Windows Defender Firewall: Protect all network connections

Information

Turns on Windows Defender Firewall.

If you enable this policy setting Windows Defender Firewall runs and ignores the 'Computer Configuration\Administrative Templates\Network\Network Connections\Prohibit use of Internet Connection Firewall on your DNS domain network' policy setting.

If you disable this policy setting Windows Defender Firewall does not run. This is the only way to ensure that Windows Defender Firewall does not run and administrators who log on locally cannot start it.

If you do not configure this policy setting administrators can use the Windows Defender Firewall component in Control Panel to turn Windows Defender Firewall on or off unless the 'Prohibit use of Internet Connection Firewall on your DNS domain network' policy setting overrides.

Solution

Policy Path: Network\Network Connections\Windows Defender Firewall\Domain Profile
Policy Setting Name: Windows Defender Firewall: Protect all network connections

See Also

https://techcommunity.microsoft.com/t5/microsoft-security-baselines/windows-server-2022-security-baseline/ba-p/2724685

Item Details

Category: SYSTEM AND COMMUNICATIONS PROTECTION

References: 800-53|SC-7(12)

Plugin: Windows

Control ID: 53548adc027ad96f821ac2d8e43aa05b089189bc5c4e00393c513e563c89fadb