Intune policy to block the network sharing specifically SMB ports

Question

Intune policy to block the network sharing specifically SMB ports

Balasundaram Muthukumarasamy 0

Hi all, kindly let me know if there were any Intune policy available to block the network drive sharing from local system access, specifically SMB port blocking.

1 answer

Your answer

Answer 1

Ishan Gupta 0

Solution in Win 11/Win 10 all versions

If you're looking for a more custom solution, you can deploy a PowerShell Script via Intune to disable or block SMB ports.

Firstly Go to Windows-Powershell Scripts-then Add these scripts

Disable SMBv1, SMBv2, and SMBv3 protocols (Optional)

Set-SmbServerConfiguration -EnableSMB1Protocol $false -Force

Set-SmbServerConfiguration -EnableSMB2Protocol $false -Force

2 . Block SMB port (445)in Windows Firewall

New-NetFirewallRule -DisplayName "Block SMB Port 445" -Direction Inbound -Protocol TCP -LocalPort 445 -Action Block

Balasundaram Muthukumarasamy 0 Reputation points

2025-04-18T02:43:20.82+00:00

Thanks for the update, as we have checked, this script is not working
Ishan Gupta 0 Reputation points

2025-04-18T05:21:24.7566667+00:00

make sure user have administrative rights to run this script

Share via

Intune policy to block the network sharing specifically SMB ports

1 answer

Your answer