📚🪟💻Compliance - System Security - Defender for Endpoint
What this policy is about 🔍
Microsoft Defender is your first line of defense against malware and threats.
This compliance policy ensures that Defender is installed, up-to-date, and actively protecting the device. An antivirus that's disabled or outdated is as useful as no antivirus at all.
How it works 🛠️
This policy checks three things:
- Microsoft Defender Antimalware — Is Defender installed and enabled?
- Security intelligence up-to-date — Are the virus definitions current?
- Real-time protection — Is active scanning enabled?
All three must pass for the device to be compliant.
🛠️ Compliance Settings
Platform
- Windows 10 and later
Profile Type
- Windows 10/11 compliance policy
System Security
| Setting | Value |
|---|---|
| Microsoft Defender Antimalware | Required |
| Microsoft Defender Antimalware security intelligence up-to-date | Required |
| Real-time protection | Required |
⚙️ Actions for Non-Compliance
| Action | Schedule | Message Template | Additional Recipients |
|---|---|---|---|
| Mark device non-compliant | 0.25 Days (6 hours) | (none) | None selected |
👥 Group Assignments
✅ Included groups:
All Devices