Contextuels exclusions MDAV on MacOs

Question

Hello everyone,

I'm currently exploring exclusion settings in Microsoft Defender on macOS. I'm particularly interested in whether it's possible to implement what's known as "contextual exclusions" on this OS. By contextual exclusions, I mean the ability to set scan exclusions based on specific criteria, like the scan type or the initiating process. To my knowledge, there isn't any official documentation on this topic for macOS. Has anyone here had experience with this, or could point me toward any resources or techniques for achieving this?

Thank you in advance for your assistance and guidance!

Answer 1

@meryeme el faik, Thanks for posting in Q&A.

From your description, I know you want to do Contextual exclusions MDAV on MacOS.

Based on my research, Microsoft Defender for Endpoint on macOS doesn’t seem to support the contextual exclusion.

However, you can exclude certain files, folders, processes, and process-opened files from Defender for Endpoint on Mac scans.

Here are the supported exclusion types:

• File extension.
• File.
• Folder.
• Process.

Please note that defining exclusions lowers the protection offered by Defender for Endpoint on Mac. You should always evaluate the risks that are associated with implementing exclusions, and you should only exclude files that you are confident are not malicious. https://learn.microsoft.com/en-us/microsoft-365/security/defender-endpoint/mac-exclusions?view=o365-worldwide

Hope it will help.

If the answer is helpful, please click "Accept Answer" and kindly upvote it. If you have extra questions about this answer, please click "Comment".

Note: Please follow the steps in our documentation to enable e-mail notifications if you want to receive the related email notification for this thread.