote it, this will help other users to search for useful information more quickly.

    Thanks for your time.

    Best regards,
    Simon

    0 comments
  3. TechUST 516 Reputation points
    2023-05-16T07:43:58.8833333+00:00

    Hi Simon Ren-MSFT, i have query regarding defender policy. If device is co-managed and anti malware policy already configured in configmgr so do we need to configure AV policy in intune. For now we have Device restrictions policy for defender in intune but as i can see No AV policy created. So if we exclude any file folder ' processes from device restrictions profile , will it work or need to create AV policy?

  4. Simon Ren-MSFT 31,756 Reputation points Microsoft Vendor
    2023-05-16T09:36:50.62+00:00

    Hi,

    Thanks for your reply.

    Have you switched Endpoint Protection workload (which including Microsoft Defender Antivirus policy) from Configuration Manager to Intune? Until you switch the workloads over to Intune, Configuration Manager continues to manage the workloads.

    For more information, please refer to:

    https://video2.skills-academy.com/en-us/mem/configmgr/comanage/workloads#endpoint-protection
    https://video2.skills-academy.com/en-us/mem/configmgr/comanage/how-to-switch-workloads

    The Microsoft Defender Antivirus settings that are part of the Device restrictions profile type for Intune Device configuration are not included in scope of the Endpoint protection slider. To manage Microsoft Defender Antivirus for co-managed devices with the endpoint protection slider enabled, use the new Antivirus policies in Microsoft Intune admin center > Endpoint security > Antivirus. The new policy type has new and improved options available, and support all of the same settings available in the Device restrictions profile.

    Best regards,

    Simon

    If the response is helpful, please click "Accept Answer" and upvote it.

    Note: Please follow the steps in our documentation to enable e-mail notifications if you want to receive the related email notification for this thread.

  5. Simon Ren-MSFT 31,756 Reputation points Microsoft Vendor
    2023-05-17T09:01:20.0633333+00:00

    Hi,

    Thanks for your reply.

    Per my experience, if you have switched Endpoint Protection workload from Configuration Manager to Intune under Administration\Cloud\Cloud Attach\co-management object\Properties\Workloads as shown below, the exclusion for smart office should work.

    If the issue persists, it is needed to check some logs based on your specific environment. With Q&A limitation, Q&A is not a good channel for such issue. Given this situation, it is suggested to create an online support ticket to get more help. Here is the support link:

    https://video2.skills-academy.com/en-us/mem/get-support

    workload

    Thanks for your understanding. Have a nice day!

    Best regards,

    Simon

    If the response is helpful, please click "Accept Answer" and upvote it.

    Note: Please follow the steps in our documentation to enable e-mail notifications if you want to receive the related email notification for this thread.

    0 comments