Hi
I'm testing out Microsoft Defender for Endpoint, and have therefore created test policies for Antivirus (including exclusions for both Processes, Files and Folders), Attack surface reduction, SmartScreen and so on. Which I have assigned to an AD group my test computers are member of.
The policies applies and works fine, but when I unassign the policies from the AD group they are not removed or reset to defaults on the test computers?
The same goes for Antivirus exclusions. But additionally if I keep the assignment to the group in place, and delete or remove processes, files and folders, one by one or a couple at a time from the policy. The very last process, file or folder are not removed on the test computers from ExclusionPath or ExclusionProcess?
Do any know or have an idea why this happens?
Regards
Frederick