Information
This policy setting controls Microsoft Defender Exploit Guard network protection.
The recommended state for this setting is: Enabled: Block.
Rationale:
This setting can help prevent employees from using any application to access dangerous domains that may host phishing scams, exploit-hosting sites, and other malicious content on the Internet.
Impact:
Users and applications will not be able to access dangerous domains.
Solution
To establish the recommended configuration, set the following Device Configuration Policy to either Enable:
To access the Device Configuration Policy from the Intune Home page:
Click Devices
Click Configuration profiles
Click Create profile
Select the platform (Windows 10 and later)
Select the profile (Endpoint protection)
Click Create
Enter a Name
Click Next
Configure the following Setting
Path: Endpoint protection/Microsoft Defender Exploit Guard/Network Filtering
Setting Name: Network protection
Configuration: Enable
Select OK
Continue through the Wizard to complete the creation of the profile (profile assignments, applicability etc.)
Note: More than one configuration setting from each of the Configuration profiles (ex: Administrative Templates, Custom etc.) can be added to each Device Configuration Policy.
Default Value:
Disabled. (Users and applications will not be blocked from connecting to dangerous domains.)