Information
This setting lets you decide whether employees can override the SmartScreen Filter warnings about potentially malicious websites.
The recommended state for this setting is: Enabled.
Rationale:
SmartScreen will warn an employee if a website is potentially malicious. Enabling this setting prevents these warnings from being bypassed.
Impact:
Employees will not be able to ignore SmartScreen Filter warnings, and they will be blocked from going to potentially malicious websites that SmartScreen detects.
Solution
To establish the recommended configuration, set the following Device Configuration Policy to Enabled:
To access the Device Configuration Policy from the Intune Home page:
Click Devices
Click Configuration profiles
Click Create profile
Select the platform (Windows 10 and later)
Select the profile (Custom)
Click Create
Enter a Name
Click Next
Configure the following Setting
Name: <Enter name>
Description: <Enter Description>
OMA-URI: ./Device/Vendor/MSFT/Policy/Config/Browser/PreventSmartScreenPromptOverride
Data type: Integer
Value: 1
Select OK
Continue through the Wizard to complete the creation of the profile (profile assignments, applicability etc.)
Note: More than one configuration setting from each of the Configuration profiles (ex: Administrative Templates, Custom etc.) can be added to each Device Configuration Policy.
Default Value:
Disabled. (Employees will be able to ignore SmartScreen Filter warnings about potentially malicious websites and continue to the site.)