![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(128, 8%, 22%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EA%3C/text%3E%3C/svg%3E)
Gene,
GreginMich replied on November 24, 2017
This is a bug in the classic Windows Defender interface that arrived with the Fall Creators Update. I reported it to the Feedback Hub over a month ago, and the status of the report has now been updated from “Looking into it” to “Working on it”, so it looks like a fix is on the way. Here’s the thread with the original bug report:
And here’s a brief synopsis of some of the topics that we’ve covered in that thread:
Some tips and resources for the updated Windows Defender Security Center app:
The best overview of the new Windows Defender Security Center app comes from the Windows IT Pro Center documentation:
Windows Defender has been revamped for the enterprise environment, and many of its more important settings are now only accessible via the PowerShell Set-MpPreference cmdlet. Here’s a good example of a Windows Defender feature that needs to be enabled with PowerShell:
Be advised that there are no options for scheduling a scan in the Windows Defender Security Center, and that the Automatic Maintenance scan, which was supposed to eliminate the need for scheduling options, has been dysfunctional in the last three versions of Windows 10. These command line scheduled scan tasks seem to work in Version 1709:
Limited Periodic Scanning now allows Defender to run alongside another AV app in an on-demand scanning mode which enables most of Windows Defender's features, with the notable exceptions of real-time protection and Controlled folder access. You cannot enable Controlled folder access when Defender is running in Limited Periodic Scanning mode:
Here’s another great compatibility feature that’s built into Windows 10:
Automatic disabled mode is enabled so that if the protection offered by a third-party antivirus product goes out of date, is not updated, or stops providing real-time protection from viruses, malware, and other threats, Windows Defender AV will automatically enable itself to ensure antivirus protection is maintained on the endpoint.
When this feature is working correctly, it allows us to switch over to Windows Defender just by disabling the real-time protection of the installed third-party AV app. I’ve only had the time to test this on Kaspersky Free, where it works well; and on Avast Free, where it only works intermittently due to some kind of bug:
We’re just now transitioning to this new interface that integrates many of the Windows health-monitoring systems, so the current interface might be totally unfamiliar. Monitoring support for third-party AV apps was added in the Fall Creators Update, along with some nice enterprise-grade security features – but these new features will also add a bit of a slope to the learning curve. Controlled folder access is already causing some issues, and I suspect that things might get worse before they get better with this feature. If you have difficulties whitelisting your friendly apps, you can put Controlled folder access in an Audit Mode where it will continue to monitor access to your document folders, but won’t block unrecognized apps. Run this line at the elevated PowerShell prompt to set the Audit Mode: Set-MpPreference -EnableControlledFolderAccess AuditMode
I would also recommend leaving the Exploit Protection settings (in the App & browser control section) at their defaults.
GreginMich
-=-