[Microsoft ATP Antivirus] Web content filter doesn't work on windows devices and fail to synchronize with security center

Question

Hello guys,

i'm currently having problems with ATP windows solution for AV.

Recently we migrated from bitdefender endpoint solution to ATP for windows because of integration and benefits that involves our azure AD.

I used intunes onboard method where i configure a security baseline and configuration profile to deploy ATP to windows machines, as you can see bellow:

Security baseline:

Configuration profile (scan):

I did the step to sync the intunes with ATP solution without problems as you can see:

But after ATP package got installed on computers, some of then don't synchronize correctly with ATP dashboard.

When i try to access a website url (via chrome) that was previously blocked by me it doesn't show any information about the block, only message of connection insecured (ssl):

Someone can help me ?

Answer 1

Hello @Davi Araujo ,

Thank you for your question.

Please follow these steps, it will help you:

Allow specific websites
It's possible to override the blocked category in web content filtering to allow a single site by creating a custom indicator policy. The custom indicator policy will supersede the web content filtering policy when it's applied to the device group in question.

Create a custom indicator in the Microsoft 365 Defender portal by going to Settings > Endpoints > Indicators > URL/Domain > Add Item.

Enter the domain of the site.

Set the policy action to Allow.

For more information please go through this link:
https://learn.microsoft.com/en-us/microsoft-365/security/defender-endpoint/web-content-filtering?view=o365-worldwide

If the reply was helpful, please don't forget to upvote or accept as answer.