Policy CSP - WindowsDefenderSecurityCenter
CompanyName
| Scope | Editions | Applicable OS |
|---|---|---|
| ✅ Device ❌ User |
✅ Pro ✅ Enterprise ✅ Education ✅ Windows SE ✅ IoT Enterprise / IoT Enterprise LTSC |
✅ Windows 10, version 1709 [10.0.16299] and later |
./Device/Vendor/MSFT/Policy/Config/WindowsDefenderSecurityCenter/CompanyName
Specify the company name that will be displayed in Windows Security and associated notifications. This setting must be enabled for any contact information to appear.
Enabled:
Enter the company name in the Options section.
Disabled:
Company information won't be shown at all in either Windows Security or any notifications that it creates.
Not configured:
Same as Disabled.
Description framework properties:
| Property name | Property value |
|---|---|
| Format | chr (string) |
| Access Type | Add, Delete, Get, Replace |
Group policy mapping:
| Name | Value |
|---|---|
| Name | EnterpriseCustomization_CompanyName |
| Friendly Name | Specify contact company name |
| Element Name | Company name. |
| Location | Computer Configuration |
| Path | Windows Components > Windows Security > Enterprise Customization |
| Registry Key Name | SOFTWARE\Policies\Microsoft\Windows Defender Security Center\Enterprise Customization |
| ADMX File Name | WindowsDefenderSecurityCenter.admx |
DisableAccountProtectionUI
| Scope | Editions | Applicable OS |
|---|---|---|
| ✅ Device ❌ User |
✅ Pro ✅ Enterprise ✅ Education ✅ Windows SE ✅ IoT Enterprise / IoT Enterprise LTSC |
✅ Windows 10, version 1803 [10.0.17134] and later |
./Device/Vendor/MSFT/Policy/Config/WindowsDefenderSecurityCenter/DisableAccountProtectionUI
Hide the Account protection area in Windows Security.
Enabled:
The Account protection area will be hidden.
Disabled:
The Account protection area will be shown.
Not configured:
Same as Disabled.
Description framework properties:
| Property name | Property value |
|---|---|
| Format | int |
| Access Type | Add, Delete, Get, Replace |
| Default Value | 0 |
Allowed values:
| Value | Description |
|---|---|
| 0 (Default) | (Disable) The users can see the display of the Account protection area in Windows Defender Security Center. |
| 1 | (Enable) The users can't see the display of the Account protection area in Windows Defender Security Center. |
Group policy mapping:
| Name | Value |
|---|---|
| Name | AccountProtection_UILockdown |
| Friendly Name | Hide the Account protection area |
| Location | Computer Configuration |
| Path | Windows Components > Windows Security > Account protection |
| Registry Key Name | SOFTWARE\Policies\Microsoft\Windows Defender Security Center\Account protection |
| Registry Value Name | UILockdown |
| ADMX File Name | WindowsDefenderSecurityCenter.admx |
DisableAppBrowserUI
| Scope | Editions | Applicable OS |
|---|---|---|
| ✅ Device ❌ User |
✅ Pro ✅ Enterprise ✅ Education ✅ Windows SE ✅ IoT Enterprise / IoT Enterprise LTSC |
✅ Windows 10, version 1709 [10.0.16299] and later |
./Device/Vendor/MSFT/Policy/Config/WindowsDefenderSecurityCenter/DisableAppBrowserUI
Hide the App and browser protection area in Windows Security.
Enabled:
The App and browser protection area will be hidden.
Disabled:
The App and browser protection area will be shown.
Not configured:
Same as Disabled.
Description framework properties:
| Property name | Property value |
|---|---|
| Format | int |
| Access Type | Add, Delete, Get, Replace |
| Default Value | 0 |
Allowed values:
| Value | Description |
|---|---|
| 0 (Default) | (Disable) The users can see the display of the app and browser protection area in Windows Defender Security Center. |
| 1 | (Enable) The users can't see the display of the app and browser protection area in Windows Defender Security Center. |
Group policy mapping:
| Name | Value |
|---|---|
| Name | AppBrowserProtection_UILockdown |
| Friendly Name | Hide the App and browser protection area |
| Location | Computer Configuration |
| Path | Windows Components > Windows Security > App and browser protection |
| Registry Key Name | SOFTWARE\Policies\Microsoft\Windows Defender Security Center\App and Browser protection |
| Registry Value Name | UILockdown |
| ADMX File Name | WindowsDefenderSecurityCenter.admx |
DisableClearTpmButton
| Scope | Editions | Applicable OS |
|---|---|---|
| ✅ Device ❌ User |
✅ Pro ✅ Enterprise ✅ Education ✅ Windows SE ✅ IoT Enterprise / IoT Enterprise LTSC |
✅ Windows 10, version 1809 [10.0.17763] and later |
./Device/Vendor/MSFT/Policy/Config/WindowsDefenderSecurityCenter/DisableClearTpmButton
Disable the Clear TPM button in Windows Security.
Enabled:
The Clear TPM button will be unavailable for use.
Disabled:
The Clear TPM button will be available for use.
Not configured:
Same as Disabled.
Description framework properties:
| Property name | Property value |
|---|---|
| Format | int |
| Access Type | Add, Delete, Get, Replace |
| Default Value | 0 |
Allowed values:
| Value | Description |
|---|---|
| 0 (Default) | (Disabled or not configured) The security processor troubleshooting page shows a button that initiates the process to clear the security processor (TPM). |
| 1 | (Enabled) The security processor troubleshooting page won't show a button to initiate the process to clear the security processor (TPM). |
Group policy mapping:
| Name | Value |
|---|---|
| Name | DeviceSecurity_DisableClearTpmButton |
| Friendly Name | Disable the Clear TPM button |
| Location | Computer Configuration |
| Path | Windows Components > Windows Security > Device security |
| Registry Key Name | SOFTWARE\Policies\Microsoft\Windows Defender Security Center\Device security |
| Registry Value Name | DisableClearTpmButton |
| ADMX File Name | WindowsDefenderSecurityCenter.admx |
DisableDeviceSecurityUI
| Scope | Editions | Applicable OS |
|---|---|---|
| ✅ Device ❌ User |
✅ Pro ✅ Enterprise ✅ Education ✅ Windows SE ✅ IoT Enterprise / IoT Enterprise LTSC |
✅ Windows 10, version 1803 [10.0.17134] and later |
./Device/Vendor/MSFT/Policy/Config/WindowsDefenderSecurityCenter/DisableDeviceSecurityUI
Hide the Device security area in Windows Security.
Enabled:
The Device security area will be hidden.
Disabled:
The Device security area will be shown.
Not configured:
Same as Disabled.
Description framework properties:
| Property name | Property value |
|---|---|
| Format | int |
| Access Type | Add, Delete, Get, Replace |
| Default Value | 0 |
Allowed values:
| Value | Description |
|---|---|
| 0 (Default) | (Disable) The users can see the display of the Device security area in Windows Defender Security Center. |
| 1 | (Enable) The users can't see the display of the Device security area in Windows Defender Security Center. |
Group policy mapping:
| Name | Value |
|---|---|
| Name | DeviceSecurity_UILockdown |
| Friendly Name | Hide the Device security area |
| Location | Computer Configuration |
| Path | Windows Components > Windows Security > Device security |
| Registry Key Name | SOFTWARE\Policies\Microsoft\Windows Defender Security Center\Device security |
| Registry Value Name | UILockdown |
| ADMX File Name | WindowsDefenderSecurityCenter.admx |
DisableEnhancedNotifications
| Scope | Editions | Applicable OS |
|---|---|---|
| ✅ Device ❌ User |
✅ Pro ✅ Enterprise ✅ Education ✅ Windows SE ✅ IoT Enterprise / IoT Enterprise LTSC |
✅ Windows 10, version 1709 [10.0.16299] and later |
./Device/Vendor/MSFT/Policy/Config/WindowsDefenderSecurityCenter/DisableEnhancedNotifications
Only show critical notifications from Windows Security.
If the Suppress all notifications GP setting has been enabled, this setting will have no effect.
Enabled:
Local users will only see critical notifications from Windows Security. They won't see other types of notifications, such as regular PC or device health information.
Disabled:
Local users will see all types of notifications from Windows Security.
Not configured:
Same as Disabled.
Description framework properties:
| Property name | Property value |
|---|---|
| Format | int |
| Access Type | Add, Delete, Get, Replace |
| Default Value | 0 |
Allowed values:
| Value | Description |
|---|---|
| 0 (Default) | (Disable) Windows Defender Security Center will display critical and non-critical notifications to users.. |
| 1 | (Enable) Windows Defender Security Center only display notifications which are considered critical on clients. |
Group policy mapping:
| Name | Value |
|---|---|
| Name | Notifications_DisableEnhancedNotifications |
| Friendly Name | Hide non-critical notifications |
| Location | Computer Configuration |
| Path | Windows Components > Windows Security > Notifications |
| Registry Key Name | SOFTWARE\Policies\Microsoft\Windows Defender Security Center\Notifications |
| Registry Value Name | DisableEnhancedNotifications |
| ADMX File Name | WindowsDefenderSecurityCenter.admx |
DisableFamilyUI
| Scope | Editions | Applicable OS |
|---|---|---|
| ✅ Device ❌ User |
✅ Pro ✅ Enterprise ✅ Education ✅ Windows SE ✅ IoT Enterprise / IoT Enterprise LTSC |
✅ Windows 10, version 1709 [10.0.16299] and later |
./Device/Vendor/MSFT/Policy/Config/WindowsDefenderSecurityCenter/DisableFamilyUI
Hide the Family options area in Windows Security.
Enabled:
The Family options area will be hidden.
Disabled:
The Family options area will be shown.
Not configured:
Same as Disabled.
Description framework properties:
| Property name | Property value |
|---|---|
| Format | int |
| Access Type | Add, Delete, Get, Replace |
| Default Value | 0 |
Allowed values:
| Value | Description |
|---|---|
| 0 (Default) | (Disable) The users can see the display of the family options area in Windows Defender Security Center. |
| 1 | (Enable) The users can't see the display of the family options area in Windows Defender Security Center. |
Group policy mapping:
| Name | Value |
|---|---|
| Name | FamilyOptions_UILockdown |
| Friendly Name | Hide the Family options area |
| Location | Computer Configuration |
| Path | Windows Components > Windows Security > Family options |
| Registry Key Name | SOFTWARE\Policies\Microsoft\Windows Defender Security Center\Family options |
| Registry Value Name | UILockdown |
| ADMX File Name | WindowsDefenderSecurityCenter.admx |
DisableHealthUI
| Scope | Editions | Applicable OS |
|---|---|---|
| ✅ Device ❌ User |
✅ Pro ✅ Enterprise ✅ Education ✅ Windows SE ✅ IoT Enterprise / IoT Enterprise LTSC |
✅ Windows 10, version 1709 [10.0.16299] and later |
./Device/Vendor/MSFT/Policy/Config/WindowsDefenderSecurityCenter/DisableHealthUI
Hide the Device performance and health area in Windows Security.
Enabled:
The Device performance and health area will be hidden.
Disabled:
The Device performance and health area will be shown.
Not configured:
Same as Disabled.
Description framework properties:
| Property name | Property value |
|---|---|
| Format | int |
| Access Type | Add, Delete, Get, Replace |
| Default Value | 0 |
Allowed values:
| Value | Description |
|---|---|
| 0 (Default) | (Disable) The users can see the display of the device performance and health area in Windows Defender Security Center. |
| 1 | (Enable) The users can't see the display of the device performance and health area in Windows Defender Security Center. |
Group policy mapping:
| Name | Value |
|---|---|
| Name | DevicePerformanceHealth_UILockdown |
| Friendly Name | Hide the Device performance and health area |
| Location | Computer Configuration |
| Path | Windows Components > Windows Security > Device performance and health |
| Registry Key Name | SOFTWARE\Policies\Microsoft\Windows Defender Security Center\Device performance and health |
| Registry Value Name | UILockdown |
| ADMX File Name | WindowsDefenderSecurityCenter.admx |
DisableNetworkUI
| Scope | Editions | Applicable OS |
|---|---|---|
| ✅ Device ❌ User |
✅ Pro ✅ Enterprise ✅ Education ✅ Windows SE ✅ IoT Enterprise / IoT Enterprise LTSC |
✅ Windows 10, version 1709 [10.0.16299] and later |
./Device/Vendor/MSFT/Policy/Config/WindowsDefenderSecurityCenter/DisableNetworkUI
Hide the Firewall and network protection area in Windows Security.
Enabled:
The Firewall and network protection area will be hidden.
Disabled:
The Firewall and network protection area will be shown.
Not configured:
Same as Disabled.
Description framework properties:
| Property name | Property value |
|---|---|
| Format | int |
| Access Type | Add, Delete, Get, Replace |
| Default Value | 0 |
Allowed values:
| Value | Description |
|---|---|
| 0 (Default) | (Disable) The users can see the display of the firewall and network protection area in Windows Defender Security Center. |
| 1 | (Enable) The users can't see the display of the firewall and network protection area in Windows Defender Security Center. |
Group policy mapping:
| Name | Value |
|---|---|
| Name | FirewallNetworkProtection_UILockdown |
| Friendly Name | Hide the Firewall and network protection area |
| Location | Computer Configuration |
| Path | Windows Components > Windows Security > Firewall and network protection |
| Registry Key Name | SOFTWARE\Policies\Microsoft\Windows Defender Security Center\Firewall and network protection |
| Registry Value Name | UILockdown |
| ADMX File Name | WindowsDefenderSecurityCenter.admx |
DisableNotifications
| Scope | Editions | Applicable OS |
|---|---|---|
| ✅ Device ❌ User |
✅ Pro ✅ Enterprise ✅ Education ✅ Windows SE ✅ IoT Enterprise / IoT Enterprise LTSC |
✅ Windows 10, version 1709 [10.0.16299] and later |
./Device/Vendor/MSFT/Policy/Config/WindowsDefenderSecurityCenter/DisableNotifications
Hide notifications from Windows Security.
Enabled:
Local users won't see notifications from Windows Security.
Disabled:
Local users can see notifications from Windows Security.
Not configured:
Same as Disabled.
Description framework properties:
| Property name | Property value |
|---|---|
| Format | int |
| Access Type | Add, Delete, Get, Replace |
| Default Value | 0 |
Allowed values:
| Value | Description |
|---|---|
| 0 (Default) | (Disable) The users can see the display of Windows Defender Security Center notifications. |
| 1 | (Enable) The users can't see the display of Windows Defender Security Center notifications. |
Group policy mapping:
| Name | Value |
|---|---|
| Name | Notifications_DisableNotifications |
| Friendly Name | Hide all notifications |
| Location | Computer Configuration |
| Path | Windows Components > Windows Security > Notifications |
| Registry Key Name | SOFTWARE\Policies\Microsoft\Windows Defender Security Center\Notifications |
| Registry Value Name | DisableNotifications |
| ADMX File Name | WindowsDefenderSecurityCenter.admx |
DisableTpmFirmwareUpdateWarning
| Scope | Editions | Applicable OS |
|---|---|---|
| ✅ Device ❌ User |
✅ Pro ✅ Enterprise ✅ Education ✅ Windows SE ✅ IoT Enterprise / IoT Enterprise LTSC |
✅ Windows 10, version 1809 [10.0.17763] and later |
./Device/Vendor/MSFT/Policy/Config/WindowsDefenderSecurityCenter/DisableTpmFirmwareUpdateWarning
Hide the recommendation to update TPM Firmware when a vulnerable firmware is detected.
Enabled:
Users won't be shown a recommendation to update their TPM Firmware.
Disabled:
Users will see a recommendation to update their TPM Firmware if Windows Security detects the system contains a TPM with vulnerable firmware.
Not configured:
Same as Disabled.
Description framework properties:
| Property name | Property value |
|---|---|
| Format | int |
| Access Type | Add, Delete, Get, Replace |
| Default Value | 0 |
Allowed values:
| Value | Description |
|---|---|
| 0 (Default) | (Disable or Not configured) A warning will be displayed if the firmware of the security processor (TPM) should be updated for TPMs that have a vulnerability. |
| 1 | (Enabled) No warning will be displayed if the firmware of the security processor (TPM) should be updated. |
Group policy mapping:
| Name | Value |
|---|---|
| Name | DeviceSecurity_DisableTpmFirmwareUpdateWarning |
| Friendly Name | Hide the TPM Firmware Update recommendation. |
| Location | Computer Configuration |
| Path | Windows Components > Windows Security > Device security |
| Registry Key Name | SOFTWARE\Policies\Microsoft\Windows Defender Security Center\Device security |
| Registry Value Name | DisableTpmFirmwareUpdateWarning |
| ADMX File Name | WindowsDefenderSecurityCenter.admx |
DisableVirusUI
| Scope | Editions | Applicable OS |
|---|---|---|
| ✅ Device ❌ User |
✅ Pro ✅ Enterprise ✅ Education ✅ Windows SE ✅ IoT Enterprise / IoT Enterprise LTSC |
✅ Windows 10, version 1709 [10.0.16299] and later |
./Device/Vendor/MSFT/Policy/Config/WindowsDefenderSecurityCenter/DisableVirusUI
Hide the Virus and threat protection area in Windows Security.
Enabled:
The Virus and threat protection area will be hidden.
Disabled:
The Virus and threat protection area will be shown.
Not configured:
Same as Disabled.
Description framework properties:
| Property name | Property value |
|---|---|
| Format | int |
| Access Type | Add, Delete, Get, Replace |
| Default Value | 0 |
Allowed values:
| Value | Description |
|---|---|
| 0 (Default) | (Disable) The users can see the display of the virus and threat protection area in Windows Defender Security Center. |
| 1 | (Enable) The users can't see the display of the virus and threat protection area in Windows Defender Security Center. |
Group policy mapping:
| Name | Value |
|---|---|
| Name | VirusThreatProtection_UILockdown |
| Friendly Name | Hide the Virus and threat protection area |
| Location | Computer Configuration |
| Path | Windows Components > Windows Security > Virus and threat protection |
| Registry Key Name | SOFTWARE\Policies\Microsoft\Windows Defender Security Center\Virus and threat protection |
| Registry Value Name | UILockdown |
| ADMX File Name | WindowsDefenderSecurityCenter.admx |
DisallowExploitProtectionOverride
| Scope | Editions | Applicable OS |
|---|---|---|
| ✅ Device ❌ User |
✅ Pro ✅ Enterprise ✅ Education ✅ Windows SE ✅ IoT Enterprise / IoT Enterprise LTSC |
✅ Windows 10, version 1709 [10.0.16299] and later |
./Device/Vendor/MSFT/Policy/Config/WindowsDefenderSecurityCenter/DisallowExploitProtectionOverride
Prevent users from making changes to the Exploit protection settings area in Windows Security.
Enabled:
Local users can't make changes in the Exploit protection settings area.
Disabled:
Local users are allowed to make changes in the Exploit protection settings area.
Not configured:
Same as Disabled.
Description framework properties:
| Property name | Property value |
|---|---|
| Format | int |
| Access Type | Add, Delete, Get, Replace |
| Default Value | 0 |
Allowed values:
| Value | Description |
|---|---|
| 0 (Default) | (Disable) Local users are allowed to make changes in the exploit protection settings area. |
| 1 | (Enable) Local users can't make changes in the exploit protection settings area. |
Group policy mapping:
| Name | Value |
|---|---|
| Name | AppBrowserProtection_DisallowExploitProtectionOverride |
| Friendly Name | Prevent users from modifying settings |
| Location | Computer Configuration |
| Path | Windows Components > Windows Security > App and browser protection |
| Registry Key Name | SOFTWARE\Policies\Microsoft\Windows Defender Security Center\App and Browser protection |
| Registry Value Name | DisallowExploitProtectionOverride |
| ADMX File Name | WindowsDefenderSecurityCenter.admx |
| Scope | Editions | Applicable OS |
|---|---|---|
| ✅ Device ❌ User |
✅ Pro ✅ Enterprise ✅ Education ✅ Windows SE ✅ IoT Enterprise / IoT Enterprise LTSC |
✅ Windows 10, version 1709 [10.0.16299] and later |
./Device/Vendor/MSFT/Policy/Config/WindowsDefenderSecurityCenter/Email
Specify the email address or email ID that will be displayed in Windows Security and associated notifications.
Users can click on the contact information to create an email that will be sent to the specified address. The default email application will be used.
Enabled:
Enter the email address or email ID in the Options section.
Disabled:
A contact email address or email ID won't be shown in either Windows Security or any notifications it creates.
Not configured:
Same as Disabled.
Description framework properties:
| Property name | Property value |
|---|---|
| Format | chr (string) |
| Access Type | Add, Delete, Get, Replace |
Group policy mapping:
| Name | Value |
|---|---|
| Name | EnterpriseCustomization_Email |
| Friendly Name | Specify contact email address or Email ID |
| Element Name | Email address or email ID. |
| Location | Computer Configuration |
| Path | Windows Components > Windows Security > Enterprise Customization |
| Registry Key Name | SOFTWARE\Policies\Microsoft\Windows Defender Security Center\Enterprise Customization |
| ADMX File Name | WindowsDefenderSecurityCenter.admx |
EnableCustomizedToasts
| Scope | Editions | Applicable OS |
|---|---|---|
| ✅ Device ❌ User |
✅ Pro ✅ Enterprise ✅ Education ✅ Windows SE ✅ IoT Enterprise / IoT Enterprise LTSC |
✅ Windows 10, version 1709 [10.0.16299] and later |
./Device/Vendor/MSFT/Policy/Config/WindowsDefenderSecurityCenter/EnableCustomizedToasts
Display specified contact information to local users in Windows Security notifications.
Enabled:
Your company contact information will be displayed in notifications that come from Windows Security.
After setting this to Enabled, you must configure the Specify contact company name GP setting and at least one of the following GP settings:
-Specify contact phone number or Skype ID -Specify contact email number or email ID -Specify contact website.
Please note that in some cases we will be limiting the contact options that are displayed based on the notification space available.
Disabled:
No contact information will be shown on notifications.
Not configured:
Same as Disabled.
Description framework properties:
| Property name | Property value |
|---|---|
| Format | int |
| Access Type | Add, Delete, Get, Replace |
| Default Value | 0 |
Allowed values:
| Value | Description |
|---|---|
| 0 (Default) | Notification text. |
| 1 | (Enable) Notifications contain the company name and contact options. |
Group policy mapping:
| Name | Value |
|---|---|
| Name | EnterpriseCustomization_EnableCustomizedToasts |
| Friendly Name | Configure customized notifications |
| Location | Computer Configuration |
| Path | Windows Components > Windows Security > Enterprise Customization |
| Registry Key Name | SOFTWARE\Policies\Microsoft\Windows Defender Security Center\Enterprise Customization |
| Registry Value Name | EnableForToasts |
| ADMX File Name | WindowsDefenderSecurityCenter.admx |
EnableInAppCustomization
| Scope | Editions | Applicable OS |
|---|---|---|
| ✅ Device ❌ User |
✅ Pro ✅ Enterprise ✅ Education ✅ Windows SE ✅ IoT Enterprise / IoT Enterprise LTSC |
✅ Windows 10, version 1709 [10.0.16299] and later |
./Device/Vendor/MSFT/Policy/Config/WindowsDefenderSecurityCenter/EnableInAppCustomization
Display specified contact information to local users in a contact card flyout menu in Windows Security.
Enabled:
Your company contact information will be displayed in a flyout menu in Windows Security.
After setting this to Enabled, you must configure the Specify contact company name GP setting and at least one of the following GP settings:
-Specify contact phone number or Skype ID -Specify contact email number or email ID -Specify contact website.
Disabled:
No contact information will be shown in Windows Security.
Not configured:
Same as Disabled.
Description framework properties:
| Property name | Property value |
|---|---|
| Format | int |
| Access Type | Add, Delete, Get, Replace |
| Default Value | 0 |
Allowed values:
| Value | Description |
|---|---|
| 0 (Default) | (Disable) Don't display the company name and contact options in the card fly out notification. |
| 1 | (Enable) Display the company name and contact options in the card fly out notification. |
Group policy mapping:
| Name | Value |
|---|---|
| Name | EnterpriseCustomization_EnableInAppCustomization |
| Friendly Name | Configure customized contact information |
| Location | Computer Configuration |
| Path | Windows Components > Windows Security > Enterprise Customization |
| Registry Key Name | SOFTWARE\Policies\Microsoft\Windows Defender Security Center\Enterprise Customization |
| Registry Value Name | EnableInApp |
| ADMX File Name | WindowsDefenderSecurityCenter.admx |
HideRansomwareDataRecovery
| Scope | Editions | Applicable OS |
|---|---|---|
| ✅ Device ❌ User |
✅ Pro ✅ Enterprise ✅ Education ✅ Windows SE ✅ IoT Enterprise / IoT Enterprise LTSC |
✅ Windows 10, version 1803 [10.0.17134] and later |
./Device/Vendor/MSFT/Policy/Config/WindowsDefenderSecurityCenter/HideRansomwareDataRecovery
Hide the Ransomware data recovery area in Windows Security.
Enabled:
The Ransomware data recovery area will be hidden.
Disabled:
The Ransomware data recovery area will be shown.
Not configured:
Same as Disabled.
Description framework properties:
| Property name | Property value |
|---|---|
| Format | int |
| Access Type | Add, Delete, Get, Replace |
| Default Value | 0 |
Allowed values:
| Value | Description |
|---|---|
| 0 (Default) | (Disable or not configured) The Ransomware data recovery area will be visible. |
| 1 | (Enable) The Ransomware data recovery area is hidden. |
Group policy mapping:
| Name | Value |
|---|---|
| Name | VirusThreatProtection_HideRansomwareRecovery |
| Friendly Name | Hide the Ransomware data recovery area |
| Location | Computer Configuration |
| Path | Windows Components > Windows Security > Virus and threat protection |
| Registry Key Name | SOFTWARE\Policies\Microsoft\Windows Defender Security Center\Virus and threat protection |
| Registry Value Name | HideRansomwareRecovery |
| ADMX File Name | WindowsDefenderSecurityCenter.admx |
HideSecureBoot
| Scope | Editions | Applicable OS |
|---|---|---|
| ✅ Device ❌ User |
✅ Pro ✅ Enterprise ✅ Education ✅ Windows SE ✅ IoT Enterprise / IoT Enterprise LTSC |
✅ Windows 10, version 1803 [10.0.17134] and later |
./Device/Vendor/MSFT/Policy/Config/WindowsDefenderSecurityCenter/HideSecureBoot
Hide the Secure boot area in Windows Security.
Enabled:
The Secure boot area will be hidden.
Disabled:
The Secure boot area will be shown.
Not configured:
Same as Disabled.
Description framework properties:
| Property name | Property value |
|---|---|
| Format | int |
| Access Type | Add, Delete, Get, Replace |
| Default Value | 0 |
Allowed values:
| Value | Description |
|---|---|
| 0 (Default) | (Disable or not configured) The Secure boot area is displayed. |
| 1 | (Enable) The Secure boot area is hidden. |
Group policy mapping:
| Name | Value |
|---|---|
| Name | DeviceSecurity_HideSecureBoot |
| Friendly Name | Hide the Secure boot area |
| Location | Computer Configuration |
| Path | Windows Components > Windows Security > Device security |
| Registry Key Name | SOFTWARE\Policies\Microsoft\Windows Defender Security Center\Device security |
| Registry Value Name | HideSecureBoot |
| ADMX File Name | WindowsDefenderSecurityCenter.admx |
HideTPMTroubleshooting
| Scope | Editions | Applicable OS |
|---|---|---|
| ✅ Device ❌ User |
✅ Pro ✅ Enterprise ✅ Education ✅ Windows SE ✅ IoT Enterprise / IoT Enterprise LTSC |
✅ Windows 10, version 1803 [10.0.17134] and later |
./Device/Vendor/MSFT/Policy/Config/WindowsDefenderSecurityCenter/HideTPMTroubleshooting
Hide the Security processor (TPM) troubleshooting area in Windows Security.
Enabled:
The Security processor (TPM) troubleshooting area will be hidden.
Disabled:
The Security processor (TPM) troubleshooting area will be shown.
Not configured:
Same as Disabled.
Description framework properties:
| Property name | Property value |
|---|---|
| Format | int |
| Access Type | Add, Delete, Get, Replace |
| Default Value | 0 |
Allowed values:
| Value | Description |
|---|---|
| 0 (Default) | (Disable or not configured) The Security processor (TPM) troubleshooting area is displayed. |
| 1 | (Enable) The Security processor (TPM) troubleshooting area is hidden. |
Group policy mapping:
| Name | Value |
|---|---|
| Name | DeviceSecurity_HideTPMTroubleshooting |
| Friendly Name | Hide the Security processor (TPM) troubleshooter page |
| Location | Computer Configuration |
| Path | Windows Components > Windows Security > Device security |
| Registry Key Name | SOFTWARE\Policies\Microsoft\Windows Defender Security Center\Device security |
| Registry Value Name | HideTPMTroubleshooting |
| ADMX File Name | WindowsDefenderSecurityCenter.admx |
HideWindowsSecurityNotificationAreaControl
| Scope | Editions | Applicable OS |
|---|---|---|
| ✅ Device ❌ User |
✅ Pro ✅ Enterprise ✅ Education ✅ Windows SE ✅ IoT Enterprise / IoT Enterprise LTSC |
✅ Windows 10, version 1809 [10.0.17763] and later |
./Device/Vendor/MSFT/Policy/Config/WindowsDefenderSecurityCenter/HideWindowsSecurityNotificationAreaControl
This policy setting hides the Windows Security notification area control.
The user needs to either sign out and sign in or reboot the computer for this setting to take effect.
Enabled:
Windows Security notification area control will be hidden.
Disabled:
Windows Security notification area control will be shown.
Not configured:
Same as Disabled.
Description framework properties:
| Property name | Property value |
|---|---|
| Format | int |
| Access Type | Add, Delete, Get, Replace |
| Default Value | 0 |
Allowed values:
| Value | Description |
|---|---|
| 0 (Default) | . |
| 1 | Enabled. |
Group policy mapping:
| Name | Value |
|---|---|
| Name | Systray_HideSystray |
| Friendly Name | Hide Windows Security Systray |
| Location | Computer Configuration |
| Path | Windows Components > Windows Security > Systray |
| Registry Key Name | SOFTWARE\Policies\Microsoft\Windows Defender Security Center\Systray |
| Registry Value Name | HideSystray |
| ADMX File Name | WindowsDefenderSecurityCenter.admx |
Phone
| Scope | Editions | Applicable OS |
|---|---|---|
| ✅ Device ❌ User |
✅ Pro ✅ Enterprise ✅ Education ✅ Windows SE ✅ IoT Enterprise / IoT Enterprise LTSC |
✅ Windows 10, version 1709 [10.0.16299] and later |
./Device/Vendor/MSFT/Policy/Config/WindowsDefenderSecurityCenter/Phone
Specify the phone number or Skype ID that will be displayed in Windows Security and associated notifications.
Users can click on the contact information to automatically call the supplied number. Skype will be used to initiate the call.
Enabled:
Enter the phone number or Skype ID in the Options section.
Disabled:
A contact phone number or Skype ID won't be shown in either Windows Security or any notifications it creates.
Not configured:
Same as Disabled.
Description framework properties:
| Property name | Property value |
|---|---|
| Format | chr (string) |
| Access Type | Add, Delete, Get, Replace |
Group policy mapping:
| Name | Value |
|---|---|
| Name | EnterpriseCustomization_Phone |
| Friendly Name | Specify contact phone number or Skype ID |
| Element Name | Phone number or Skype ID. |
| Location | Computer Configuration |
| Path | Windows Components > Windows Security > Enterprise Customization |
| Registry Key Name | SOFTWARE\Policies\Microsoft\Windows Defender Security Center\Enterprise Customization |
| ADMX File Name | WindowsDefenderSecurityCenter.admx |
URL
| Scope | Editions | Applicable OS |
|---|---|---|
| ✅ Device ❌ User |
✅ Pro ✅ Enterprise ✅ Education ✅ Windows SE ✅ IoT Enterprise / IoT Enterprise LTSC |
✅ Windows 10, version 1709 [10.0.16299] and later |
./Device/Vendor/MSFT/Policy/Config/WindowsDefenderSecurityCenter/URL
Specify the URL that will be displayed in Windows Security and associated notifications.
Users can click on the contact information to visit the specified website. The default web browser will be used.
Enabled:
Enter the URL in the Options section.
Disabled:
A contact website URL won't be shown in either Windows Security or any notifications it creates.
Not configured:
Same as Disabled.
Description framework properties:
| Property name | Property value |
|---|---|
| Format | chr (string) |
| Access Type | Add, Delete, Get, Replace |
Group policy mapping:
| Name | Value |
|---|---|
| Name | EnterpriseCustomization_URL |
| Friendly Name | Specify contact website |
| Element Name | IT or support website. |
| Location | Computer Configuration |
| Path | Windows Components > Windows Security > Enterprise Customization |
| Registry Key Name | SOFTWARE\Policies\Microsoft\Windows Defender Security Center\Enterprise Customization |
| ADMX File Name | WindowsDefenderSecurityCenter.admx |