Share via

Edge SmartScreen URL unblocking / whitelisting

Tobias 6 Reputation points
2022-07-04T07:39:15.357+00:00

We have a huge problem. Our domain got automatically blocked by SmartScreen.

All requests to unblock the domain/urls are ignored.

Opened up tickets but getting no feedback.

Is there any other way to unblock or whitelist my domain?

Thank you!

Microsoft Edge
Microsoft Edge
A Microsoft cross-platform web browser that provides privacy, learning, and accessibility tools.
2,162 questions
Windows 10 Security
Windows 10 Security
Windows 10: A Microsoft operating system that runs on personal computers and tablets.Security: The precautions taken to guard against crime, attack, sabotage, espionage, or another threat.
2,776 questions
0 comments

3 answers

Sort by: Most helpful
Most helpful Newest Oldest
  1. Limitless Technology 39,416 Reputation points
    2022-07-06T14:09:18.04+00:00

    Hi there,

    You can whitelist specific IPs and URLS via the Windows Defender Security Center (Defender ATP Portal). This should unblock these, even if they are blacklisted at Microsoft.

    Create indicators for IPs and URLs/domains

    https://learn.microsoft.com/en-us/microsoft-365/security/defender-endpoint/indicator-ip-domain?view=o365-worldwide

    Configure and validate Microsoft Defender Antivirus network connections

    https://learn.microsoft.com/en-us/microsoft-365/security/defender-endpoint/configure-network-connections-microsoft-defender-antivirus?view=o365-worldwide

    -------------------------------------------------------------------------------------------------------------------------

    --If the reply is helpful, please Upvote and Accept it as an answer–

    1 person found this answer helpful.
  2. Reza-Ameri 16,836 Reputation points
    2022-07-04T16:10:14.587+00:00

    The best way to unblock it is to fill up the form (when you see it has been blocked) and Microsoft team will review the form.
    Meanwhile, you may check with your domain provider and ask them to check your website for potential security issues.

  3. Yu Zhou-MSFT 12,371 Reputation points Microsoft Vendor
    2022-07-05T02:48:29.573+00:00

    Hi @Tobias

    Except reporting to Microsoft that the site does not contain threats, you can also do the following best practices to help minimize the chance of your site being flagged as suspicious:

    • If you ask users for personal information, use HTTPS with a valid, unexpired server certificate issued by a trusted certification authority.
    • Make sure that your webpage doesn't expose any cross-site scripting (XSS) vulnerabilities. Protect your site by using anti-cross-site scripting functions such as those provided by the Microsoft Anti-Cross Site Scripting library.
    • Use the fully-qualified domain name rather than an IP-literal address. (This means a URL should look like "microsoft.com" and not "207.46.19.30.")
    • Don't encode or tunnel your URLs unnecessarily. If you don't know what this means, you probably aren't doing it.
    • If you post external or third-party hosted content, make sure that the content is secure and from a known and trusted source.

    For more information, you can refer to Microsoft Defender SmartScreen Frequently Asked Questions.

    If the answer is the right solution, please click "Accept Answer" and kindly upvote it. If you have extra questions about this answer, please click "Comment".
    Note: Please follow the steps in our documentation to enable e-mail notifications if you want to receive the related email notification for this thread.

    Regards,
    Yu Zhou

    0 comments