I've to set a Windows Server 2019 1809 Defender into passive mode.
I followed the instructions on microsoft-defender-antivirus-on-windows-server and set Defender into passive mode using a registry key. I also did a reboot of the server.
Path: HKLM\SOFTWARE\Policies\Microsoft\Windows Advanced Threat Protection
Name: ForceDefenderPassiveMode
Type: REG_DWORD
Value: 1
To check Defender mode I run the powershell commad "Get-MpComputerStatus" to get the AMRunningMode, as discribed here:
edr-in-block-mode - How do I confirm Microsoft Defender Antivirus is in active or passive mode?.
As result, AMRunningMode is still "Normal" instead "Passive Mode".
I'm wondering, why the registry key isn't working.