WNDF-AV-000022 – Windows Defender AV must be configured to enable behavior monitoring.
Details This policy setting allows you to configure behavior monitoring. If you enable or do not configure this setting behavior...
- Home
- Security Hardening
- DISA STIG Windows Defender Antivirus V2R3
DISA STIG Windows Defender Antivirus V2R3
WNDF-AV-000007 – Windows Defender AV must be configured to enable the Automatic Exclusions feature.
Details Allows an administrator to specify if Automatic Exclusions feature for Server SKUs should be turned off. Solution Set the...WNDF-AV-000023 – Windows Defender AV must be configured to process scanning when real-time protection is enabled.
Details This policy setting allows you to configure process scanning when real-time protection is turned on. This helps to catch...WNDF-AV-000008 – Windows Defender AV must be configured to disable local setting override for reporting to Microsoft MAPS.
Details This policy setting configures a local override for the configuration to join Microsoft MAPS. This setting can only be...WNDF-AV-000024 – Windows Defender AV must be configured to scan archive files.
Details This policy setting allows you to configure scans for malicious software and unwanted software in archive files such as...WNDF-AV-000009 – Windows Defender AV must be configured to check in real time with MAPS before content is run or accessed.
Details This feature ensures the device checks in real time with the Microsoft Active Protection Service (MAPS) before allowing certain...WNDF-AV-000010 – Windows Defender AV must be configured to join Microsoft MAPS.
Details This policy setting allows you to join Microsoft MAPS. Microsoft MAPS is the online community that helps you choose...WNDF-AV-000011 – Windows Defender AV must be configured to only send safe samples for MAPS telemetry.
Details This policy setting configures behavior of samples submission when opt-in for MAPS telemetry is set. Possible options are: (0x0)...WNDF-AV-000012 – Windows Defender AV must be configured for protocol recognition for network protection.
Details This policy setting allows you to configure protocol recognition for network protection against exploits of known vulnerabilities. If you...WNDF-AV-000013 – Windows Defender AV must be configured to not allow local override of monitoring for file and program activity.
Details This policy setting configures a local override for the configuration of monitoring for file and program activity on your...