WNDF-AV-000007 - Windows Defender AV must be configured to enable the Automatic Exclusions feature.

Warning! Audit Deprecated

This audit has been deprecated and will be removed in a future update.

View Next Audit Version

Information

Allows an administrator to specify if Automatic Exclusions feature for Server SKUs should be turned off.

Solution

Set the policy value for Computer Configuration -> Administrative Templates -> Windows Components -> Windows Defender Antivirus -> Exclusions -> 'Turn off Auto Exclusions' to 'Disabled'.

See Also

https://dl.dod.cyber.mil/wp-content/uploads/stigs/zip/U_MS_Windows_Defender_Antivirus_V2R3_STIG.zip

Item Details

Category: SYSTEM AND INFORMATION INTEGRITY

References: 800-53|SI-3, CAT|II, CCI|CCI-001242, Rule-ID|SV-213431r569189_rule, STIG-ID|WNDF-AV-000007, STIG-Legacy|SV-89839, STIG-Legacy|V-75159, Vuln-ID|V-213431

Plugin: Windows

Control ID: c93fd5c99c0d6e47749f613d87314fbc7a1b6f49603d3e171b4e02dce0140c94