This browser is no longer supported.
Upgrade to Microsoft Edge to take advantage of the latest features, security updates, and technical support.
Our Windows computers are AAD joined and MDM enrolled with Intune. We have some computers, that strangely, throw a warning that "SmartScreen for Microsoft Edge is off" every time a manual Windows Defender Antivirus scan is manually triggered.
Thing is, we have already have configuration profiles and administrative templates for SmartScreen enabled at both the Edge browser and OS levels, and they work as expected. Comparing through the documentation vs the actual reality of the computers, there appears to be discrepancies in the expectation of Registry key paths. Which may suggest false alarms.
This should be more a client OS problem but seem to have run out of ideas there. Anybody else controlling their AAD computers with Intune facing similar problems?
On MDM side, default Microsoft Edge baseline settings for Intune are enough, I see you current configurations are ok, since you have refer to the following doc.
Configure Microsoft Defender SmartScreen
Default: Enabled
What I want remind is that: User can configure Microsoft Defender SmartScreen setting in Microsoft Edge Setting inside, look at the picture:
When I turn off Microsoft Defender SmartScreen here, the switch on Windows Security SmartScreen for Microsoft Edge will be turned off at the same time, so even though we have configured Microsoft Edge web browser baseline settings on Intune, on GPO, on registry, users may still modify it on browser itself. Next you see current situation…
In my opinion, your configurations have been applied, all settings are correct, more good practices can be found here: