WNDF-AV-000007 - Microsoft Defender AV must be configured to enable the Automatic Exclusions feature.

Information

This setting allows an administrator to specify if Automatic Exclusions feature for Server SKUs should be turned off.

Solution

Set the policy value for Computer Configuration >> Administrative Templates >> Windows Components >> Microsoft Defender Antivirus >> Exclusions >> 'Turn off Auto Exclusions' to 'Disabled'.

See Also

https://dl.dod.cyber.mil/wp-content/uploads/stigs/zip/U_MS_Defender_Antivirus_V2R4_STIG.zip

Item Details

Category: SYSTEM AND INFORMATION INTEGRITY

References: 800-53|SI-3c.1., CAT|II, CCI|CCI-001242, Rule-ID|SV-213431r823034_rule, STIG-ID|WNDF-AV-000007, STIG-Legacy|SV-89839, STIG-Legacy|V-75159, Vuln-ID|V-213431

Plugin: Windows

Control ID: 37d1678cc2bca179a9f586aecc5b1056e78bd38e5d16cb08294e06324ed64b68