Managing Windows Defender firewall through Azure Intune
I want to block all incoming ports on a Azure joined laptops. I want to manage Windows Defender Firewall through Azure Intune.
The whole premise is block all incoming ports & then use exclusions.
Does anyone know how to do this.
Thanks
The whole premise is block all incoming ports & then use exclusions.
Does anyone know how to do this.
Thanks
Last Comment
You can block all incoming ports on a Azure joined laptops by creating a a rule.
https://support.microsoft.com/en-us/topic/preventing-smb-traffic-from-lateral-connections-and-entering-or-leaving-the-network-c0541db7-2244-0dce-18fd-14a3ddeb282a
Then you can create a profile for Windows defender.
https://docs.microsoft.com/en-us/windows/security/threat-protection/windows-firewall/create-windows-firewall-rules-in-intune
https://support.microsoft.com/en-us/topic/preventing-smb-traffic-from-lateral-connections-and-entering-or-leaving-the-network-c0541db7-2244-0dce-18fd-14a3ddeb282a
Then you can create a profile for Windows defender.
https://docs.microsoft.com/en-us/windows/security/threat-protection/windows-firewall/create-windows-firewall-rules-in-intune
ASKER
thanks all will check it out and get back to you. :)
Additionally you can also try below to block all Windows 10 inbound trafic on ports.
To block all TCP and UDP port except some port 80,443,8443 by windows defender firewall inbound and outbound rule, you could follow the steps:
1. Control panel > System and Security > Windows Firewall > Advanced settings
2. Right-click Inbound Rules and click new rule.
3. Choose Port and next.
4. Choose TCP and UDP, type 80,443,8443 in Specific local ports, and next.
5. Choose Block the connection and next.
6. Choose the profile you want to apply and next.
7. Type the name and Description you want and finish.
To block all TCP and UDP port except some port 80,443,8443 by windows defender firewall inbound and outbound rule, you could follow the steps:
1. Control panel > System and Security > Windows Firewall > Advanced settings
2. Right-click Inbound Rules and click new rule.
3. Choose Port and next.
4. Choose TCP and UDP, type 80,443,8443 in Specific local ports, and next.
5. Choose Block the connection and next.
6. Choose the profile you want to apply and next.
7. Type the name and Description you want and finish.
ASKER
I want to block all inbound ports via Azure Intune controlling Windows defender firewall. Not through Windows.
You need to go to your intune configuration profile for windows defender. if profile is not created then create the same using article- https://systemcenterdudes.com/windows-defender-firewall-intune/
Then after enabling the windows defender for Domain network, you can create a new rule Microsoft Defender Firewall pane, click the Add button at the bottom to add a Firewall rule
What ever your desired ports are to be blocked you can create the same in rule. In the ports section you will find or need to add specific ports.
Then after enabling the windows defender for Domain network, you can create a new rule Microsoft Defender Firewall pane, click the Add button at the bottom to add a Firewall rule
What ever your desired ports are to be blocked you can create the same in rule. In the ports section you will find or need to add specific ports.
ASKER CERTIFIED SOLUTION
THIS SOLUTION IS ONLY AVAILABLE TO MEMBERS.
View this solution by signing up for a free trial.
Members can start a 7-Day free trial and enjoy unlimited access to the platform.
ASKER
thx
Windows OS
This topic area includes legacy versions of Windows prior to Windows 2000: Windows 3/3.1, Windows 95 and Windows 98, plus any other Windows-related versions including Windows Mobile.
129K
Questions
--
Followers
--
Top Experts
Get a personalized solution from industry experts
TRUSTED BY
https://docs.microsoft.com/en-us/windows/security/threat-protection/windows-firewall/turn-on-windows-firewall-and-configure-default-behavior
https://docs.microsoft.com/en-us/windows/security/threat-protection/windows-firewall/create-an-inbound-port-rule