Check if network protection has been enabled on a local device by using Registry editor.<\/p>\n\n\n\n
If the Key is missing, Navigate to SOFTWARE<\/strong> > Microsoft<\/strong> > Windows Defender<\/strong> > Windows Defender Exploit Guard<\/strong> > Network Protection<\/strong>.<\/p>\n\n\n\n There are a couple of different ways to enable network protection.<\/p>\n\n\n\n <\/a><\/p>\n\n\n\n Use the .\/Vendor\/MSFT\/Policy\/Config\/Defender\/EnableNetworkProtection<\/a> configuration service provider (CSP) to enable or disable network protection or enable audit mode.<\/p>\n\n\n\n Update Microsoft Defender antimalware platform to the latest version<\/a> before you enable or disable network protection or enable audit mode.<\/p>\n\n\n\n <\/a><\/p>\n\n\n\n <\/a><\/p>\n\n\n\n <\/a><\/p>\n\n\n\n Use the following procedure to enable network protection on domain-joined computers or on a standalone computer.<\/p>\n\n\n\n Ref: Turn on network protection | Microsoft Learn<\/a><\/p>\n","protected":false},"excerpt":{"rendered":" Check if network protection is enabled Check if network protection has been enabled on a local device by using Registry editor. Select the Start button in the task bar and type regedit to open Registry editor. Choose HKEY_LOCAL_MACHINE from the side menu. Navigate through the nested menus to SOFTWARE > Policies > Microsoft > Windows Defender > Policy Manager. If the Key is missing, Navigate to SOFTWARE > Microsoft > Windows Defender > Windows Defender Exploit Guard > Network Read More<\/a><\/p>\n","protected":false},"author":2,"featured_media":0,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"_bbp_topic_count":0,"_bbp_reply_count":0,"_bbp_total_topic_count":0,"_bbp_total_reply_count":0,"_bbp_voice_count":0,"_bbp_anonymous_reply_count":0,"_bbp_topic_count_hidden":0,"_bbp_reply_count_hidden":0,"_bbp_forum_subforum_count":0,"om_disable_all_campaigns":false,"_monsterinsights_skip_tracking":false,"_monsterinsights_sitenote_active":false,"_monsterinsights_sitenote_note":"","_monsterinsights_sitenote_category":0,"footnotes":""},"categories":[1185,1249,10,1224,14],"tags":[1634],"class_list":["post-4813","post","type-post","status-publish","format-standard","hentry","category-autopilot-intune","category-azure-microsoft","category-microsoft","category-powershell","category-windows-7-8-10","tag-turn-on-network-protection"],"aioseo_notices":[],"_links":{"self":[{"href":"https:\/\/SUMMALAI.COM\/index.php?rest_route=\/wp\/v2\/posts\/4813","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/SUMMALAI.COM\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/SUMMALAI.COM\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/SUMMALAI.COM\/index.php?rest_route=\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"https:\/\/SUMMALAI.COM\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=4813"}],"version-history":[{"count":1,"href":"https:\/\/SUMMALAI.COM\/index.php?rest_route=\/wp\/v2\/posts\/4813\/revisions"}],"predecessor-version":[{"id":4814,"href":"https:\/\/SUMMALAI.COM\/index.php?rest_route=\/wp\/v2\/posts\/4813\/revisions\/4814"}],"wp:attachment":[{"href":"https:\/\/SUMMALAI.COM\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=4813"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/SUMMALAI.COM\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=4813"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/SUMMALAI.COM\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=4813"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}PowerShell<\/h3>\n\n\n\n
Set-MpPreference -EnableNetworkProtection Enabled<\/code><\/li>Set-MpPreference -EnableNetworkProtection AuditMode <\/code>Use Disabled<\/code> instead of AuditMode<\/code> or Enabled<\/code> to turn off the feature.<\/li><\/ol>\n\n\n\nMobile device management (MDM)<\/h3>\n\n\n\n
Microsoft Intune<\/h3>\n\n\n\n
Microsoft Defender for Endpoint Baseline method<\/h4>\n\n\n\n
Antivirus policy method<\/h4>\n\n\n\n
Configuration profile method<\/h4>\n\n\n\n
Group Policy<\/h3>\n\n\n\n
![<\/a><\/li><\/ol>\n\n\n\nThere are a couple of different ways to enable network protection.<\/p>\n\n\n\nPowerShell<\/h3>\n\n\n\nType powershell<\/strong> in the Start menu, right-click Windows PowerShell<\/strong> and select Run as administrator<\/strong>.<\/li>Enter the following cmdlet:PowerShellCopySet-MpPreference -EnableNetworkProtection Enabled<\/code><\/li>Optional: Enable the feature in audit mode using the following cmdlet:PowerShellCopySet-MpPreference -EnableNetworkProtection AuditMode <\/code>Use Disabled<\/code> instead of AuditMode<\/code> or Enabled<\/code> to turn off the feature.<\/li><\/ol>\n\n\n\n<\/a><\/p>\n\n\n\nMobile device management (MDM)<\/h3>\n\n\n\nUse the .\/Vendor\/MSFT\/Policy\/Config\/Defender\/EnableNetworkProtection<\/a> configuration service provider (CSP) to enable or disable network protection or enable audit mode.<\/p>\n\n\n\nUpdate Microsoft Defender antimalware platform to the latest version<\/a> before you enable or disable network protection or enable audit mode.<\/p>\n\n\n\n<\/a><\/p>\n\n\n\nMicrosoft Intune<\/h3>\n\n\n\n<\/a><\/p>\n\n\n\nMicrosoft Defender for Endpoint Baseline method<\/h4>\n\n\n\nSign into the Microsoft Intune admin center (https:\/\/endpoint.microsoft.com<\/a>).<\/li>Go to\u00a0Endpoint security<\/strong>\u00a0>\u00a0Security baselines<\/strong>\u00a0>\u00a0Microsoft Defender for Endpoint Baseline<\/strong>.<\/li>Select\u00a0Create a profile<\/strong>, then provide a name for your profile, and then select\u00a0Next<\/strong>.<\/li>In the\u00a0Configuration settings<\/strong>\u00a0section, go to\u00a0Attack Surface Reduction Rules<\/strong>\u00a0> set\u00a0Block<\/strong>,\u00a0Enable<\/strong>\u00a0or\u00a0Audit<\/strong>\u00a0for\u00a0Enable network protection<\/strong>. Select\u00a0Next<\/strong>.<\/li>Select the appropriate\u00a0Scope tags<\/strong>\u00a0and\u00a0Assignments<\/strong>\u00a0as required by your organization.<\/li>Review all the information, and then select\u00a0Create<\/strong>.<\/a><\/li><\/ol>\n\n\n\nAntivirus policy method<\/h4>\n\n\n\nSign into the Microsoft Intune admin center (https:\/\/endpoint.microsoft.com<\/a>).<\/li>Go to Endpoint security<\/strong> > Antivirus<\/strong><\/li>Select Create a policy<\/strong><\/li>In the Create a policy<\/strong> flyout, choose Windows 10, Windows 11, and Windows Server<\/strong> from the Platform<\/strong> list.<\/li>Choose Microsoft Defender Antivirus<\/strong> from the Profile<\/strong> list then choose Create<\/strong><\/li>Provide a name for your profile, and then select Next<\/strong>.<\/li>In the Configuration settings<\/strong> section, select Disabled<\/strong>, Enabled (block mode)<\/strong> or Enabled (audit mode)<\/strong> for Enable Network Protection<\/strong>, then select Next<\/strong>.<\/li>Select the appropriate Assignments<\/strong> and Scope tags<\/strong> as required by your organization.<\/li>Review all the information, and then select Create<\/strong>.<\/li><\/ol>\n\n\n\n<\/a><\/p>\n\n\n\nConfiguration profile method<\/h4>\n\n\n\nSign into the Microsoft Intune admin center (https:\/\/endpoint.microsoft.com<\/a>).<\/li>Go to\u00a0Devices<\/strong>\u00a0>\u00a0Configuration profiles<\/strong>\u00a0>\u00a0Create profile<\/strong>.<\/li>In the\u00a0Create a profile<\/strong>\u00a0flyout, select\u00a0Platform<\/strong>\u00a0and choose the\u00a0Profile Type<\/strong>\u00a0as\u00a0Templates<\/strong>.<\/li>In the\u00a0Template name<\/strong>, Choose\u00a0Endpoint protection<\/strong>\u00a0from the list of templates, and then select\u00a0Create<\/strong>.<\/li>Go to\u00a0Endpoint protection<\/strong>\u00a0>\u00a0Basics<\/strong>, provide a name for your profile, and then select\u00a0Next<\/strong>.<\/li>In the\u00a0Configuration settings<\/strong>\u00a0section, go to\u00a0Microsoft Defender Exploit Guard<\/strong>\u00a0>\u00a0Network filtering<\/strong>\u00a0>\u00a0Network protection<\/strong>\u00a0>\u00a0Enable<\/strong>\u00a0or\u00a0Audit<\/strong>. Select\u00a0Next<\/strong>.<\/li>Select the appropriate\u00a0Scope tags<\/strong>,\u00a0Assignments<\/strong>, and\u00a0Applicability rules<\/strong>\u00a0as required by your organization. Admins can set more requirements.<\/li>Review all the information, and then select\u00a0Create<\/strong>.<\/li><\/ol>\n\n\n\nGroup Policy<\/h3>\n\n\n\nUse the following procedure to enable network protection on domain-joined computers or on a standalone computer.<\/p>\n\n\n\nOn a standalone computer, go to\u00a0Start<\/strong>\u00a0and then type and select\u00a0Edit group policy<\/strong>.-Or-<\/em>On a domain-joined Group Policy management computer, open the\u00a0Group Policy Management Console<\/a>, right-click the Group Policy Object you want to configure and select\u00a0Edit<\/strong>.<\/li>In the\u00a0Group Policy Management Editor<\/strong>, go to\u00a0Computer configuration<\/strong>\u00a0and select\u00a0Administrative templates<\/strong>.<\/li>Expand the tree to\u00a0Windows components<\/strong>\u00a0>\u00a0Microsoft Defender Antivirus<\/strong>\u00a0>\u00a0Microsoft Defender Exploit Guard<\/strong>\u00a0>\u00a0Network protection<\/strong>.\u00a0NoteOn older versions of Windows, the group policy path may say “Windows Defender Antivirus” instead of “Microsoft Defender Antivirus.”<\/li>Double-click the\u00a0Prevent users and apps from accessing dangerous websites<\/strong>\u00a0setting and set the option to\u00a0Enabled<\/strong>. In the options section, you must specify one of the following options:Block<\/strong>\u00a0– Users can’t access malicious IP addresses and domains.<\/li>Disable (Default)<\/strong>\u00a0– The Network protection feature won’t work. Users won’t be blocked from accessing malicious domains.<\/li>Audit Mode<\/strong>\u00a0– If a user visits a malicious IP address or domain, an event will be recorded in the Windows event log. However, the user won’t be blocked from visiting the address.\u00a0ImportantTo fully enable network protection, you must set the Group Policy option to\u00a0Enabled<\/strong>\u00a0and also select\u00a0Block<\/strong>\u00a0in the options drop-down menu.\u00a0NoteOptional: Follow the steps in\u00a0Check if network protection is enabled<\/a>\u00a0to verify that your Group Policy settings are correct.<\/li><\/ul><\/li><\/ol>\n\n\n\nRef: Turn on network protection | Microsoft Learn<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"Check if network protection is enabled Check if network protection has been enabled on a local device by using Registry editor. Select the Start button in the task bar and type regedit to open Registry editor. Choose HKEY_LOCAL_MACHINE from the side menu. Navigate through the nested menus to SOFTWARE > Policies > Microsoft > Windows Defender > Policy Manager. If the Key is missing, Navigate to SOFTWARE > Microsoft > Windows Defender > Windows Defender Exploit Guard > Network Read More<\/a><\/p>\n","protected":false},"author":2,"featured_media":0,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"_bbp_topic_count":0,"_bbp_reply_count":0,"_bbp_total_topic_count":0,"_bbp_total_reply_count":0,"_bbp_voice_count":0,"_bbp_anonymous_reply_count":0,"_bbp_topic_count_hidden":0,"_bbp_reply_count_hidden":0,"_bbp_forum_subforum_count":0,"om_disable_all_campaigns":false,"_monsterinsights_skip_tracking":false,"_monsterinsights_sitenote_active":false,"_monsterinsights_sitenote_note":"","_monsterinsights_sitenote_category":0,"footnotes":""},"categories":[1185,1249,10,1224,14],"tags":[1634],"class_list":["post-4813","post","type-post","status-publish","format-standard","hentry","category-autopilot-intune","category-azure-microsoft","category-microsoft","category-powershell","category-windows-7-8-10","tag-turn-on-network-protection"],"aioseo_notices":[],"_links":{"self":[{"href":"https:\/\/SUMMALAI.COM\/index.php?rest_route=\/wp\/v2\/posts\/4813","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/SUMMALAI.COM\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/SUMMALAI.COM\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/SUMMALAI.COM\/index.php?rest_route=\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"https:\/\/SUMMALAI.COM\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=4813"}],"version-history":[{"count":1,"href":"https:\/\/SUMMALAI.COM\/index.php?rest_route=\/wp\/v2\/posts\/4813\/revisions"}],"predecessor-version":[{"id":4814,"href":"https:\/\/SUMMALAI.COM\/index.php?rest_route=\/wp\/v2\/posts\/4813\/revisions\/4814"}],"wp:attachment":[{"href":"https:\/\/SUMMALAI.COM\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=4813"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/SUMMALAI.COM\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=4813"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/SUMMALAI.COM\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=4813"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}](\"https:\/\/learn.microsoft.com\/en-us\/microsoft-365\/media\/95341270-b738b280-08d3-11eb-84a0-16abb140c9fd.png?view=o365-worldwide#lightbox\"){kind=link}