Unblock-CMDetectedMalware
取消阻止检测到的恶意软件。
语法
Unblock-CMDetectedMalware
[-Force]
-Threat <IResultObject>
-UnblockAction <UnblockDetectedMalwareAction>
[-DisableWildcardHandling]
[-ForceWildcardHandling]
[-WhatIf]
[-Confirm]
[<CommonParameters>] Unblock-CMDetectedMalware
-Collection <IResultObject>
[-DisableWildcardHandling]
[-ForceWildcardHandling]
[-WhatIf]
[-Confirm]
[<CommonParameters>] Unblock-CMDetectedMalware
-CollectionId <String>
[-Force]
-UnblockAction <UnblockDetectedMalwareAction>
[-DisableWildcardHandling]
[-ForceWildcardHandling]
[-WhatIf]
[-Confirm]
[<CommonParameters>] Unblock-CMDetectedMalware
-CollectionName <String>
[-Force]
-UnblockAction <UnblockDetectedMalwareAction>
[-DisableWildcardHandling]
[-ForceWildcardHandling]
[-WhatIf]
[-Confirm]
[<CommonParameters>] Unblock-CMDetectedMalware
[-Force]
-ThreatId <String>
-UnblockAction <UnblockDetectedMalwareAction>
[-DisableWildcardHandling]
[-ForceWildcardHandling]
[-WhatIf]
[-Confirm]
[<CommonParameters>] Unblock-CMDetectedMalware
[-Force]
-ThreatName <String>
-UnblockAction <UnblockDetectedMalwareAction>
[-DisableWildcardHandling]
[-ForceWildcardHandling]
[-WhatIf]
[-Confirm]
[<CommonParameters>] Unblock-CMDetectedMalware
[-Force]
-UnblockAction <UnblockDetectedMalwareAction>
[-DisableWildcardHandling]
[-ForceWildcardHandling]
[-WhatIf]
[-Confirm]
[<CommonParameters>] 说明
Unblock-CMDetectedMalware cmdlet 可取消阻止已阻止运行的恶意软件。
注意
从Configuration Manager站点驱动器运行Configuration Manager cmdlet,例如 PS XYZ:\>。 有关详细信息,请参阅 入门。
示例
示例 1:取消阻止所有检测到的恶意软件
PS ABC:\> Unblock-CMDetectedMalware -UnblockAction AllowThreat此命令取消阻止所有检测到的恶意软件。
示例 2:通过获取威胁对象取消阻止检测到的恶意软件
PS ABC:\> $Threat = Get-CMDetectedMalware -CollectionName "All Desktop and Server Clients"
PS ABC:\> Unblock-CMDetectedMalware -Threat $Threat -UnblockAction AllowThreat第一个命令获取名为“所有桌面和服务器客户端”的集合检测到的恶意软件对象,并将对象存储在 $Threat 变量中。
第二个命令取消阻止存储在 $Threat 中的威胁。
示例 3:通过获取集合对象取消阻止检测到的恶意软件
PS ABC:\> $Collection = Get-CMCollection -CollectionType Device -Name "All Desktop and Server Clients"
PS ABC:\> Unblock-CMDetectedMalware -Collection $Collection -UnblockAction AllowThreat第一个命令获取名为“所有桌面和服务器客户端”的设备集合对象,并将对象存储在 $Collection 变量中。
第二个命令取消阻止存储在 $Collection 中的集合的恶意软件。
参数
-Collection
指定集合对象。 若要获取集合对象,请使用 Get-CMCollection cmdlet。
| Type: | IResultObject |
| Position: | Named |
| Default value: | None |
| Required: | True |
| Accept pipeline input: | True |
| Accept wildcard characters: | False |
-CollectionId
指定集合的 ID。
| Type: | String |
| Position: | Named |
| Default value: | None |
| Required: | True |
| Accept pipeline input: | False |
| Accept wildcard characters: | False |
-CollectionName
指定集合的名称。
| Type: | String |
| Position: | Named |
| Default value: | None |
| Required: | True |
| Accept pipeline input: | False |
| Accept wildcard characters: | False |
-Confirm
提示你在运行 cmdlet 之前进行确认。
| Type: | SwitchParameter |
| Aliases: | cf |
| Position: | Named |
| Default value: | False |
| Required: | False |
| Accept pipeline input: | False |
| Accept wildcard characters: | False |
-DisableWildcardHandling
此参数将通配符视为文本字符值。 不能将其与 ForceWildcardHandling 组合使用。
| Type: | SwitchParameter |
| Position: | Named |
| Default value: | None |
| Required: | False |
| Accept pipeline input: | False |
| Accept wildcard characters: | False |
-Force
强制运行命令而不要求用户确认。
| Type: | SwitchParameter |
| Position: | Named |
| Default value: | None |
| Required: | False |
| Accept pipeline input: | False |
| Accept wildcard characters: | False |
-ForceWildcardHandling
此参数处理通配符,并可能导致意外行为 (不建议) 。 不能将其与 DisableWildcardHandling 结合使用。
| Type: | SwitchParameter |
| Position: | Named |
| Default value: | None |
| Required: | False |
| Accept pipeline input: | False |
| Accept wildcard characters: | False |
-Threat
指定检测到的恶意软件对象。 若要获取检测到的恶意软件对象,请使用 Get-CMDetectedMalware cmdlet。
| Type: | IResultObject |
| Aliases: | InputObject |
| Position: | Named |
| Default value: | None |
| Required: | True |
| Accept pipeline input: | True |
| Accept wildcard characters: | False |
-ThreatId
指定威胁的 ID。
| Type: | String |
| Position: | Named |
| Default value: | None |
| Required: | True |
| Accept pipeline input: | False |
| Accept wildcard characters: | False |
-ThreatName
指定威胁的名称。
| Type: | String |
| Position: | Named |
| Default value: | None |
| Required: | True |
| Accept pipeline input: | False |
| Accept wildcard characters: | False |
-UnblockAction
指定 cmdlet 对威胁采取的取消阻止操作。 有效值包含:
- AllowThreat
- RestoreOnly
- RestoreAndAllow
| Type: | UnblockDetectedMalwareAction |
| Accepted values: | AllowThreat, RestoreOnly, RestoreAndAllow |
| Position: | Named |
| Default value: | None |
| Required: | True |
| Accept pipeline input: | False |
| Accept wildcard characters: | False |
-WhatIf
显示在 cmdlet 运行时发生的情况。 cmdlet 不会运行。
| Type: | SwitchParameter |
| Aliases: | wi |
| Position: | Named |
| Default value: | False |
| Required: | False |
| Accept pipeline input: | False |
| Accept wildcard characters: | False |
输入
Microsoft.ConfigurationManagement.ManagementProvider.IResultObject
输出
System.Object
相关链接
反馈
即将发布:在整个 2024 年,我们将逐步淘汰作为内容反馈机制的“GitHub 问题”,并将其取代为新的反馈系统。 有关详细信息,请参阅:https://aka.ms/ContentUserFeedback。
提交和查看相关反馈